Privacy

About this privacy policy

This Privacy Policy explains how the Australian Maritime Safety Authority (AMSA) collects, holds, uses and discloses personal information, and how you can access and correct your personal information or make a privacy complaint. 

We will update this Privacy Policy when our information-handling practices change.

AMSA is an Australian Government agency bound by the Privacy Act 1988 (Cth) (Privacy Act), the Australian Privacy Principles (APPs) and the Privacy (Australian Government Agencies – Governance) APP Code 2017 (Cth) (Privacy Code).

What is personal information?

Personal information is information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether the information is true or not and whether the information is recorded in a material form or not.

Sensitive information is a subset of personal information and includes information about a person’s health information, criminal record, racial or ethnic origin, political opinions, religious beliefs or affiliations, philosophical beliefs, sexual orientation, genetic information or biometric information.

What personal information we collect

We may collect personal information that is reasonably necessary for, or directly related to, AMSA’s functions and activities. This may include:

• contact details - such as your name, email address, phone number and postal address
• information you provide when you contact us, for example, enquiries, complaints, feedback and submissions
• information required to administer AMSA regulatory and operational functions under maritime legislation, for example, information provided in applications, reports, approvals, certificates, audits or compliance activities
• employment-related information, for example, information provided when you apply for a job with us or during your employment
• online interaction information - see ‘Information collected online’ below
• subscription and preference information for newsletters and updates, for example, your name, email address, location, occupation or business interests.

How we collect personal information

We usually collect personal information directly from you or your authorised representative.

We may also collect personal information from third parties or publicly available sources where you have consented, where we are required or authorised by law, or where it is unreasonable or impracticable to collect the information directly from you.

We collect personal information through channels such as online forms and portals, email, phone, mail, face-to-face interactions, and from documents you provide to us.

Why we handle personal information

We collect, hold, use and disclose personal information to carry out AMSA’s functions and activities under legislation, and for associated corporate services. This includes:

• administering relevant laws and associated services
• conducting compliance, monitoring and enforcement activities
• coordinating and supporting search and rescue and emergency response activities
• administering training, certification and related verification services, including seafarer certification
• communicating with stakeholders and the community (including newsletters and public consultation) and
• carrying out employment, human resource management, procurement, finance and other corporate functions.

How we use and disclose personal information

We generally use and disclose personal information for the purpose for which it was collected.

We may also use or disclose personal information for another purpose in any of these circumstances: 

• you consent
• you would reasonably expect AMSA’s use or disclosure and it is related, or directly related for sensitive information, to the primary purpose for collecting the personal information
• the use or disclosure is required or authorised by law or by a court or tribunal order
• another exception under the Privacy Act applies, including for enforcement-related activities.

Where we use service providers to help deliver services (for example, information and communication technology (ICT) and communications providers), we require the service providers to protect personal information through contractual privacy and security obligations.

How we hold and secure personal information

We take reasonable steps to protect personal information we hold from misuse, interference and loss, and from unauthorised access, modification or disclosure.

These steps include technical and physical security controls, access restrictions, monitoring and secure storage for both electronic and paper records.

When personal information is no longer required, we destroy, delete or archive it securely in accordance with Commonwealth record-keeping requirements and AMSA’s Records Disposal Authority.

Overseas disclosure

AMSA may disclose personal information to overseas recipients where required or authorised by law, or where necessary to perform our statutory functions or meet Australia’s international obligations. For example, we may disclose limited personal information to overseas maritime administrations to support recognition or verification of seafarer certification under the International Convention on Standards of Training, Certification and Watchkeeping for Seafarers (STCW Convention) or to support safety, compliance or emergency response activities.

Where practicable, we take reasonable steps to ensure overseas disclosures are handled consistently with the Privacy Act requirements.

Email marketing and newsletters

We use Swift Digital to manage and send newsletters and email updates, including:

• AMSA Updates for domestic commercial vessel owners, operators and crew
• Marine Safety Awareness Bulletin which includes trends and recent developments in shipping incidents
• Safety Alerts on safety issues
• Marine Notices providing information and guidance about upcoming changes to legislation as they arise. 

We use the personal information of subscribers for the purposes described above and to:

• send newsletters and emails related to a subscriber’s business interests
• manage AMSA’s email marketing and newsletter service
• report email campaign performance. 

Information collected through Swift Digital remains the property of AMSA and is maintained within Australia. 

Subscription is voluntary and you can manage your preferences or unsubscribe at any time.

Your choices

You may deal with us anonymously or using a pseudonym where lawful and practicable.

If you are subscribed to stakeholder updates, you can unsubscribe at any time using the unsubscribe options in our emails.

Access and correction

We take steps to ensure that the personal information we collect is accurate, up to date and complete. These steps include maintaining and updating personal information when we are advised by individuals that their personal information has changed, and at other times as necessary.

You may request access to, or correction of, personal information we hold about you. Requests can be made to privacy@amsa.gov.au or freedomofInformation@amsa.gov.au. We will respond in accordance with the Privacy Act and, where relevant, the Freedom of Information Act 1982 (Cth).

How to make a privacy complaint

If you have a concern about how we have handled your personal information, you can make a complaint to AMSA in writing.

Email: privacy@amsa.gov.au 
Post: Privacy Officer, Australian Maritime Safety Authority, GPO Box 2181, Canberra ACT 2601

We will respond within a reasonable time (usually within 30 days). If you are not satisfied with our response, you may complain to the Office of the Australian Information Commissioner (OAIC).

Your complaint should include:

• your name and contact details
• any relevant reference numbers or identifiers
• a brief description of your privacy problem (what happened and when)
• any action the agency or organisation has taken to fix the problem
• copies of any relevant documents, including copies of your complaint to the agency or organisation, and its response
• what outcome you’d like.

Privacy Impact Assessment Register

We maintain a Privacy Impact Assessment (PIA) Register in accordance with the Privacy Code. View the Privacy Impact Assessment Register.

Contact us

Privacy Officer
Australian Maritime Safety Authority
GPO Box 2181 Canberra ACT 2601
Email: privacy@amsa.gov.au