This Policy applies to Total E&P Australia ABN 96 832 035 151 ("TEPAU"), and to each of the subsidiaries of Total SA in the Exploration & Production Branch that are present, or have operations, in Australia ("TOTAL E&P Australia Group"). References to "TOTAL" mean the Total E&P Australia Group unless otherwise specified.
Information about the APPs and privacy rights can be found at the website of the Office of the Australian Information Commissioner at http://www.oaic.gov.au/index.php.
TOTAL collects personal information that is necessary for it to conduct its business. Personal information is any information that can be used to identify a person and may include:
a person’s name, address, occupation and contact details (address, phone numbers and email address);
information related to the person's professional life;
other personal information a person may disclose to TOTAL in relation to TOTAL's business operations, or which is contained in communications between TOTAL and a person.
Directly from a person (including employees and in-house contractors working for TOTAL or job applicants), either in person, in documents or by e-mail. Personal information may be collected through TEPAU's website cookies when visiting TEPAU's website;
From third parties, such as TOTAL's business associates, joint venturers, clients, contractors, sub-contractors, suppliers, business counterparties or a person's employer;
From other companies in the TOTAL E&P Australia Group or other subsidiaries of Total SA; and
From publicly available resources.
TOTAL holds personal information in hard copy and electronic files.
In relation to in-house contractors working for TOTAL, TOTAL collects and processes personal information for the purpose of administrative management. TOTAL may receive or collect personal information as well from people seeking employment with TOTAL or people communicating with TOTAL whether in writing, bye-mail or telephone.
TOTAL also collects and processes personal information related to its joint venturers, clients, subcontractors, suppliers and business counterparties for the purpose of managing the relationship with these parties.
TOTAL's ability to carry out its business operations may be adversely affected if requested personal information is not provided, or if the information given to it is incomplete or inaccurate.
providing information to persons regarding its business activities;
conducting its internal business operations and administrative management (including meeting any relevant legal requirements);
managing third party (including joint venture, client, supplier, contractor and sub-contractor) relationships and improve its business operations;
assessing applications for employment.
to any person where necessary or desirable in connection with the conduct of its business, such as to regulatory authorities and other parties;
to other companies in the TOTAL group of companies;
to external service providers (on a confidential basis) so they can provide TOTAL with services related to its business, for example mailing services, IT services, data storage or archive services;
to TOTAL's legal representatives and auditors;
where required or authorised by law;
in any case, where consent to the disclosure is provided.
if the overseas recipient is located in a country that is a member state of the European Economic Area because TOTAL reasonably believes that such overseas recipient is subject to a law that has the effect of protecting the information in a way that, overall, is substantially similar to the way in which the APPs protect the personal information and there are mechanisms that the individual can access to take action to enforce that protection;
if the overseas recipient is a TOTAL affiliate located overseas (but not within the European Economic Area) and is subject to a binding scheme that has the effect of protecting the information in a way that, overall, is substantially similar to the way in which the APPs protect the information and there are mechanisms that the individual can access to take action to enforce that protection; or
if a person consents to the disclosure of its personal information to an overseas recipient. In the case of consent, TOTAL will not be accountable and a person whose personal information was disclosed will not be able to seek redress against TOTAL under the Privacy Act if the overseas recipient handles the personal information in breach of the APPs. It may not be possible to seek redress for breach of privacy laws, if applicable, against the overseas recipient depending on the overseas jurisdiction. Persons providing personal information to TOTAL consent to the disclosure of that personal information to an overseas recipient and by doing so, agree that the Obligation does not apply and acknowledge and agree to the risk associated with the disclosure of personal information to overseas recipients.
accurate, complete, up-to-date, relevant and not misleading;
stored in a secure environment; and
protected from misuse, interference and loss as well as unauthorised access, modification or disclosure.
notify the person in writing of the reasons of its refusal (unless it would be unreasonable to do so) and how to complain of the refusal; and
if the person so requests, TOTAL must record a statement indicating that the person believes its personal information is inaccurate, incomplete, out-of-date, irrelevant or misleading. TOTAL must take reasonable steps so that such statement appears to the users of the personal information.
4. Personal information originating from Total's affiiates in the European Economic Area (EEA)
In the course of its business activities, TOTAL will receive from time to time personal information from its parent company TOTAL SA or other affiliates established in France or elsewhere in the EEA. In order to be able to receive such personal information that is necessary for its activities, TOTAL must comply with certain requirements governing the transfer of personal information originating from the EEA to entities outside the EEA. Consequently, and in addition to the principles set forth in the present Policy, TOTAL applies specific rules to personal information it receives from its affiliates and which originates from the EEA. A simplified version of such rules is available on the TOTAL Group's website http://total.com/en/legal.