Privacy Policy
You.Me.We Leadership is committed to providing quality services to you and this policy outlines our ongoing obligations to you in respect of how we manage your Personal Information.
We have adopted the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth) (the Privacy Act), as amended by the Privacy and Other Legislation Amendment Act 2024. The APPs govern the way in which we collect, use, disclose, store, secure and dispose of your Personal Information.
A copy of the Australian Privacy Principles may be obtained from the website of The Office of the Australian Information Commissioner at https://www.oaic.gov.au/.
What is Personal Information and why do we collect it?
Personal Information is information or an opinion that identifies an individual. Examples of Personal Information we collect includes names, addresses, email addresses, phone numbers, professional information, organisation details, and business information.
This Personal Information is obtained in many ways including correspondence, by telephone, by email, via our website, through workshop registrations, consultation bookings, leadership assessment forms, speaking engagement enquiries, marketing strategy consultations, and from publicly available sources. We don't guarantee website links or policy of authorised third parties.
We collect your Personal Information for the primary purpose of providing our leadership development services to you, delivering workshops and programs, providing consultation services, communicating about our services, and for marketing purposes with your consent. We may also use your Personal Information for secondary purposes closely related to the primary purpose, in circumstances where you would reasonably expect such use or disclosure. You may unsubscribe from our mailing/marketing lists at any time by contacting us in writing.
When we collect Personal Information we will, where appropriate and where possible, explain to you why we are collecting the information and how we plan to use it.
Sensitive Information
Sensitive information is defined in the Privacy Act to include information or opinion about such things as an individual's racial or ethnic origin, political opinions, membership of a political association, religious or philosophical beliefs, membership of a trade union or other professional body, criminal record or health information.
Sensitive information will be used by us only:
• For the primary purpose for which it was obtained
• For a secondary purpose that is directly related to the primary purpose
• With your consent; or where required or authorised by law.
Third Parties
Where reasonable and practicable to do so, we will collect your Personal Information only from you. However, in some circumstances we may be provided with information by third parties. In such a case we will take reasonable steps to ensure that you are made aware of the information provided to us by the third party.
Disclosure of Personal Information
Your Personal Information may be disclosed in a number of circumstances including the following:
• Third parties where you consent to the use or disclosure;
• Service providers who assist with website hosting, payment processing, email marketing, or event management (under strict confidentiality agreements);
• Professional advisors including lawyers and accountants when necessary for business operations; and
• Where required or authorised by law.
Data Security and Technical Safeguards
Enhanced Security Measures (2025 Update)
In accordance with the Privacy and Other Legislation Amendment Act 2024, we implement technical and organisational measures appropriate to the risks presented by our processing of personal information, including:
• Technical measures: Secure data encryption, access controls, firewall protection, regular security software updates, and secure backup systems
• Organisational measures: Staff privacy training, regular security assessments, incident response procedures, and privacy-by-design practices
• Access controls: Limited access to personal information on a need-to-know basis, user authentication requirements, and regular access reviews
• Data minimisation: Collection and retention of only necessary personal information for specified purposes
• Regular monitoring: Ongoing assessment of security effectiveness and updates to address emerging threats
Your Personal Information is stored in a manner that reasonably protects it from misuse and loss and from unauthorized access, modification or disclosure.
When your Personal Information is no longer needed for the purpose for which it was obtained, we will take reasonable steps to destroy or permanently de-identify your Personal Information. However, most of the Personal Information is or will be stored in client files which will be kept by us for a minimum of 7 years.
Website Usage and Cookies
Cookie and Tracking Technology Disclosure (2025 Update)
Our website may use cookies and similar tracking technologies to improve your browsing experience and provide relevant content. We may also collect website usage information including IP addresses, browser information, pages visited, and referral sources to improve our services and website functionality.
Important Information About Tracking:
• First-party cookies: We use cookies to remember your preferences and improve site functionality
• Third-party tracking: Our website may contain tracking pixels or similar technologies from service providers (such as analytics tools or email marketing platforms)
• Your control: You can control cookie settings through your browser preferences, though some site features may not function properly if cookies are disabled
• Purpose transparency: Tracking is used for website analytics, service improvement, and legitimate business communications only
We assess whether tracking technologies create personal information profiles and ensure appropriate privacy protections are maintained for all tracking activities.
Data Breach Notification
Enhanced Breach Response (2025 Update)
In accordance with updated privacy legislation, we maintain comprehensive data breach response procedures:
• Detection and assessment: Immediate evaluation of any suspected privacy incident
• Notification timelines: Affected individuals and the OAIC will be notified within required timeframes if a breach poses likely risk of serious harm
• Remedial action: Immediate steps to contain breaches and prevent further harm
• Documentation: Detailed records of all privacy incidents and response measures
• Prevention: Regular review and update of security measures based on incident learnings
Access to your Personal Information
You may access the Personal Information we hold about you and to update and/or correct it, subject to certain exceptions. If you wish to access your Personal Information, please contact us in writing.
You.Me.We. Leadership will not charge any fee for your access request, but may charge an administrative fee for providing a copy of your Personal Information.
In order to protect your Personal Information we may require identification from you before releasing the requested information.
Enhanced Individual Rights (2025 Update)
Under the updated Privacy Act, you have enhanced rights including:
• Right to access: Request copies of personal information we hold about you
• Right to correction: Request correction of inaccurate or incomplete information
• Right to deletion: Request deletion of personal information in certain circumstances
• Right to restrict processing: Request limitation of how we use your personal information
• Right to data portability: Request transfer of your personal information in certain formats
• Right to object: Object to certain types of processing of your personal information
Maintaining the Quality of your Personal Information
It is important to us that your Personal Information is up to date. We will take reasonable steps to make sure that your Personal Information is accurate, complete and up-to-date. If you find that the information we have is not up to date or is inaccurate, please advise us as soon as practicable so we can update our records and ensure we can continue to provide quality services to you.
Cross-Border Data Transfers
If we transfer your Personal Information outside Australia, we will:
• Ensure the overseas recipient is bound by privacy obligations substantially similar to the APPs
• Obtain your consent where required
• Take reasonable steps to ensure overseas recipients handle your information appropriately
• Maintain records of cross-border transfers as required by law
Policy Updates
This Policy may change from time to time and is available on our website. We will notify you of significant changes to this policy through our usual communication channels.
Policy Version: Updated June 2025 to comply with Privacy and Other Legislation Amendment Act 2024
Privacy Policy Complaints and Enquiries
If you have any queries or complaints about our Privacy Policy please contact us at:
aaron@youmeweleadership.com
You can also contact the Office of the Australian Information Commissioner (OAIC) at https://www.oaic.gov.au/ if you have concerns about our privacy practices.
Complaint Process:
• Contact us directly with your concern
• We will investigate and respond within 30 days
• If unsatisfied, you may escalate to the OAIC
• The OAIC provides independent review of privacy complaints
Western Australia Privacy Obligations
Preparing for PRIS Act 2024 (Effective 2026)
Western Australian businesses will be subject to additional privacy obligations under the Privacy and Responsible Information Sharing Act 2024, which takes effect in 2026. We are monitoring these developments and will update our privacy practices accordingly to ensure dual compliance with both federal and state privacy laws.
Last updated: June 2025
Compliance status: Updated for Privacy and Other Legislation Amendment Act 2024