Privacy Policy

Last updated: May 2026

Profectus Ventures Pty Ltd is committed to protecting the privacy of individuals and handling personal information in an open and transparent way. This Privacy Policy explains how we collect, use, disclose and store personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

This Policy applies to:

  • visitors to our website
  • clients and prospective clients
  • job applicants
  • employees, contractors and consultants

Additional internal policies apply to employees and contractors, including our Information Security Policy and Information Security Management System (ISMS) aligned to ISO 27001:2022.

  1. Information We Collect

We collect personal information only where it is reasonably necessary for our business activities, including recruitment, service delivery, compliance obligations, and internal operations.

1.1 Personal Information

Personal information includes information that can identify you, such as:

  • name, address, email address and phone number
  • date of birth
  • résumé details, employment history and qualifications
  • identification documents (e.g., driver’s licence, passport)
  • next-of-kin and emergency contacts
  • banking, tax and superannuation details
  • work-related information such as role title, employment dates, performance records, training and attendance information

1.2 Sensitive Information

We may collect sensitive information such as:

  • criminal history or working-with-children checks
  • medical information required to assess fitness for work
  • membership of professional associations

We only collect sensitive information with consent, unless required or authorised by law.

  1. How We Collect Personal Information

2.1 Directly from You

We collect information directly from you when you:

  • apply for a role with Profectus Ventures
  • provide onboarding information
  • communicate with us by email, phone or through our website
  • provide information during the course of your employment or engagement

2.2 From Third Parties (with your consent)

Where relevant and with your consent, we may collect information from:

  • recruitment service providers
  • referees and former employers
  • background screening services
  • educational institutions
  • medical or allied health professionals
  • publicly available sources such as LinkedIn

2.3 Automatically via our Website

When you browse our website, we may collect information such as:

  • browser type
  • IP address
  • pages visited
  • cookies and analytics data

This information helps us improve website performance and user experience. You can disable cookies through your browser settings if you prefer.

  1. How We Use Personal Information

We use personal information for purposes including (but not limited to):

  • recruitment, onboarding and workforce management
  • payroll, remuneration and benefits administration
  • compliance with Australian laws and regulatory requirements
  • verifying your identity and right to work in Australia
  • managing workplace health and safety
  • IT and security monitoring
  • performance management and professional development
  • responding to complaints, claims or incidents
  • business planning, audits and internal reporting
  • communicating with clients and providing services
  • website administration and marketing activities
  • any purpose permitted or required by law
  • any purpose to which you have consented

We only use your information for the purpose it was collected unless otherwise allowed by law.

  1. Use of Information for Website and Marketing Purposes

With your consent, or where reasonably necessary and appropriate for your role, we may use limited personal information (e.g., name, image, job title, work contact details) on our website or in marketing materials.

If you have concerns about the use of your information in marketing or public-facing materials, you may raise this with your manager or by contacting us (see Section 11).

  1. Disclosure of Personal Information

We may disclose personal information to third parties including:

  • service providers such as IT, cloud hosting, payroll, HR, accounting and legal services
  • banks, insurance providers and superannuation funds
  • government authorities (e.g., ATO, Fair Work, WorkCover)
  • recruitment and background screening providers
  • travel agencies and accommodation providers
  • auditors and compliance assessors
  • our clients, where required as part of a role you perform
  • other third parties where permitted or required by law

All external service providers are required to manage personal information in accordance with this Policy and applicable privacy laws.

  1. Overseas Disclosure

Some of our service providers may be located overseas. Where personal information is disclosed outside Australia, we take reasonable steps to ensure that the overseas recipient handles the information in accordance with the APPs.

  1. Security of Personal Information

Profectus Ventures maintains an ISO 27001:2022-aligned Information Security Management System (ISMS) to ensure confidentiality, integrity and availability of information.
We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification or disclosure.

Security measures include:

  • access controls and identity management
  • encryption of sensitive data transfers
  • secure disposal and data-retention controls
  • password protection and multi-factor authentication
  • monitoring of company devices, systems and networks
  • secure storage of physical and digital records

Employees and contractors are required to:

  • access personal data only where necessary for their role
  • keep information secure at all times
  • avoid unnecessary copies of sensitive data
  • store and dispose of personal information securely
  • report any actual or suspected privacy or security incidents immediately
  1. Accuracy of Personal Information

We take reasonable steps to ensure personal information is accurate, complete and up-to-date. Individuals should notify us of any changes to their personal information as soon as practicable.

  1. Access and Correction

Employees and Contractors

Most employee records are exempt from the Privacy Act under the “employee records exemption”.
Employees may request correction of inaccurate information by contacting their manager.

Non-employees (including job applicants, contractors not treated as employees, clients)

You may request access to, or correction of, your personal information by contacting us at:
admin@profectus.com.au

We may refuse access where permitted or required by law and may charge a reasonable fee to process requests.

  1. Data Retention

We retain personal information for as long as it is required for business, legal and compliance purposes. When no longer required, we securely destroy or de-identify the information.

  1. How to Contact Us

For privacy queries, requests or concerns, please contact:

Profectus Ventures Pty Ltd
Email: admin@profectus.com.au

  1. Complaints

If you believe your privacy has been breached, please contact us in writing. We will:

  • acknowledge your concern
  • investigate the issue
  • provide a response within 21 days where practicable

If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au.

  1. Updates to this Policy

We may update this Privacy Policy from time to time. The latest version will always be available on our website.

View Our Case Studies

Our case studies showcase real-world examples of how we’ve partnered with Defence and other critical government sectors to overcome challenges, optimise operations, and achieve measurable results.

SERVICES

IT DeliveryIT EnablementIT ConsultingIT Talent

CONTACT

admin@profectus.com.au0432 804 6817 / 35 Kennedy St, Kingston ACT, 2604