MIDL Privacy Collection Notice
Why we collect your personal information
The Melbourne Institute’s Data Lab (MIDL) at the University of Melbourne is collecting and processing your personal information to:
- assess your application to access the MIDL platform
- facilitate and administer your access to the MIDL platform
The “processing" of personal information refers to all activities relating to the management of your personal information, from its collection and use, through to its storage and disposal, and everything in between.
How we process your personal information
We will process your personal information as necessary for our legitimate interests, in accordance with applicable privacy laws, and only under the following circumstances:
- for the purpose for which it was collected; or
- a related purpose which you might reasonably expect; or
- where you have consented to the processing; or
- if we are required or permitted to do so by law.
Security checks and ongoing monitoring of the MIDL platform is required for compliance with the Australian Government’s Information Security Manual. Use of the MIDL platform is monitored by MIDL administrators to protect data and information from cybersecurity threats and malicious activities. This includes inspection of traffic in to and out of MIDL.
The information you provide will be used by authorised University staff in the Melbourne Institute’s Data Lab Services area and contracted service providers for the purpose for which it was collected. This information may also be provided to data custodians who may be responsible for the data sets accessed by you through MIDL.
We implement and maintain appropriate technical and organisational security measures in line with standards in the Australian Government Information Security Manual to protect personal information transmitted, stored or otherwise processed, from accidental or unlawful destruction, misuse, loss, alteration, unauthorised access or disclosure. This includes the use of multi-factor authentication for authenticating system logins, ongoing monitoring of MIDL user activity, encryption of data at rest and in transit and strict protocols around how data can be transmitted in to or transferred out of the MIDL.
Under standard requirements in the Australian Government Information Security Manual, we will retain your personal information and all data related to your project for as long as required for the project and for up to 7 years following termination of the project. This information is then securely destroyed in accordance with Australian Government requirements.
If you choose not to provide the information requested, we will not be able to provide you with access to the MIDL research platform.
Further privacy information
Refer to the University’s General Privacy Statement or other privacy statements for general information about how we process and protect personal information, including:
- our lawful basis for processing personal information;
- collection, use and disclosure of personal information;
- accuracy, security and storage of personal information;
- retention and disposal of personal information;
- your individual rights; and
- applicable privacy laws.
You may request access to, or correction of, your personal information we hold, or exercise your individual rights as applicable under relevant privacy laws, unless this would have an unreasonable impact on the privacy of others or would contravene the University’s other legislative obligations.
If the lawful collection of your personal information is based on your consent, you have the right to withdraw your consent at any time. However, this will not affect the lawfulness of our processing of your information prior to you withdrawing your consent.
For further information you can contact us.