Privacy Policy

Last Updated: 27 August 2025
Effective Date: 27 August 2025

Revision: 2.4

CMMS Success (“we”, “our”, “us”) is committed to respecting and protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and protect personal information in line with:

1.     The Australian Privacy Principles (APPs) under the Privacy Act 1988 as amended by the Privacy and Other Legislation Amendment Act 2024.

2.     The General Data Protection Regulation (EU) 2016/679 (“GDPR”).

3.     The California Consumer Privacy Act (CCPA), where applicable.

This Policy applies to all visitors, users, and customers worldwide who access or use www.cmmssuccess.com (“the Site”).

Table Of Contents.

1.    Who We Are.

2.    Information We Collect.

3.    How We Use Your Information.

4.    Legal Basis for Processing.

5.    Consent and User Control.

6.    Your Privacy Rights.

7.    Comments and User-Generated Content.

8.    Cookies and Tracking.

9.    Google Analytics and AdSense.

10.  Embedded Content and Third-Party Links.

11.  Data Sharing and International Transfers.

12.  Data Retention and Destruction.

13.  Data Security.

14.  Data Breach Response.

15.  Automated Decision Making and Profiling.

16.  Children’s Privacy.

17.  California Consumer Rights (if applicable).

18.  Complaints and Contact Information.

19.  Updates to This Privacy Policy.

1. Who We Are.

• Website: www.cmmssuccess.com
• Contact Person: Dave
• Postal Address: PO Box 784, Muswellbrook, NSW, Australia, 2333
• Email: admin@cmmssuccess.com
• Phone (Australia): +61 448 687 451

We determine the purposes and means of processing your personal information and act as the primary data controller.

2. Information We Collect.

2.1 Information You Provide.

1.     Comments & Forms: Name, email address, website URL, message content

2.     Accounts/Subscriptions: Username, email, preferences for newsletters or updates

3.     Direct Communications: Information submitted by email, phone, or surveys

2.2 Information Collected Automatically.

1.     Technical Data: IP address, device identifiers, browser type, operating system, screen resolution

2.     Usage Data: Pages visited, time spent, navigation paths, search terms

3.     Location Data: Approximate location derived from IP address

4.     Interaction Data: Clicking behaviour, scroll depth, engagement metrics

2.3 Information From Third Parties.

1.     Analytics Services: Aggregated visitor statistics (Google Analytics)

2.     Advertising Networks: Information from partners (Google AdSense, where enabled)

3.     Social Media Platforms: Interaction data if you engage with CMMS Success content

Note: Under amended law, “personal information” now also includes metadata, cookie IDs, and any data that could reasonably identify you.

3. How We Use Your Information.

We use personal information only when fair, reasonable, and proportionate. Uses include:

1.     Website Operation: Functionality, technical troubleshooting, analytics, and optimisation

2.     Engagement: Responding to enquiries, providing newsletters (with consent), facilitating comments/discussions

3.     Security & Compliance: Fraud prevention, detecting spam or abuse, complying with legal/regulatory obligations

4.     Advertising & Marketing (with consent): Displaying relevant ads, measuring ad performance, remarketing (where enabled)

4. Legal Basis for Processing.

1.     Consent: newsletter subscriptions, cookies requiring opt‑in

2.     Legitimate Interests: analytics, site security, improving services

3.     Legal Obligation: regulatory, tax, or record‑keeping requirements

4.     Contract Performance: providing requested services or responding to your queries

5. Consent and User Control.

1.     Consent must be explicit, unbundled, documented, and is always revocable.

2.     No pre‑ticked boxes or default consent options are used.

3.     You may withdraw consent at any time by:

a)     Adjusting your cookie settings via the consent banner

b)    Unsubscribing via email links or contacting us directly

6. Your Privacy Rights.

Under the Privacy Act (as amended 2024), GDPR, and applicable laws, you may:

1.     Request access to the personal data we hold about you.

2.     Request correction of inaccurate or incomplete data.

3.     Request erasure (“right to be forgotten”) where applicable.

4.     Request data portability (structured, machine‑readable format).

5.     Object to certain types of processing, including marketing.

6.     Withdraw consent at any time.

7.     Lodge a complaint with the OAIC or relevant supervisory authority.

Although the site admin/author of this website has significant health issues at the moment and some days are certainly tougher than others, I/We will respond to verified requests within 30 days where practicable and where physically possible.

7. Comments and User-Generated Content.

1.     Information shared in comments is publicly visible.

2.     Users must not post sensitive or personal information.

3.     Comments are moderated for compliance with community standards.

4.     Inappropriate or privacy‑violating content may be removed.

5.     We disclaim responsibility for disclosures made voluntarily by users in public comments.

8. Cookies and Tracking.

We use cookies and similar technologies for:

1.     Essential Functionality (required for the site to operate).

2.     Performance & Analytics (Google Analytics, aggregate statistics).

3.     Advertising/Targeting (Google AdSense, if enabled).

4.     Social Media/Embedded Content (YouTube, LinkedIn, Facebook integrations).

You can:

1. Manage cookies via our consent banner
2. Reject non‑essential cookies
3. Adjust browser settings or use opt‑out tools (e.g., Google opt‑out add‑on)

Note: EU/UK visitors will see an active consent banner to comply with GDPR.

9. Google Analytics and AdSense.

1.     We use Google Analytics to understand website usage.

2.     We use Google AdSense to display ads, subject to consent.

3.     Personal Identifiable Information (PII) is not sent to Google.

4.     You may opt out through:

a)     Google Analytics Opt‑Out Add‑On

b)    Google Ads Settings

10. Embedded Content and Third-Party Links.

1.     Third‑party sites (YouTube, LinkedIn, Facebook, etc.) may collect data through embeds, even if you don’t interact with them.

2.     We do not control these external platforms.

3.     We strongly encourage you to review their privacy policies.

11. Data Sharing and International Transfers.

1.     We share data only with trusted providers (e.g., Google, email hosting, content networks).

2.     If personal data is transferred overseas, it will be protected by:

a)     Adequacy decisions (where applicable).

b)    Contractual safeguards (e.g., Standard Contractual Clauses).

c)     Other legally recognised protections.

Where protections differ, we will notify you and seek explicit consent if required.

12. Data Retention and Destruction.

1.     Contact queries: retained 6–12 months, then securely deleted.

2.     Analytics data: retained for 26 months (or anonymised sooner).

3.     Comment metadata: retained as long as comments remain public.

4.     Legal obligations: records kept as required under tax/employment law.

We securely erase or de‑identify personal data when no longer required. Digital and physical records are destroyed in compliance with APP 11.

13. Data Security.

We apply robust technical and organisational measures:

1.     Encryption, firewalls, secure hosting, multi‑factor authentication.

2.     Staff training on privacy and cybersecurity.

3.     Access restrictions based on “need to know”.

4.     Regular privacy audits and breach response simulations.

5.     Secure third‑party vendor agreements.

14. Data Breach Response.

If a Notifiable Data Breach occurs, we will:

1.    Contain and assess the breach immediately.

2.    Notify affected individuals and the OAIC within 30 days (or sooner, where practicable).

3.    Provide practical guidance for protecting your information.

4.    Document the breach, impact, and remediation steps.

15. Automated Decision Making and Profiling.

1.     We may use limited automated tools (e.g., spam filtering, analytics, ad targeting).

2.     From December 2026, disclosures of all automated decisions with significant impact will be mandatory.

3.     You have the right to request human review of any decision made solely by automated means.

16. Children’s Privacy:

1.     Our services are not directed at children under 16 years.

2.     We do not knowingly collect personal data from children and if such data is discovered, it will be deleted promptly.

17. California Consumer Rights (if applicable).

Residents of California may have additional rights under the CCPA, including:

1.     Right to know categories of data collected.

2.     Right to access or delete personal data.

3.     Right to opt out of the “sale” or “sharing” of personal data.

4.     Right to non‑discrimination for exercising privacy rights.

Requests can be made using the contact details below.

18. Complaints and Contact Information.

If you have questions, requests, or complaints, please contact us:

• Email: admin@cmmssuccess.com
• Postal: PO Box 784, Muswellbrook, NSW, Australia
• Phone: +61 448 687 451

If you are not satisfied with our response, you may escalate complaints to the Office of the Australian Information Commissioner (OAIC) or the relevant authority in your jurisdiction.

19. Updates to This Privacy Policy.

We may update this Privacy Policy periodically to reflect legal, technical, or business changes. All updates will be posted on this page with a revised “Last Updated” date. Significant changes will be communicated to users directly where required by law.