Privacy Policy

Jackson McDonald (“we”, “our”, “us”) is bound by the Australian Privacy Principles (APPs) and the Privacy Act 1988 (Cth) (Privacy Act). This means that we have to have policies and procedures in place to protect the personal information that we collect about you. Our privacy policy reflects these policies and procedures.

We have drafted this privacy policy to comply with the APPs.

Key terms used in our privacy policy

We use a number of key terms in our privacy policy including “collect”, “consent”, “personal information” and “sensitive information”. You will find the meanings of these terms in section 15 below.

Why do we collect your personal information?

We will only collect personal information if it is reasonably necessary to pursue at least one of our functions and activities in the course of providing legal services. In support of our provision of legalservices we also carry outthe following related functions and activities:

  • marketing activities;
  • human resource activities;
  • corporate administration;
  • propertymanagement; and
  • public relations activities.

What personal information do we collect about you?

The personal information we collect about you will depend on the way we interact with you. Some of the situations where we collect personal information include when:

  • we take instructions to provide you with legal services or when you inquire about us providing you legal services;
  • you provide us, or one of our staff members, with your business card;
  • you attend an event that we organise;
  • you subscribe to receive our publications on our website;
  • you apply for a job with us or submit an expression of interest application to our HR team; or
  • you supply goods or services to us.

Some examples of personal information that we collection include your contact details like your address, telephone number and email address. We may also collect details such as your date of birth, your title and employer ororganisation.

From time to time, we may also be required to collect sensitive information about you in order to provide our services, for example information about your health or your ethnicity.

We will only collect sensitive information if you consent to its collection and if the sensitive information is reasonably necessary for us to carry out at least one of our functions or activities, or if the APPs otherwise permit such collection.

We can collect sensitive information without consent if it is required or authorized under an Australian law or court/ tribunal order.

How do we collect information about you?

If we do collect personal information about you we will take reasonable steps to let you know thatwe have collected your personal information.

Directly from you: We usually collect your personal information from you directly when we speak to you on the telephone, when we correspond with you over email, when we meet with you in person, if you provide us with documents that contain your personal information or you provide information to us through our website. When we collect personal information fromyou we will do it in a lawful, fair and non-intrusive way.

From third parties: Sometimes we will collect your personal information from a third party. We will only do this if it is unreasonable or impracticable to collect the information from you directly or if we are required or authorised by an Australian law or court/tribunal orde r to do so.

Information you give us about someone else: If you supply us with the personal information of a third party, such as a spouse, colleague or friend, we accept that information on the condition that you have all the rights required from that third party to provide that personal information to us to use for our functions and activities.

Cookies: Our website uses ‘cookies’ (a Google Analytics service) which are small text files placed on your computer to help our website analyse how it is used. The information generated by the cookie about your use of our website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google uses this information to evaluate website use, compile reports on website activity for website operators and provide other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties processthe information on Google's behalf.

Google does not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser. However, please note that if you do this you may not be able to use the full functionality of our website. By using our website, you consent to the processing of data about you by Google in the manner and for the purposesset out above.

Dealing with us anonymously: You can choose to deal with us without giving us any of your personal information, but if you do so we might not be able to provide you with the assistance that you need.

How do we store and protect your personal information?

We take reasonable steps to protect your personal information from misuse, interference, loss, unlawful access, modification and disclosure.

We store hardcopy documents containing yourpersonalinformation in secure facilities

Electronic documents are stored with security measures implemented to ensure the security and confidentiality of the documents and the personal information contained in them.

What do we do with your personal information?

Generally, we will only use or disclose your personal information for the purpose that we collected it for.

However, we may use or disclose your personal information for secondary purposes that relate to our functions and activities if we have your consent do so or without your consent if the APPs permit us to do so, for example if you would reasonably expect us to use your information for the secondary purpose.

We will only use your personal information for a secondary purpose if it is related to the reason why we collected your personal information.

We will only use your sensitive information you for a secondary purpose if it is directly related to the reason why we collected the sensitive information about you.

In some circumstances we are permitted or authorised by or under an Australian law or a court/tribunal order to use or disclose your personal and sensitive information. For example, if our disclosure of your information will reduce or prevent a serious threat to life, health or safety orour disclosure is in response to any unlawfulactivity.

Data retention during the recruitment process

Personal information collected from unsuccessful candidates during the recruitment process will only be kept for the primary purpose of the application. To the extent authorized by law we will delete or destroy personal information that we hold where we no longer have a requirement to retain within a reasonable timeframe.


We may, from time to time, use or disclose your personal information (other than sensitive information) forthe purpose of direct marketing if:

  • we collected the information fromyou; and
  • you have consented to us using or disclosing your personal information for direct marketing, or you would reasonably expect us to use or disclose the your personal information for directmarketing purposes.

If we do use or disclose your personal information for direct marketing we will provide you with a simple way to unsubscribe from receiving our direct marketing communications. If you follow our processforunsubscribing, we will no longersend you these communications

We will not use or disclose sensitive information about you for direct marketing purposes unless we have your consent to do so.

We will also act in accordance with the Do Not Call Register Act 2006 and the Spam Act 2003

Receipt of unsolicited personal information

If we receive personal information that we did not take any active steps to collect, we will determine whether we would have been permitted to collect that information as part of pursuing our functions and activities.

We will destroy or de-identify unsolicited personal information that we would not collect as part of our functions and activities if it is lawful to do so and in accordance with our document destruction policy. If the information is of the type that we would collect to pursue our functions and activities it will be protected by our privacy policies and procedures.

Quality of personal information

We will endeavour to take reasonable steps to ensure that the personal information that we collect is accurate, up-to-date and complete by, for example conducting annual audits of the personal information that we hold.

If you think that the personal information we hold about you might be out of date and needs to be corrected please contact us.

Disclosure to overseas recipients

We store the personal information that we collect in Western Australia. However, from time to time our IT suppliers and service providers may be required to access our server and the personal information that we hold on our server for assisting with resolving issues and maintenance.Our IT suppliers and service providers are located in Australia as well as the UK and the USA.

Our arrangements with ourIT suppliers and service providers:

  • ensure that at all time we maintain control of the information stored on our server; and
  • prohibit our IT suppliers and service providersfromusing or disclosing personal information for purposes otherthan providing services to us.

Access to personal information

If you would like to access the personal information that we hold about you, please write to our Privacy Officer at our contact detailsset out below

We will respond to your request within a reasonable time. There are some situations set out in the APPs where we willnot be able to give you access to personalinformation. For example if giving you access would breach someone else’s privacy rights.

Generally, we will not charge fees for giving access to personal information. However, we reserve the right to charge reasonable fees where requests for personal information contain complications or are resource intensive.

Correction of personal information

If you would like to correct personal information that we hold about you, you can write to our Privacy Officer at our contact detailslisted below.


If you believe that we have failed to meet our privacy obligations or breached your privacy rights, you may make a written complaint to our Privacy Officer. Our contact details are set out below

The Privacy Officer will review your complaint, consider our conduct in relation to the complaint and the requirements of the APPs, and will consider appropriate action. The Privacy Officerwill informthe you of its decision within 30 days of receiving the complaint.

If you are unhappy following the determination of the Privacy Officer, you may appeal the determination ofthe PrivacyOfficerto our Chief Executive Officer. If you are unhappy with the outcome of an appeal to our Chief Executive Officer, you may make to the Office of the Australian Information Commissioner.

Our contact details

You can contact our Privacy Officer by email at or by post at GPO Box M971, PERTH WA 6843.

If you would like to speak to our Privacy Officer please call us on +61 8 9426 6611 and ask to speak to ourPrivacy Officer

Definitions of key terms

“collect”Personal information, including sensitive information, willbe ‘collected’ if it is included in a record or a generally available publication.

“consent”You can give consent either:

  • expressly – express consentis given explicitly eitherin writing or orally; or
  • impliedly – your consentwill be implied where your consent can be inferred from your conduct and our conduct.

“personal information”Personal information is defined in the Privacy Act. In summary, personal information is information or an opinion about an identifiable person, or a reasonably identifiable person no matter whether:

  • the information or opinion is true or false; and
  • the information or opinion recorded in a material formor not

Some examples of personalinformation include a person’s name, address and date of birth

“sensitive information”Certain types of personal information are listed in the Privacy Act as being ‘sensitive information’.

Some examples of sensitive information are information or an opinion about a person’sracial or ethnic origin or membership of a trade union, and information or opinions about a person’s health orhealth services provided to that person.