Course Terms and Conditions

Payment
    •    For individuals, the course fee is payable at the time of enrolment.
    •    For organisations, we will issue an invoice when a purchase order or letter of authority is received by us. The invoices must be paid in full either within 7 days of the invoice date or prior to course commencement, whichever comes first.
    •    Promotional codes may only be redeemed once per person during the relevant promotional period to provide a course fee discount. The total amount of all applicable discounts may not exceed 25 per cent of the course fee. You must tell us prior to payment if you are eligible for any discounts.

Transfers
    •    You may transfer to another available course at no cost, provided you make a request at least five business days before the course starts. An administration fee of 10% of the course fee will apply if a request is made after that time but before the course starts.
    •    We will not accept any changes in enrolments, including transfers, after the course starts.
    •    If you are unable to attend the course you are enrolled in, another person may attend the course in your place for the entire course at no extra charge, provided that:
    •    you let us know in writing before the course starts; and
    •    you and that person respectively agree to any terms and conditions which may apply in this case.

Cancellations
    •    You may cancel your course booking provided you make a request at least five business days before the course starts. CWiA School may request that you forward refund requests to us in writing. Refunds will only be credited to the original funding source or via other means as agreed by CWiA School. An administration fee of 50% of the course fee will apply if a request is made after that time but before the course starts.
    •    There will be no refunds after the course starts.
    •    Note: If you have previously transferred from another course, then the course start date will be the start date of the course you were first enrolled in.

General
    •    Full course fee is payable for non-attendance.
    •    We may change the course details or cancel any course including those with insufficient enrolments or because of circumstances beyond our reasonable control. A refund or alternative courses will be offered to you in these circumstances.
    •    Our privacy policy (see below) outlines information relating to the collection and handling of your personal information by us. A copy of the policy is available on our website and to you on request.
    •    Nothing in these terms and conditions will affect your statutory rights, and nothing in these terms and conditions will limit or exclude our liability for death or personal injury arising through negligence, fraudulent misrepresentation, or anything else that cannot be excluded or limited by us by law.
    •    To the extent permitted by law, we are not liable for any indirect, special, incidental or consequential damages or otherwise (including without limitation loss of income or revenue, loss of business, loss of profits or contracts, loss of opportunity, loss of anticipated savings, loss of data, loss of goodwill), however arising and whether caused by tort, breach of contract or otherwise, even if we have been advised of the possibility of such damages.

Privacy Policy

Intent

To protect the fundamental right to privacy with respect to the processing of personal, sensitive and health information.

To protect the right to confidentiality with regard to information relating to the personal affairs of an individual that may be considered private.

To assure compliance with relevant privacy and data protection legislation.

To establish principles of transparency and fairness for the management of personal, health, sensitive or confidential information at CWiA School and all its operations.

Scope

This policy covers the management of all personal, sensitive and health information at CWiA no matter how collected or stored.

The policy is applicable to any external providers and contractors contracted by CWiA who may collect, access, use, disclose or manage personal, sensitive, health and confidential information relating to staff, students or any other individual whose information may be collected.

Exclusions

This policy does not apply to personal information or data which has been manifestly made public by the data subject or is legitimately already within the public domain.

This policy does not include information that relates to a corporate, government or business entity.

Objectives

To guide staff in the responsible collection, use, disclosure and handling of information collected and managed by CWiA and all its operations, which relates personally to an individual or their affairs.

Policy provisions

1. Management of personal, sensitive, health and confidential information (relating to an individual)

CWiA is committed to the responsible handling, and open and transparent management, of personal, sensitive, health and confidential information and to protecting the right to privacy of individuals whose information it holds.

CWiA must not act or engage in a practice that breaches any relevant privacy or data protection legislation in Victoria, Australia or other jurisdiction in which CWiA operates; except where other Victorian, Australian or international jurisdiction legislation specifically requires or allows the practice.

Provisions within this policy also apply to unsolicited personal information received.

2. Basic privacy and confidentiality principles

The following basic privacy principles must be applied in accordance with the relevant supporting instruction.

CWiA and all its operations must:

a. Collect only that information necessary to fulfil CWiA functions and activities;

b. Advise individuals of the purpose of collection and their rights to access that information;

c. Use the information only for the purpose for which it was collected, for related secondary purposes, with consent or as required or permitted by law;

d. Manage all data or privacy breaches in accordance with the Compliance Breach Reporting Procedure and always consider, in a non-self-serving manner, notification to impacted individuals;

e. Do not use or disclose personal information for the purpose of direct marketing, unless an exemption applies or unless express consent has been obtained from the individual.

f. Endeavour to ensure that information is accurate, complete and up-to-date;

g. Ensure the security of information and its proper storage, archiving or disposal in accordance with appropriate recordkeeping standards and information technology safeguards.

h. Be open and transparent about the type of personal information CWiA holds and what is done with such information;

i. By arrangement, enable individuals to access their data and make appropriate corrections, in accordance with relevant access procedures;

j. Assign and use student and staff numbers only to facilitate efficient management of CWiA business and, where possible, not to use other organisations’ identifiers.

k. Transmit personal information / data across geographical borders only to legitimate recipients, after appropriate risk assessment of privacy protections, and when equivalent safeguards are accorded to the information / data by the recipient;

l. Collect and use sensitive information only in accordance with the relevant CWiA procedure or instruction, or where required or permitted by law.

3. Personal student information

The principles of Victorian privacy law are the base or minimum level of information management and protections for all CWiA students and their personal, sensitive and health information. Where applicable, additional or higher level protections afforded by other jurisdictional law may be applied.

Where a law in any jurisdiction appears to be in conflict with Victorian privacy law, consultation must be undertaken with the CWiA Privacy Officer, the Assistant Director, Compliance or an appropriate legal officer to gain advice on additional processes that may need to be implemented to continue privacy protection assurance.

a.Cross border flows of student personal information

Personal student information can be transferred to CWiA operations in other jurisdictions only where:

    • Assurance has been gained that the recipient CWiA operation manages and protects personal information in accordance with this policy; and
    • That the provision is necessary for legitimate CWiA operations or activities; or
    • Specific consent of the individual has been obtained.

Where doubt exists as to the validity of a cross border transfer of information, the CWiA privacy officer must be consulted.

4. Privacy complaints

Individuals have the right to make a privacy complaint to CWiA.

The CWiA Privacy Officer, or appropriate privacy or legal officer, is responsible for the administration and resolution of complaints related to privacy. Where a complaint is received on another matter that includes a privacy-related component, the CWiA Privacy Officer, or appropriate privacy or legal officer, must be consulted as part of investigation and resolution processes.

5. Privacy breaches or non-compliance

Privacy breaches must be managed in accordance with the Compliance breach reporting procedure.

Where a privacy breach occurs, the initial priority must be to contain the breach and consideration must be given as part of investigation and resolution to whether notification to affected parties should be made (dependent upon potential adverse impact to individuals).

All privacy breaches must be reported to the CWiA privacy officer, or appropriate privacy or legal officer, even when managed by local line management.

6. Privacy impact risk assessments – CWiA policies, projects and contracts

Account must be taken of the CWiA Privacy and Data Protection Policy and supporting procedures / instructions when reviewing and/or developing other university policies and procedures.

The CWiA Privacy Officer, or appropriate privacy or legal officer, must be consulted at an early stage to assess the privacy impact of projects, development of new information systems, or other activities with a potential impact to privacy, data protection and information management (privacy impact assessment). The Information Technology Services (ITS) data security team, or appropriate data security officer, should also be consulted with regard to data security assurance.

Privacy impact assessments must be carried out in accordance with the Privacy impact assessment procedure.

Contracts and agreements relating to activities that may involve personal, sensitive or health information must be developed in conjunction with CWiA Legal Services, or appropriate legal officer, to ensure inclusion of appropriate privacy protection clauses, particularly where that contract or agreement will result in personal information crossing geographical borders.