LAUNCH

Privacy Policy

1. About this Privacy Policy

1.1 Thank you for your interest in 1-Stop Connections Pty Ltd (OneStop). OneStop provides data and solutions for the global port, freight and logistics community to simplify supply chain workflows, enhance productivity and keep the business of delivery moving.

1.2 This Privacy Policy describes how we manage personal information about individuals that is collected and processed by us via:

a) our website at https://1-stop.com.ph/ and any webpages accessible from that URL or from any subdomains (Website); or

b) our software platforms (Platforms) including our:

  1. ComPay Payment Platform; and
  2. Terminal Appointment Booking System (TABS).

It describes how we collect, hold, disclose and otherwise process that personal information and the steps that we take to protect it.

1.3 We are committed to complying with our privacy obligations in accordance with all applicable data protection laws, including the Philippines Republic Act No. 10173, otherwise known as the Data Privacy Act (Data Privacy Act), and accompanying Implementing Rules and Regulations of Republic Act No. 10173 (Privacy Rules).

1.4 If we decide to change this Privacy Policy, we will post the updated version on this webpage. Changes will be effective immediately when posted on our Website and your continued access, browsing or use of our Website and Platforms thereafter will constitute your acceptance of the updated version. Our policy is to be transparent about our privacy practices. The date of the most recent version of this Privacy Policy can be found at the bottom of this webpage.

2. Consents

2.1 Each end user of any of our Platforms and/or our Website (End User) is required to comply with all applicable privacy laws.

2.2 Each customer of any of our Platforms and/or Website and their personnel (Customer) is required to comply with all applicable privacy laws.

2.3 We obtain the consent of each End User and Customer to process personal information about them in accordance with this Privacy Policy.

2.4 We rely on our End Users and Customers (as applicable) to obtain all relevant privacy consents and authorisations from any person that are required by law, in order for the personal information that is provided to us about such persons (data subjects), including personal information that is entered by or on behalf of our End Users and Customers into our Website or any of our Platforms to be collected, disclosed and otherwise processed by us in accordance with this Privacy Policy.

2.5 We also rely on End Users and Customers (as applicable) to ensure that all personal information that has been provided to us by End Users and Customers about data subjects, including personal information that has been entered, by or on behalf of our End Users and Customers into our Website or any of our Platforms that is held by us, is accurate, up to date, complete, relevant and not misleading.

2.6 We encourage our Customers and End Users to ensure that data subjects are familiar with their privacy policies so that data subjects understand how Customers and End Users (as applicable) will collect, use and otherwise process personal information about them, via our Website, Platforms or otherwise.

2.7 When you provide us with personal information about any other person, you must ensure that:

a) you are authorised by that person to provide their personal information to us;

b) you have referred them to this Privacy Policy and any relevant Collection Notice and obtained their express consent to OneStop collecting, using, and disclosing their personal information in accordance with this Privacy Policy;

c) all personal information about another individual that you provide to us is accurate, up to date, complete, relevant and not misleading.

d) you have made them aware of the existence of their rights as data subjects under the Data Privacy Act;

e) where a person exercises or seeks to exercise any of their rights as a data subject, you will immediately notify us so that we can uphold their rights to the extent required by us under law; and

f) you have complied with the the Data Privacy Act and Privacy Rules, and all other applicable data protection laws in connection with the collection and disclosure of their personal information to us.

3. The types of personal information we collect and hold about individuals

3.1 OneStop collects and holds the following the following personal information:

a) Content entered into our Website about data subjects: Certain parts of our Website may include tools and functionality that provides for the collection of personal information, including contact forms. As part of our One Community System on our Website, Website users can share hyperlinks to certain webpages on the One Community System with third parties via a sharing tool on the Website. In order to use the sharing tool, a Website user is required to include their name and email address and the email address of the intended recipient of the hyperlink – we use that information to automatically send an email to the intended recipient that includes a reference to the sender’s name and email address entered into the sharing tool – after the email is sent we automatically delete the name and email address of the sender as well as the intended recipient’s email address from our records.

b) Content provided to us and/or entered into our Platforms about data subjects: Personal information that we may ask you to provide about, or on behalf of, a data subject includes contact information (such as name, address, telephone number, and email address) and identification details that may also be “sensitive information” for the purposes of the Data Privacy Act (such as driver’s licence details, vehicle registration details, maritime security card details, and/or passport information, criminal record, health information or photographs) if required for our relevant service(s) and/or product(s) and details about your internet connection (such as your IP address), the equipment you use to access service(s) and/or product(s) and usage details.

c) Data collected using cookies: Our Website uses cookies to distinguish you from other users of our Website. This helps us to provide you with a good experience when you browse our Website and also allows us to improve our Website. A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree. Cookies contain information that is transferred to your computer’s hard drive. We use the following cookies:

    • Strictly necessary cookies: These are cookies that are required for the operation of our Website. They include, for example, cookies that enable you to log into secure areas of our Website.
    • Analytical or performance cookies: These allow us to recognise and count the number of visitors and to see how visitors move around our Website when they are using it. This helps us to improve the way our Website works, for example, by ensuring that users are finding what they are looking for easily.
    • Functionality cookies: These are used to recognise you when you return to our Website. This enables us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of language or region).
    • Targeting cookies: These cookies record your visit to our Website, the pages you have visited and the links you have followed. We will use this information to make our Website and the advertising displayed on it more relevant to your interests.

d) Information about past, current and prospective Customers: We collect contact details of our Customers and their personnel such as names, contact information and billing information.

e) Information required for the support, maintenance and security of our Platforms: In order to support, maintain and supply access to the Platforms, we collect and process personal information about End Users, including IP addresses, email and physical addresses, telephone numbers, user access logs, usernames, passwords, log information including information specific to your device or computer (such as system activity, hardware settings, browser type, browser language, your operating system, hardware version, device settings, file and software names and types, mobile network information and device identifiers) and information included in technical support tickets and error messages.

4. How we collect personal information

4.1 Our policy is to not collect personal information by means that are unlawful, unfair or unreasonably intrusive in the circumstances. We uphold the principles of transparency, legitimate purpose and proportionality in our collection of personal information.

4.2 We collect information about prospective Customers from public and private databases and when they otherwise voluntarily disclose it to us or authorise us to collect it, in order for us to market, sell and operate the Website and the Platforms.

4.3 When a prospective Customer subscribes to a Platform (whether by entering into a contract with us for a subscription or in the course of registering an account on a Platform) or enters personal information into our website, we collect personal information about them and their data subjects (if applicable) in one or more of the following ways:

a) when personal information is entered into the Platform or the Website;

b) when it is voluntarily disclosed to us (such as via telephone, e-mail, questionnaires or feedback forms); and

c) from other sources (e.g. Australia Post, AusCheck, RapidID).

4.4 We also collect personal information about individuals whose personal information is uploaded into our website tools (whether by them or others).

5. How we use personal information

5.1 Information about how we use personal information about data subjects is set out in the following table:

Category How we use and process that personal information Our reason for collecting the personal information
Personal Information about End Users of our Website
  • To respond to enquiries made to us via contact forms on our website.
  • To provide the functionality of the relevant online tool.
  • To provide users with information about promotional offers and new products and solutions that we make available.
  • To handle complaints.
  • To investigate security incidents on the website.
  • Necessary for our legitimate interests (in order to operate and grow our business).
  • Compliance with our legal obligations.
Personal information about prospective Customers and their personnel
  • To inform, market and promote the Website and our Platforms to prospective Customers and negotiate contracts for their subscriptions to our Platforms with them.
  • Necessary for our legitimate interests (in order to operate and grow our businesses).
  • Compliance with our legal obligations.
Personal information about current Customers, their personnel and/or other data subjects
  • To check and verify identity.
  • To setup, configure, host or procure the hosting, of our Platforms for a Customer and the use of the system by the Customer and/or their End Users.
  • To provide the functionality of the Website and our Platforms to Customers.
  • To communicate with Customers and their personnel about their current and prospective use of our Platforms, including with respect to their current and anticipated usage of it, and to discuss and implement product and services requirements.
  • To provide Customers and their personnel with technical support and maintenance services including by responding to help desk tickets, scheduling upgrades and enhancing the Platforms.
  • To send out billing information and notices to Customers and their personnel and process payments.
  • To discuss our security requirements.
  • To ensure the security of port and terminal processes.
  • To provide Customers and their personnel with information about promotional offers and new products and solutions that we make available.
  • In order to identify Customersand their personnel when contacted with technical support questions.
  • To administer our contractual relationships with Customers (and to enforce our contractual rights and their contractual obligations).
  • To investigate security incidents on the Platforms and Website.
  • Necessary for our legitimate interests (in order to operate, administer and grow our businesses including to operate the Platforms, IT systems and networks, manage our suppliers and hosting environments and ensure the successful delivery of our products and services).
  • Performance and enforcement of contracts with Customers.
  • Compliance with our legal obligations.

6. Direct marketing

6.1 We may:

a) use personal information that we have collected about you to identify a product or service that may benefit you;

b) contact you from time to time to let you know about a product or service that we believe you might be interested in; and

c) disclose your personal information to our related entities and to our business partners (including third-party facilitators) to enable them to tell you about a product or service that you might be interested in.

6.2 This communication may be in various forms including mail, telephone, SMS, or via email in accordance with the Spam Act 2003(Cth). If you indicated a preference for a method of communication we will endeavour to use that method whenever practicable to do so.

6.3 You may request at any time not to receive direct marketing material when you use our services.

6.4 Simply contact us by using the details noted under the “Contact Us” section below or by request via the Website and we will ensure you no longer receive direct marketing communications from us and our third-party facilitators.

7. Analytics data

7.1 We also collect information about End Users known as analytics data such as user location, information about devices accessing a Platform, the amount of time an End User spends on the Platform and in which parts of it, browsing actions and patterns, traffic data, location data and other communications data, and the path navigated through it. However, all such information is de-identified data and not collected in a form that could reasonably be expected to identify an individual. In any event, we only use analytics data for the following purposes:

a) to help us review, enhance and improve our Website, the Platforms and our other products and services (for statistical or research purposes); and

b) to develop case studies and marketing material without identifying any individual.

8. How we hold and secure personal information

8.1 We hold and store personal information that we collect in our offices, computer systems, and third party owned and operated hosting facilities. In particular:

a) we engage hosting facilities operated by reputable hosting providers;

b) personal information that is provided to us via email is held on our servers or those of our cloud-based email providers;

c) we use third party owned cloud-based customer relationship management (CRM) and marketing platform providers to hold personal information about current and prospective users of OneStop products and services;

d) personal information is held on computers and other electronic devices in our offices and at the premises of our personnel; and

e) we hold personal information that is provided to us in hard copy in files and folders in secure locations.

8.2 We take reasonable steps to protect personal information that we hold using such security safeguards as are reasonable in the circumstances to take against loss, unauthorised access, modification and disclosure and other misuse and to implement technical and organisational measures to ensure a level of protection appropriate to the risk of accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal information transmitted, stored or otherwise processed by us.

8.3 For example, we:

a) only use reputable hosting providers to host personal information;

b) implement passwords and access control procedures into our computer systems;

c) perform security testing and maintain other electronic (e-security) measures for the purposes of securing personal information, such as passwords, anti-virus management and firewalls;

d) maintain physical security measures in our buildings and offices such as door and window locks and visitor access management, cabinet locks, surveillance systems and alarms to ensure the security of information systems (electronic or otherwise);

e) require all of our employees, agents and contractors to comply with privacy and confidentiality provisions in their employment contracts and subcontractor agreements that we enter into with them, and to comply with all of our applicable data privacy and security policies;

f) conduct security awareness training for our employees and development security training for our software developers; and

g) have data backup, archiving and disaster recovery processes in place.

9. Disclosure of personal information

9.1 We only disclose your personal information that we collect as follows:

Who we disclose your personal information to What categories of personal information we disclose Why we disclose your personal information
Suppliers: hosting, software and software development, research, mail and delivery, security, banking, payment processing, facilitating credit arrangements, credit reporting, fraud checks, data storage, information processing, order tracking, product reviews, online competitions, technology services, or labour hire The minimum required To outsource services and functions that are a part of, or in relation to our provision of services, and to improve and develop our services.
Professional advisers: legal, accounting or financial, insurers, debt collectors The minimum required To receive professional advice or representation in legal, equitable, accounting or other financial matters.
Banking and financial bodies:

 

The minimum required To outsource services and functions that are a part of, or in relation to our provision of services, and to improve and develop our services.
Law enforcement, courts, regulators and other government bodies:

We only disclose your personal information as required by law or under government direction.

The minimum required Where it is brought to our attention that specific personal information needs to be disclosed to protect the safety or vital interests of any person;

To avoid prejudice to the maintenance of the law by any public sector agency, including the prevention, detection, investigation, prosecution, and punishment of offences;

For the enforcement of a law imposing a pecuniary penalty;

For the conduct of proceedings before any court or tribunal (being proceedings that have been commenced or are reasonably in contemplation); and

For the protection of public revenue.

 

9.2 Where we disclose your personal information, we will ensure that all entities to which we disclose your personal information will ensure adequate safeguards for data privacy and security and that they will adhere to principles of transparency, legitimate purpose and proportionality in their processing of your personal information, including where required under applicable data protections laws, having a data sharing agreement that establishes such appropriate safeguards that uphold your rights as a data subject.

10. Third party websites

10.1 Our Website and Platforms may include links to third party websites. Our supply of those links does not mean that we endorse or recommend them. We do not warrant or represent that any third party website operator complies with applicable data protection laws. You should consider the privacy policies of any relevant third party website prior to sending personal information to them.

11. Rights of data subjects

11.1 To the extent required under law, we respect and uphold the rights of all data subjects in accordance with the Data Privacy Act and the Privacy Rules, including:

a) The right to object – As a data subject, you have the right to indicate your refusal to the collection and processing of your personal information, including processing for direct marketing, automated processing, or profiling;

b) The right to access – Upon your request, you may be given access to your personal information that we collect and process in accordance with section 14 of this Privacy Policy;

c) The right to rectification – You have the right to dispute any inaccuracy or error in your personal information and may request us to immediately correct it. Upon your request, and after correction has been made, we will inform any recipient of your personal information of its inaccuracy and the subsequent rectification that was made.;

d) The right to erasure or blocking – In the absence of any other legal ground or overriding legitimate interest for the lawful processing of your personal information, or when there is substantial proof that your personal information is incomplete, outdated, false, or has been unlawfully obtained, you may request us to suspend, withdraw, or order the blocking, removal, or destruction of your personal information from our systems. We may also notify those who have previously received your processed personal information; and

e) The right to damages – You have the right to be indemnified for any damages sustained due to inaccurate, incomplete, outdated, false, unlawfully obtained, or unauthorised use of your personal information, taking into account any violation of your rights and freedoms as a data subject, as provided by law.

11.2 To the extent required by us under law, we will cooperate with data subjects to allow them to exercise any of their rights as a data subject.

11.3 We will recognise and uphold the rights of any lawful heirs or assignees of the data subject as applicable.

11.4 If you withdraw your consent to any or all use of your personal information, depending on the nature of your request, we may not be able to continue to provide our products and/or services to you. In addition, there are some circumstances in which we are not required to give you access to your personal information.

12. Interacting with us without disclosing personal information

12.1 Our Website tools that we make available to users of our website independently of a subscription can be used anonymously.

12.2 Any person has the option of not identifying themselves or using a pseudonym when contacting us to make general enquiries about our services.

12.3 If you do not provide us with your personal information, you can only have limited interaction with us. For example, you can browse our Website without providing us with personal information, such as the pages that generally describe our products and services, and our Contact Us page. However, when you submit a form on our Website or become a Customer, we need to collect personal information from you in order to identify who you are, so that we can provide you with the functionality of our Website and Platforms, and for the other purposes described in this Privacy Policy.

12.4 It is not feasible to access our Platforms or the subscription services on our Website on an anonymous basis.

13. What we do with personal information we no longer need

13.1 Any personal information that we no longer need will be deleted or de-identified in a safe manner.

14. How to access and correct personal information held by us

14.1 Data subjects who wish to access and correct the personal information held by us about them should contact us by email at privacy.officer@1-stop.biz or by post sent to the details in the “Contact Us” section below.

14.2 If we are contacted by any person who represents to us that they are a data subject, for security purposes, we will only discuss the personal information that we hold about them with them if they identify themselves accurately and truthfully.

14.3 We will handle all requests for access to and/or correction of personal information in accordance with our statutory obligations. We may require payment of a reasonable fee by any person who requires access to their personal information that we hold, except where such a fee would be contrary to applicable law.

14.4 Where we have been made aware of incorrect, inaccurate or incomplete information, we will take reasonable steps to rectify, supplement, destroy and restrict further processing of such data.

15. Our contact details

15.1 Any person who wishes to contact us for any reason regarding our privacy practices or the personal information that we hold about them, or make a privacy complaint, may contact us using the following details:

Data Protection Officer

1-Stop Connections Pty Ltd

By post: GPO BOX 5321, Sydney, NSW, Australia 2001

By e-mail: privacy.officer@1-stop.biz

By phone: 1300 881 055 (Australia) or +61 2 9588 8900 (International)

15.2 The Data Protection Officer is the individual principally responsible for ensuring our compliance with applicable data protection laws. The Data Protection Officer is responsible for the supervision and enforcement of this Privacy Policy,

15.3 We will use our best endeavours to resolve any privacy complaint with the complainant within a reasonable time frame given the circumstances. This may include working with the complainant on a collaborative basis or otherwise resolving the complaint.

15.4 If the complainant is not satisfied with the outcome of a complaint or they wish to make a complaint about a breach of the data protection laws, they may refer the complaint to the National Commission who can be contacted using the following details:

Telephone: 8234-2228

Email: complaints@privacy.gov.ph

Address: 5th Floor Delegation Building, PICC Complex, Vicente Sotto Avenue, Pasay City, Metro Manila 1307

 

This Privacy Policy was most recently updated on 9 December 2023.

 

SIGN UP

Stay in the loop to receive all our latest news and product updates
Thank you for subscribing.
An error occurred, please try again later.