This statement explains how we will treat your personal information in the course of your employment at RMIT and after it ends.
The Staff Privacy Statement should be read in conjunction with the RMIT Privacy Statement.
This privacy statement applies to RMIT staff employed by the University and entities of the RMIT Group including RMIT University Vietnam, RMIT Training, RMIT Online and RMIT Europe.
RMIT collects personal information (also known as personal data) about you during the course of your employment.
This information may include: your name, date of birth, residency status, home address, photographic image, health information, tax file number, banking details, superannuation details, qualifications, employment history, work plan and work planning reviews and details of paid outside work.
The information may be collected from several sources by us, or on our behalf, at the commencement and throughout your employment at RMIT.
Health information may also be collected in the following circumstances:
The primary purpose for collecting your information is to maintain your employee records and to administer your employment relationship. Examples of other legitimate purposes include:
RMIT will use and disclose personal staff information for purposes directly related to your employment relationship and for the purposes for which it was collected. Additional disclosures will only be made if required and/or permitted by law, or with your consent.
Examples of when we might use or disclose your personal information include:
There are times when we might need to disclose your personal information to a third party for a purpose that is permitted by law. Examples include but are not limited to:
You will have access to RMIT resources to use in the course of your employment and for limited, reasonable personal use. Using these resources might result in the creation or capture of employee personal information – like the content of emails or calls, records relating to your physical location, telephone numbers messaged or called, sites visited, and social media sites that you have linked to your RMIT profile e.g. LinkedIn for RMIT issued micro-credential badges.
If you are accessing RMIT IT resources offsite or remotely, a non-RMIT issued phone number or personal email may be required to enable multi-factor authentication.
You should be conscious of this and recognise that such information might be accessed, viewed and used by RMIT for purposes directly relating to the employment relationship. Examples of use by RMIT might include use for the purpose of monitoring employee performance or use in workplace investigations (including disciplinary investigations) relating to alleged employee misconduct.
Accessing, viewing and use by RMIT may be either intentional (for example, as a result of proactive monitoring or auditing of our IT systems, recording of telephone conversations, campus security, or reviewing geographic location data) or unintentional (for example, viewed when looking for an unrelated email or document).
Your personal information will be used to administer RMIT employment resources and processes including:
RMIT holds personal information in authorised electronic and paper-based records management systems. We take all reasonable steps to ensure that the personal information we hold is accurate and complete and that it is protected from misuse, loss, unauthorised access or disclosure.
Information may be held in external service providers. Some of our service providers are located outside of Victoria and/or Australia and, as a result, personal information collected and held by RMIT may be transferred outside of Victoria (but within Australia) or outside Australia.
The information disclosed to these host organisations will be limited to information that is necessary to effectively operate the application on behalf of RMIT.
Information stored in externally hosted applications is still managed and controlled by RMIT.
You have direct access to your personal information unless provision of the information will have an unreasonable impact on the privacy of others. You can contact HR Assist for advice on how to access and correct your personal information. For RMIT Training, a request should be made in writing to the Director, Human Resources.
Otherwise, access to and correction of personal information is handled in accordance with the Freedom of Information Act 1982. A Freedom of Information (FOI) request should be made in writing, accompanied by the required application fee, to the University FOI Officer. Further information is available at our Freedom of Information webpage.
RMIT periodically refines this privacy statement to reflect appropriate information flows. The overall level of privacy protection is maintained when changes or inclusions are made. If you have a query about your personal information and the way it is handled, please check online for the current privacy statement. This statement was last updated 16 September 2021.
For more details on how your information is handled at RMIT:
Acknowledgement of Country
RMIT University acknowledges the people of the Woi wurrung and Boon wurrung language groups of the eastern Kulin Nation on whose unceded lands we conduct the business of the University. RMIT University respectfully acknowledges their Ancestors and Elders, past and present. RMIT also acknowledges the Traditional Custodians and their Ancestors of the lands and waters across Australia where we conduct our business - Artwork 'Luwaytini' by Mark Cleaver, Palawa.
Acknowledgement of Country
RMIT University acknowledges the people of the Woi wurrung and Boon wurrung language groups of the eastern Kulin Nation on whose unceded lands we conduct the business of the University. RMIT University respectfully acknowledges their Ancestors and Elders, past and present. RMIT also acknowledges the Traditional Custodians and their Ancestors of the lands and waters across Australia where we conduct our business.