Privacy Policy

Cresta IT is committed to protecting your personal privacy. This Privacy Policy provides you info on how we collect, store, use and disclose your personal information. We encourage you to read this Privacy Policy carefully so that you understand our information handling practices.

Cresta IT

Cresta IT refers to Cresta IT Pty Limited

Information we collect.

In order to provide our products and services, we may collect personal information from you and others. If we do not receive all requested information, we may be unable to provide these.

The information we collect includes names, addresses, phone numbers, email addresses, profession or occupation, and other contact details. For product or service purchases, we collect credit card details. For potential employees, we collect resumes and work history.

We generally do not collect 'sensitive information' as defined in the Privacy Act 1988 (e.g., ethnic origin, religious beliefs, or health). If such collection is necessary and practical, we will seek your consent and inform you of the urpose beforehand.

Information Under Law

Cresta IT Pty Ltd may collect personal information under the Telecommunications Act 1997 and its related laws. This includes information about individuals or communications as required by the 'data retention' provisions of the Telecommunications (Interception and Access) Act 1979 ('Data Retention Law').

This data retention information includes subscriber and account details, telecommunication device details, the source and destination of communications, communication dates and times, communication or service types, and location details.

How we collect personal information

We generally collect personal information directly from individuals, such as when you inquire about our products or services through our website.

Occasionally, we may also collect your information from third parties. This can happen if an existing customer suggests you might be interested in our services, or from companies you work with, other organizations you deal with, information service providers, or public records.

How we store personal information

We limit access to personal information to staff who require it for their duties. We take all reasonable steps to secure your personal information, protecting it from loss, misuse, or unauthorized changes.

Any electronic personal information you provide or we collect is stored on secure servers and encrypted as required by Data Retention Law. Our employees are contractually obligated to maintain confidentiality. We also have physical security measures for records containing personal information.

To help protect your privacy, please keep your website access credentials (username and password) secret.

Purpose of collection

We collect personal information to:

Identify our customers, potential customers, and their representatives.
Inform you or others about relevant technology solutions, products, services, and their benefits.
Provide information on available offers or benefits.
Seek your feedback on our products and services.
Manage billing and debt recovery.
Handle our management, administration, quality assurance, and complaint resolution efficiently.
Deliver customer service and resolve IT system and network issues.
Develop and improve our products and services.
Comply with legal requirements, including the Data Retention Law.

Use and Disclosure

We use and disclose personal information for the purposes mentioned and for other secondary uses.

Typically, we share personal information with our related entities, third-party service providers, and contractors who assist in delivering our products and services. For example, this may include technology vendors for technical support or contractors for on-site equipment installation.

Additionally, we may be obligated by contract or law to disclose personal information to auditors for business and service reviews, or to government bodies such as the Australian Prudential Regulation Authority or authorized agencies under the Data Retention Law.

Unless stated otherwise, we will only use or disclose personal information if:

The individual has consented.
The third party is involved in a current or proposed transaction (e.g., sale) of our assets or business.
The third party is your creditor, banker, or financier.
The disclosure is allowed, required, or authorized by law.

Marketing

We may use your personal information to inform you about new products and marketing technology solutions we believe may interest you. This includes our product and service offerings, newsletters, and general company information.

If you prefer not to receive information about our products and services, please contact us using the details below to be removed from our mailing list.

We will not disclose your personal information to a third party for direct marketing purposes unless you have given your express consent.

Access

You can request access to your personal information that we hold by contacting us using the details below.

However, we may deny your request if:

It impacts the privacy of others.
The request is frivolous or vexatious.
There is existing or anticipated legal proceedings.
Access can be denied by law or a law enforcement agency.

Should we deny your request, we will provide a reason.

Quality & correction

We aim to keep your information accurate and complete. Please inform us if you believe any personal details we hold are incorrect or incomplete, and we will update them.

Website & cookies

We use cookies and similar tools to understand user needs and improve our online services.

Cookies are text files placed on your hard drive by a web server. They are unique to you and cannot run programs or deliver viruses. Their main purpose is to save you time by recalling your information on subsequent visits, such as when you register with Cresta IT. This simplifies the process of re-entering personal details like billing and shipping addresses, allowing you to easily use customized website features.

You can accept or decline cookies. While most web browsers accept cookies automatically, you can change your browser settings to decline them if you prefer. However, declining cookies may limit your ability to fully experience the interactive features of Cresta IT's website services.

Please note that we do not use this technology to access any personal information from our records, and cookies do not personally identify users.

Changes to our Privacy Policy

We periodically review and update our business processes and policies as our business evolves.

We may also update our Privacy Policy at any time. Should there be any changes, we will post the revised version on our website.

Complaints

We are committed to ensuring your personal information is handled appropriately. If you believe we have not adhered to this Privacy Policy or the Australian Privacy Principles, please contact us using the details below. This will allow us to address and resolve the issue to your satisfaction.

Upon receiving your complaint, our privacy officer will:

Listen to your concerns.
Discuss potential resolutions.
Implement an action plan to resolve your complaint and improve our information handling procedures, if necessary.

Disclosure to overseas recipients

We may disclose personal information to staff employed by our related body corporate in Nepal to deliver specific products and services to you.

Additionally, we may use third-party service providers located outside Australia, such as in New Zealand, to install or maintain our equipment on your site for the purpose of delivering data services to you.

Contact Us

If you require more detailed information about our information handling practices or if you have any concerns about our handling of your personal information, please let us know by contacting us at:

Privacy Officer

Cresta IT Pty Limited

Email: privacy@Crestait.com.au

We will endeavour to respond to your concerns as quickly as possible.

Last Updated: 27 July 2025