Privacy at The University of Western Australia
The University of Western Australia strongly respects the privacy of students, staff and other members of the University community. UWA is committed to the responsible and legal management of personal information collected on behalf of the University.
The University has obligations regarding the collection, use and management of personal and health information under various pieces of legislation.
The University must comply with the Australian Privacy Principles, contained within the Privacy Act 1988 (Commonwealth), in relation to students’ personal information obtained for the purposes of chapter 3 and 4 of the Higher Education Support Act 2003 (Commonwealth). The University has further obligations in relation to the personal data it collects and manages under the Health Services Act 2016 (WA) and the Freedom of Information Act 1992 (WA).
The University is also considered in limited circumstances to be a data controller for the purposes of the European Union General Data Protection Regulation 2016/679 (GDPR) in relation to the collection of personal information from individuals located in the European Union (EU).
Apart from as above the University is not subject to the Privacy Act 1988 (Commonwealth) and unlike other Australian States and Territories there is no current Western Australian Information/Data Privacy Act.
Any person who deals with the University is entitled to expect that their personal information will be treated in accordance with this policy.
In addition to the policy UWA Staff and Students should also read the information specific to them, as found in the University Privacy Collection Notices.
The University has distilled and summarised its commitment to information privacy through the UWA Information Privacy Tenets.
- 1. Notice
- Inform individuals what personal information you are collecting and why
- 2. Purpose
- Collect only what personal information is legitimately needed for the purpose
- 3. Security
- Protect personal information by using adequate security
- 4. Sharing
- Do not disclose personal information unless you are confident it is directly connected with its purpose
- 5. Relevancy
- Ensure personal information remains relevant, by allowing individuals to review and correct their data
- 6. Accountability
- Handling personal information is your responsibility
- 7. Transparency
- Be open and vigilant, and report concerns or potential improvements
For more detail on the Privacy Office and how to contact it please see our Privacy Office page.