Privacy Policy
Privacy Policy
Privacy Policy / Statement
Introduction and Scope
M&T Resources Pty Ltd is a wholly owned subsidiary of NRI Australia Limited. This Privacy Policy applies to NRI Australia Limited and each of its 100% owned subsidiaries (together referred to as NRI, we, our or us). It applies to all directors, employees, contractors and any other individuals whose personal information we collect and manage.
We are committed to protecting personal information and complying with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). This Policy explains how we collect, hold, use, disclose and protect personal information, and how individuals can access and correct their information or make a privacy complaint.
As we provide services to Commonwealth, State and Territory government agencies, we may in some circumstances collect and manage personal information as a contracted service provider under additional privacy obligations.
This Policy should be read together with our broader risk management and compliance frameworks, including related operational policies, procedures and processes.
Personal Information We Collect
We only collect personal information that is reasonably necessary for our business activities and functions. The types of personal information we may collect and hold include:
- Contact details (such as name, address, email address and telephone number);
- Employment-related information for employees and work seekers, including CVs, employment history, qualifications, professional memberships, accreditations and referees;
- Contractor, supplier and client contact information; and
- Other information required to provide our services or meet legal and regulatory
Where required for the provision of services or by lawful authority, we may also collect sensitive information, such as health information, immigration status or criminal history information. Sensitive information will generally only be collected with consent unless collection without consent is permitted or required by law.
How We Collect Personal Information
Where reasonably practicable, we collect personal information directly from individuals. At the time of collection, we will explain the purpose of collection and the consequences of not providing the information.
We may collect personal information through:
- Direct interactions with you, including recruitment processes, service delivery and business communications;
- Third parties such as clients, referees, suppliers and service providers;
- Our websites, including when you register for services, subscribe to communications, make enquiries, report issues or apply for roles online;
- Publicly available sources such as professional directories, published materials and online sources, including social media.
Our websites may use cookies to enhance user experience. Cookies are not used to identify individuals or track personal behaviour.
Unsolicited Personal Information (APP 4)
If we receive personal information that we did not request, we will determine whether the information could have been collected in accordance with the Australian Privacy Principles. If the information is not reasonably necessary for our functions or activities and retention is not required or permitted by law, we will take reasonable steps to destroy or de-identify the information as soon as practicable.
Online Activity and Third-Party Links
Use of the internet involves inherent security risks. Individuals are responsible for taking appropriate steps to protect their personal information online. Our websites may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites.
How We Hold and Protect Personal Information
Personal information may be stored in hard copy or electronic form and may be held by us or by trusted service providers who assist us in operating our business.
We take reasonable steps to safeguard personal information against loss, misuse, interference, unauthorised access, modification or disclosure. Security measures include physical, technical and administrative controls appropriate to the sensitivity of the information.
How We Use and Disclose Personal Information
We use and disclose personal information only for purposes directly related to our activities or as otherwise permitted or required by law. Uses and disclosures may include:
- Recruitment and workforce management;
- Providing products and services to clients;
- Managing client and business relationships;
- Meeting legal, regulatory and contractual obligations;
- Managing payments, auditing, legal, insurance, IT, data hosting, security and professional services;
- Research, planning, service development and risk management;
- Direct marketing, where permitted by law;
- Corporate transactions such as business sales, restructures or acquisitions; and
- Protecting our rights, property and safety, and those of our clients and
Government Related Identifiers (APP 9)
We do not adopt, use or disclose government related identifiers (such as Medicare numbers, tax file numbers or passport numbers) except where reasonably necessary for our functions or activities and where permitted or required by law.
Overseas Disclosure of Personal Information
NRI operates globally. Personal information may be accessed or stored overseas, including in locations such as Hong Kong, Singapore, the Philippines, Japan, the European Union and the United States of America.
We may disclose personal information to overseas service providers, including for data hosting and offshore development services. Where information is transferred overseas, we take reasonable steps to ensure appropriate safeguards are in place. By providing personal information to us, you consent to its overseas disclosure as described in this Policy.
Anonymity and Pseudonymity
Where reasonably practicable, individuals may interact with us anonymously or using a pseudonym. However, this may not be possible where identification is required to provide services or meet legal obligations.
Direct Marketing
We may use personal information to send direct marketing communications where permitted by law. Individuals may opt out of receiving marketing communications at any time by following the unsubscribe instructions provided or by contacting us using the details below. Opt-out requests will be promptly honoured.
Data Quality and Retention
We take reasonable steps to ensure that personal information is accurate, up to date and complete. When personal information is no longer required, we take reasonable steps to destroy or de-identify it in accordance with our document retention and destruction practices, unless retention is required by law.
Access and Correction
Individuals may request access to personal information we hold about them and request correction of any inaccuracies. Requests should be made using the contact details set out below. We will respond in accordance with the Privacy Act.
Complaints and Dispute Resolution
If you believe we have not complied with our privacy obligations, you may lodge a complaint with us in writing. We will acknowledge and investigate complaints promptly and provide a response within a reasonable timeframe.
If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).
13. Contact Details NRI Australia Limited
Website: www.nri-anz.com
Contact details by location: https://nri-anz.com/contact/ Email: Privacy@nri-anz.com.au
Office of the Australian Information Commissioner
Website: www.oaic.gov.au Phone: 1300 363 992
Last Updated: May 2026