Retail Finance Intelligence Pty Ltd (RFI Global) (ABN 64 121 015 192) acquired DBM Atlas in April 2023. We are a specialist research agency that has been providing evidence-based insights and solving challenging problems for our clients since 1992.
This privacy policy details how we collect, store, and process information provided by individuals in relation to both RFI Global and DBM Atlas branded surveys.
1. Commitment to Privacy
1.1   RFI Global (RFI, we/us/our) are committed to safeguarding the privacy of our survey respondents (you/your) and the Personal Information you have entrusted to us. It is important for you to understand what Personal Information we will collect, how we will use it, and who may access it.
1.2 RFI Global respects and upholds your rights under the Australian Privacy Principles contained in the Privacy Act 1988 (Commonwealth) (“Privacy Act”) and the Notifiable Data Breach scheme. For more information about the Privacy Act, the Australian Privacy Principles and the Notifiable Data Breach (NDB) scheme click here: Australian Privacy Principles
2.The Purpose of the Information We Collect
2.1 We collect personal information from individuals for research purposes only, with further details set out below. We do this in order to provide accurate and timely information to government, commercial and not-for-profit organisations about issues relevant to their activities to support their decision-making processes. In each case we must have your consent for the use of your personal data. Where we use your personal data with your consent, you have the right to withdraw your consent at any time.
2.2 The basis for us collecting personal information includes:
• to offer you opportunities to participate in research to help our clients make decisions about their products, services and brands;
• to respond to your research inquiries;
• to validate the research answers you gave;
• to update our records to ensure your information is correct;
• to send you information regarding your research participation such as how to redeem rewards;
• to ensure that our research surveys are presented in the most effective manner for you;
• to provide you with information that you request from us;
• to notify you about changes to our service (this is based on our legitimate interest in keeping you informed about changes to our service);
• to provide notice regarding changes to our terms, conditions, and policies.
2.3 The information we collect for these reasons could include types of personal information and identifiable research information such as your name and email address, as well as demographic information such as gender, household income, and occupation. We also collect feedback about your preferences, behaviours and attitudes in relation to products, services and brands. We generally collect information from you directly using various methods including (but not limited to) telephone surveys, face-to-face interviews, focus groups, SMS surveys, and internet surveys.
We may collect information about other members of your household through the primary survey with a responsible adult member of the household. When providing personal information to us you have the option of remaining anonymous or use a pseudonym to be identified by. However, in certain circumstances, such as where we receive your contact details from a third party or where the research data itself may potentially allow for identification, this will not always be practicable.
Depending on the nature of the research we conduct, we may also collect sensitive information from you, for example, ethnicity, political opinion, health information, etc. Sensitive information will only be collected with your prior consent and only if it is directly related to, or reasonably necessary for, the research we conduct.
3. Data Collection from Children
3.1 We never knowingly invite children under the age of 14 years to participate in research studies without consent from a parent or legal guardian.
If it is necessary and appropriate to a particular project to directly involve children under the age of 14 years, we take measures to ensure we have been given permission by the child’s parent or legal guardian. When inviting children under the age of 18 years old to participate in research on sensitive subjects, we take measures to ensure we have been given permission by the child’s parent or legal guardian to proceed.
4. Digital Data Collection
4.1 A cookie is a piece of information that an Internet website sends to your browser when you access information at that site. Cookies are either stored in memory (session cookies) or placed on your hard disk (persistent cookies). Our online market research survey collection software only uses session cookies. Upon closing your browser the session cookie set by this web site is destroyed. In contrast, our corporate website uses persistent cookies.
4.2 We use cookies to collect the following information for statistical and administrative purposes:
Category of Use | Type of Information | Description |
---|---|---|
Authentication | The visiting domain name or IP address or user’s server address | To identify users who visit our corporate website regularly and tailor the site to their interests and requirements |
Authentication | Computer Operating System, Browser Type and Screen Resolution | To allow us to optimize the corporate website and our surveys for your hardware and software |
Administrative | Date and time of the visit to the site | This is important for identifying the corporate website and our surveys busy times and ensuring maintenance on the site is conducted outside these periods |
Administrative | Pages accessed and documents downloaded | To indicate which pages or documents on our corporate website are most important to users and also helps identify important information that may be difficult to find |
Administrative | Duration of the visit | To indicate to us how interesting and informative the corporate website is to prospects, clients and job candidates; and to let us know how long our surveys take to complete |
5. How We Use Personal Information
5.1 We will only use your personal information for the purpose of conducting our research and in accordance with this Privacy Policy. We will never use your personal information for the purpose of advertising, promotions or direct marketing activities. We use your feedback about your preferences, behaviours and attitudes in relation to products, services and brands in order to help our clients solve the most challenging business issues and make informed decisions.
We use the information we collect to create a variety of research insights reports for our clients. We use tools and methods to make sure that there is no reasonable possibility of identifying an individual in most of the reports that we create for our clients. For example, we combine the responses we collect from you with the responses of others to produce “aggregated” reports. We would only use your individually identifiable personal information in reports with your prior consent and only if it is directly related to, or reasonably necessary for, the research we conduct.
5.2 Among other things, our insights have helped clients to:
• understand the highest priority areas to focus on in order to improve in their existing products and services;
• understand which parts of a service interaction lead to the highest consumer satisfaction;
• forecast the likely demand for new products and services;
• identify and locate different groups of people who would be most likely to use new services;
• determine the best pricing and bundling strategies for products and services.
5.3 If you declined to participate in our research, we may use your personal information to re-contact you for a research purpose if we have valid reasons to believe a genuine research concern warrants such re-contact.
If you have participated in our research, we will only re-contact you if you were informed of this or we have valid reasons to believe a genuine research concern warrants such re-contact.
If you would like to opt out of participating in any of our research please send us an email at privacy@rfi.global
6.How We Store and Retain Personal Information
6.1 We will take reasonable steps to protect your personally identifiable information as you transmit your information from your computer/device to our website. Unfortunately, the transmission of information via the internet is not completely secure and we cannot guarantee the security of your data during transmission to our site, any transmission is at your own risk. You should therefore take special care in deciding what information you transmit.
6.2 Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. We store your information for as long as needed for our research purposes and in accordance with law. We use reasonable organisational, technical and administrative measures to protect your information under our control. Please remember that storage of personal data cannot always be one-hundred percent secure.
6.3 All information you provide to us is stored on secure servers. We limit access to the information by our own employees, contractors, site service providers and those individuals who are authorised for the proper handling of such information. We request that our third party contractors and site service providers follow similar standards of security and confidentiality. We will destroy or de-identify your personal information as soon as practicable once it is no longer needed for our research purposes. The period for which we keep your personal data will be determined by a number of criteria including the purposes for which we are using the information, the amount and sensitivity of the information, the potential risk from any unauthorised use or disclosure of the information, and our legal and regulatory obligations.
6.4 We may in certain circumstances be required by law to retain your personal information after our research has been completed. In this case your personal information will continue to be protected in accordance with this Policy. If we destroy personal information we will do so by taking reasonable steps and using up-to-date techniques and processes.
7. Disclosure and Transfer of Personal Information
7.1 We will never disclose any personal information we collect except instances outlined in this policy or where you have provided express consent.
7.2 We will never use or disclose your personal information for the purpose of advertising, promotions or direct marketing activities. In most instances, our clients have no access to your personal information. The information we provide to most of our clients will only report the information you provide in an “aggregate” form (combined with responses of others) or another form that will not personally identify you.
7.3 We will not disclose any personal information or identifiable research information to a third party for a purpose other than conducting our research unless you have provided express prior consent, or we are required to do so by an Australian law or court/tribunal order.
7.4 In the course of conducting our research we may use third-party service providers who are located overseas, to assist us in the purpose of conducting our research. These activities include, but not exclusively, data hosting, data storage, and digital fingerprinting technologies which may be used for quality control and validation. In most cases, this research data will not be identifiable research information. We will also take reasonable steps to ensure any third-party service providers (and their employees and contractors) comply with the Privacy Act and this Privacy Policy and/or are subject to similar privacy laws and you have the ability to enforce those rights.
8. How You Can Access or Correct Your Own Personal Information
8.1 You have the following rights in relation to your personal data:
• the right to change your mind and to withdraw your consent;
• the right to access your personal data;
• the right to rectify/correct any personal data that we hold about you that’s inaccurate or incomplete;
• the right to erase your personal data from our systems, unless we have legitimate reasons for continuing to process the information;
• the right to port your personal data (portability right);
• the right to restrict processing of your personal data;
• the right to ask whether we’re processing your personal data and, if we are, to find out details of that processing;
• the right to object to how we’re processing your personal data, and to ask us to restrict how we’re processing your personal data;
• the right to have the personal data that you’ve provided to us, provided to you, in a structured and commonly-used electronic format;
• the right to ask us to transfer your personal data directly to another company if that’s feasible.
8.2 We will respond to any requests to excercise the above rights in a reasonable time. A fee may be charged to cover the cost of data retrieval. This fee will not be excessive and will only apply to the facilitation of your request. You can exercise any of these rights by contacting us at the details listed below.
9. Complaints
9.1 If you believe that we have breached the Australian Privacy Principles you may complain to the Privacy Officer using the contact details below. The Privacy Officer will investigate your complaint and advise you whether the complaint has been upheld and, if so, the action taken.
9.2 If your complaint is not resolved to your satisfaction within 30 days you may refer the complaint to the Office of the Australian Information Commissioner at this link: OAIC Lodge a Complaint
10. Contact Us
10.1 If you have any questions about this Privacy Policy, you may contact us using the following contact details:
Email the Privacy Officer at: privacy@rfi.global
10.1 You can also write us at
RFI Global
Attn: Privacy Officer
320 Pitt Street,
Sydney, NSW, 2000
11. Security and retention of your Personal Information
11.1 In this policy “personal information” has the same meaning as under the Privacy Act.
11.2 This privacy policy was last updated on 24 November 2023.
We may update this policy further from time to time. Any changes we make to our privacy policy will be posted on our website.
Cookie | Duration | Description |
---|---|---|
__cf_bm | 1 hour | This cookie, set by Cloudflare, is used to support Cloudflare Bot Management. |
__hssc | 1 hour | HubSpot sets this cookie to keep track of sessions and to determine if HubSpot should increment the session number and timestamps in the __hstc cookie. |
__hssrc | session | This cookie is set by Hubspot whenever it changes the session cookie. The __hssrc cookie set to 1 indicates that the user has restarted the browser, and if the cookie does not exist, it is assumed to be a new session. |
AWSALBCORS | 7 days | Amazon Web Services set this cookie for load balancing. |
AWSALBTG | 7 days | Amazon Web Services set this cookie for load balancing. |
AWSALBTGCORS | 7 days | Amazon Web Services set this cookie for load balancing. |
cookielawinfo-checkbox-advertisement | 1 year | Set by the GDPR Cookie Consent plugin, this cookie records the user consent for the cookies in the "Advertisement" category. |
cookielawinfo-checkbox-analytics | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics". |
cookielawinfo-checkbox-functional | 11 months | The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional". |
cookielawinfo-checkbox-necessary | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary". |
cookielawinfo-checkbox-others | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other. |
cookielawinfo-checkbox-performance | 11 months | This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance". |
CookieLawInfoConsent | 1 year | CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie. |
elementor | never | The website's WordPress theme uses this cookie. It allows the website owner to implement or change the website's content in real-time. |
rc::a | never | This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks. |
rc::c | session | This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks. |
viewed_cookie_policy | 11 months | The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data. |
wpEmojiSettingsSupports | session | WordPress sets this cookie when a user interacts with emojis on a WordPress site. It helps determine if the user's browser can display emojis properly. |
XSRF-TOKEN | 2 hours | This cookie enhances visitor browsing security by preventing cross-site request forgery. |
Cookie | Duration | Description |
---|---|---|
AWSALB | 7 days | AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target. |
AWSALBTG | 7 days | Amazon Web Services set this cookie for load balancing. |
AWSALBTGCORS | 7 days | Amazon Web Services set this cookie for load balancing. |
Cookie | Duration | Description |
---|---|---|
__hstc | 6 months | Hubspot set this main cookie for tracking visitors. It contains the domain, initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session). |
_ga | 1 year 1 month 4 days | Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors. |
_ga_* | 1 year 1 month 4 days | Google Analytics sets this cookie to store and count page views. |
hubspotutk | 6 months | HubSpot sets this cookie to keep track of the visitors to the website. This cookie is passed to HubSpot on form submission and used when deduplicating contacts. |
wmc | 1 year 1 month 4 days | Workable sets this cookie to assign a unique visitor ID for statistical purposes. |
Cookie | Duration | Description |
---|---|---|
_cfuvid | session | Description is currently not available. |