Who we are
More Driven Pty Ltd. Our website address is: https://www.moredriven.com.au.
We are a Managed Service Provider (MSP) that takes our customer data protection seriously. We protect against cyber threats and adopt the principles and baseline security measures outlined by the Australian Signals Directorate. This advisory describes cybersecurity best practices for use of information and communications technology (ICT), focusing on guidance that enables transparent discussions between MSPs and their customers on securing sensitive data. We implement these guidelines on behalf of our customers as appropriate to their unique environments, in accordance with their specific security and data sensitivity needs, and in compliance with applicable regulations. For guidance including cybersecurity measures in line with particular security requirements, refer to the link below.
Protecting Against Cyber Threats to Managed Service Providers and their Customers | Cyber.gov.au
Our Privacy Policy
More Driven respects your privacy and is committed to its protection.
This privacy policy explains why and when we collect your personal information, and what use we make of that information. The policy also explains where and why your information may be disclosed to third parties, and the security measures used by More Driven to help protect your personal information. We are bound by the Australian Privacy Principals of the Privacy Act 1988(Cth), and as far as it applies to the data that we hold, we adhere to the General Data Protection Regulation (GDPR).
Why and when we collect your information
More Driven collects the information you give us either online or by email, post, facsimile, face to face, over the phone or through our partner services. In most cases, the personal information More Driven will collect from you is the personal information required in order to provide services to you, and also for ongoing management and support of those services. This information may include your full name, mailing address, phone number, email address, ABN, facsimile number and other relevant additional details. We also collect your payment details such as your credit card number or bank account details.
If you are a domain name registrant, when you register or renew a domain name, we will collect data from you in order to satisfy the requirements of ICANN (the Internet Corporation for Assigned Names and Numbers), auDA (.au Domain Authority) or other gTLD (generic top level domain) or ccTLD (country code top level domain) policies. We only collect data that is obligatory. The collection of this data is required in order to ensure a coordinated, stable and secure operation of the Internet’s unique identifier system.
More Driven makes limited use of cookies and web storage on this and our partner services websites. A cookie is a small message given to your web browser (on the device you are using) by our web server in order to store information about user preferences. We also use cookies to track your interaction with our website, personalise your experience on our website and provide information on our product offerings through content networks across the internet (such as tailored advertising to you). HTML5 web storage is similar to a cookie, but allows enhanced functionality and capability of data storing and use when you utilise our website. You always have the option to disable cookies and/or HTML5 web storage by turning them off in your browser but you may find that this reduces the functionality of our website. Additionally, you can install a browser add-on and opt-out of interaction recording which will limit this tracking functionality and opt-out of tailored advertising programs.
How we use your information
As a domain name registrar, we are required by ICANN to make available certain personal information we collect from you when you apply to register any generic top level domain names (eg., com, net, org, biz, info and name) to the public on a publicly accessible database known as the WHOIS database. This obligation also applies to some of the country code top level domains including the .au domains. We supply a Domain Privacy product which may be used to mask personal information for some domain names.
The public policy behind this requirement is that the personal details of domain name licence holders should be freely available to all other users of the Internet. This public policy has been adopted by the domain name industry as a whole. The requirement means, however, that TPP Wholesale will not be able to control how members of the public may use the information made available on these publicly accessible databases.
On 17 May 2018, the ICANN Board adopted a Temporary Specification modifying the WHOIS specification. It defines requirements for processing personal data which is subject to the GDPR. That personal data will be redacted from the WHOIS query, however, we will still need to provide reasonable access to that personal data to third parties on the basis of legitimate interests.
In addition, ICANN has another mandatory requirement that all its accredited registrars make the WHOIS database of personal information for com, net and org available for bulk downloads by third parties who have entered into a bulk access agreement with TPP Wholesale.
We may use your information to measure your experiences of our services, improve existing services, develop new services, perform research and analysis associated with your services. We also use the information to provide you with special offers, promotions, newsletters or invitations to events. All our marketing communications will contain an unsubscribe function. You can use that function to opt-out of our marketing at any time.
We may monitor telephone conversations with you in order to facilitate staff training and to maintain our high levels of customer service. We will always inform you prior to any telephone conversation which is monitored in this way to obtain your prior approval.
Where you purchase a digital certificate through us, we are required by the provider of those certificates to collect personal information from you to pass back to that provider (other than your payment details, which we hold internally).
Disclosure of your information to third parties
We may supply your personal information to third parties to perform services on our behalf, such as:
- If you are a domain name registrant, we will have to provide your data to the registry operator or in respect of certain new gTLDs and ccTLDs, to the back-end Registrar. Under ICANN policy, we are also required to transfer your data to a data escrow agent. In response to ICANN contractual compliance requests, we may be required to provide your data to ICANN.
- market research and the distribution of marketing information to you (except where you have chosen to opt out of receiving this information from us);
- assisting us with the purposes for which we have collected and used your personal information;
- the supply of web hosting, website design, SEO and other services;
- call centre sales and support services.
Our relationships with such third party service providers are governed by our contracts with them. In some cases, those third party service providers to whom we disclose your personal information may reside outside of Australia. Those service contracts contain privacy and confidentiality provisions which are consistent with the Australian Privacy Law obligations.
Customer obligations
If you’ve moved, changed phone numbers or email address, please let us know. We can’t help you if we can’t contact you. If you want to know what information we hold of yours, if you believe that we may hold other personal information about you which is inaccurate, if you wish to change or update any of the personal information you have provided, you can always ask us. Subject to our obligation to retain your personal information for the purposes of providing services to you, you may also contact us to request erasure of your personal data. You may access and update the personal information we provide to the registries in respect of your domain name licence at any time.
If your data is subject to the GDPR and you have to contact our data protection officer, or if you have any complaint or query about our Privacy Policy, please email us at support@moredriven.com.au to have your details updated.
Security
All internet facing services and electronically transmitted information across any media involves a certain degree of risk. However, helping you to keep your information secure is very important to us.
At More Driven, we treat your data with the utmost security and use a range of technologies and policies including firewalls and access controls and restrictions to ensure that your data is secured not only from access and visibility but also from unauthorised alteration or erasure.
You can also use simple precautions to help protect your security, such as protecting against the unauthorised use of your username or password or other authentication id.
Retention of Data
We will only retain your personal data for as long as is necessary. We will need to retain your data for as long as you have an account with us and will keep your data while your account is active and for a reasonable period afterwards to ensure we are able to properly deal with any enquiries. We will also need to retain data in order to comply with our legal obligations such as compliance with tax laws.
Notifiable Data Breach
A data breach that is likely to result in serious harm to individuals must be reported to those affected and also to the Office of the Australian Information Commissioner (OAIC). A data breach happens when personal information is accessed or released without authorisation, or is lost. Serious harm may include physical, financial, emotional, psychological or reputational harm. We have procedures in place to ensure that a data breach is properly identified, assessed, contained and reported if necessary.
Changes
We may make changes to our privacy policy from time to time. You should check our privacy policy from time to time to see if we have made any changes to it.