Privacy Policy

We collect personal information from you where it is reasonably necessary for one of our business purposes, including supplying you with goods or services (which includes telecommunications services and credit services), the administration and performance of our agreements with you, for the improvement of our services to best meet your needs, and to comply with our legal obligations.

The type of personal information we collect may include your name, address, date of birth, occupation, employer details, contact details (e.g. phone numbers and email addresses), payment details (e.g. bank account or credit card details) and financial information.


may collect this information in a number of ways, such as:

• Directly from you – for example, where you complete your details in an order form or provide those details to one of our account managers.
• As a result of your use of our services – for example, when you pay your bill or use our services or self-service channels.
• From your online activity – for example, cookies and other digital identifiers.
• From third parties – for example, from your employer if you are an end user of one of our services, or from a credit reporting body in order to conduct a credit assessment or manage your credit situation with us, or from government agencies to verify information you have provided to us (for example, ASIC).
• We will take reasonable steps to ensure that you know we have your personal information, how we received it and how we will use it
• If you are unable to provide us with the details we ask for, we may not be able to provide you with a service that you wish to acquire or give you the level of service you expect.

• Information we hold about you is stored in secure electronic databases. Most of these are located within Australia, however, some of our storage providers are located overseas (see paragraph 4 below).
• We may share your personal information with our staff and with third parties that we work with in order to supply you with the services you have ordered from us. These third parties include our subcontractors and members of our group of companies.
• We may share your personal information with our approved contractors or suppliers for the purposes of improving our engagement with you, or our services and products. Some of our contractors or suppliers are located overseas. Where practicable, we will endeavour to deidentify your information before sharing it with such persons, and in any case, we will only share your information if we have assurances in place as to the safety and security of such personal information.
• We will only share your information with third parties where they require it in order to make services you have ordered through us available to you or to manage their relationship with you. In these cases, we will ensure that we have arrangements in place with those partners that limit their use or disclosure of your personal information.

Legal obligations

• We may share your personal information and cooperate with law enforcement bodies and other health and safety bodies where we are permitted or required to do so by law. Scenarios where we may do this include where there is unlawful activity, serious misconduct or to mitigate a grave threat to life, health or safety.

Others with your permission

• We will also disclose personal information to others where you have asked us to, reasonably expect us to do so or given us permission.

• Our main business locations are in Australia, however, some of our services may be provided to you from our international affiliates. Where the goods or services you have requested involve activities outside of Australia, we may need to share your personal information with those overseas organisations.
• Whenever we transfer your personal information outside of Australia, we will take reasonable steps to ensure the destination country provides a similar or greater level of protection for your personal information as that of Australia.
• We may also transfer your personal information outside of Australia where you have provided us your consent to do so, or we are otherwise authorised or required by law to do so.

We may also store your information in the cloud or other types of networked or electronic storage. These services often involve diverse geographic locations, which change periodically for reasons which include data protection and processing efficiency. Where we use these services, it is not always practical for us to notify you of which country your personal information may be located in.


Listed below are the countries where your personal information that we share may be located:

• Australia
• New Zealand
• Fiji
• Lebanon
• Philippines
• Taiwan

We secure your personal information by using a variety of physical and digital protections in accordance with our data protection plans. These protections include role-based access controls, which means only personnel who have a need and are authorised to access your information can do so.

Ethan prides itself on maintaining strong information governance processes, and in the event that your personal information is subject to an unauthorised disclosure, we will:

• Take appropriate remedial actions if possible, to contain the suspected breach.
• Conduct an assessment within 30 days from when we became aware of the disclosure. Our assessment will follow our ISO 27001 procedure for Information Security Incident Management.
• If we determine there has been a breach, and we conclude there is a risk of serious harm, we will:
  • notify you and any other affected persons in accordance with our notification procedure; and
  • notify the Australian Information Commissioner.
• Review the incident and take appropriate actions to prevent future breaches.

Cloud Service and Network Customers.

From time to time we may, in our capacity as a reseller, supply you with cloud and or network services on behalf of a third-party provider. The data which you store with this cloud hosting will be subject to the provider’s privacy and security policies.

Where your personal information has been stored in our cloud (or otherwise hosted on servers we control) and is subject to an unauthorised disclosure, we will notify you and share all relevant details of the alleged breach so you may take appropriate action.

• We will take all reasonable steps to ensure that the personal information we have about you is accurate, complete and up-to-date.
• You can access and correct any of your personal information by sending an email to our Privacy Compliance Officer at the details below. We will always confirm your identity before giving access to your personal information.
• Most of the time, we should be able to provide you with access free of charge. However, if your enquiry is complex or resource intensive and a handling fee applies, we will advise you of that fee and seek your consent before processing your request.

Please let us know if you have any questions or concerns about this policy or our practices.

You can contact us by:
Phone: 02 8667 0423
Email: privacy@ethangroup.com.au
Mail: Privacy Compliance Officer
Ethan Global Pty Ltd
Level 5, 13-15 Lyonpark Rd, Macquarie Park NSW 2113

If you would like further information or to complain about our privacy practices, please contact our Privacy Compliance Officer. Our general complaint handling policy also applies to complaints about privacy.

Our Privacy Compliance Officer will investigate the matter and try to resolve it in a timely way. If we are unable to resolve your complaint to your satisfaction and no other complaint resolution procedures are agreed or required by law, you may lodge a complaint with the Telecommunications Industry Ombudsman (TIO) (if the matter is related to a telecommunications service) or the Office of the Australian Information Commissioner (OAIC) via the websites below:

TIO: www.tio.com.au
OAIC: www.oaic.gov.au

• We may update this policy from time to time and any changes will be reflected on this page.
• This Policy is dated: February 2022.