Privacy Policy

This Privacy Policy applies to Cable Co Pty Ltd (ABN 14 643 292 692), trading as Cable Co ("we", "us", "our"), including all services provided through our website at www.cable-co.com.au, the Zayin.ai contractor platform, and all related services, applications, and communications.

This policy sets out how we handle personal information as defined under the Privacy Act 1988 (Cth). We are bound by the Australian Privacy Principles (APPs) contained in Schedule 1 of the Privacy Act.

By accessing our website, engaging our services, or providing personal information to us, you acknowledge that you have read and understood this Privacy Policy.

This Privacy Policy has been prepared in compliance with the following legislation:

• Privacy Act 1988 (Cth) — including the 13 Australian Privacy Principles (APPs) and the Notifiable Data Breaches (NDB) scheme under Part IIIC
• Privacy and Other Legislation Amendment Act 2024 (Cth) — including the removal of the small business exemption effective from the prescribed date
• Spam Act 2003 (Cth) — governing commercial electronic messages
• Telecommunications Act 1997 (Cth) — data retention and interception provisions
• Privacy and Personal Information Protection Act 1998 (NSW) — applicable to our interactions with NSW Government agencies and projects
• Health Records and Information Privacy Act 2002 (NSW) — applicable where we perform work in health sector facilities
• Security Industry Act 1997 (NSW) — obligations arising from our Master Security Licence (No. 000110353)
• Work Health and Safety Act 2011 (NSW) — personal information collected for workplace safety compliance
• Electronic Transactions Act 1999 (Cth) — validity of electronic records and communications

Where we provide services to clients with operations in the European Union, we also have regard to the General Data Protection Regulation (EU) 2016/679 (GDPR) to the extent applicable.

We may collect and hold the following categories of personal information:

3.1 Clients and Prospective Clients

• Full name, position/title, and employer details
• Contact information including email address, telephone number, and business address
• Project requirements, site addresses, and technical specifications
• Billing and payment information (processed through secure third-party payment providers)
• Communications and correspondence records
• Government procurement identifiers and prequalification references

3.2 Contractors and Subcontractors (including Zayin.ai Platform Users)

• Full name, date of birth, and contact details
• Australian Business Number (ABN) and business registration details
• Trade licences, qualifications, and accreditations (including licence numbers and expiry dates)
• Insurance certificates (public liability, professional indemnity, workers compensation)
• Work health and safety documentation, including White Card details
• Police check results and Working with Children Check details (where required)
• Performance ratings, quality scores, and compliance history on the Zayin.ai platform
• Bank account details for payment processing
• Photographs and identification documents for site access and verification

3.3 Website Visitors

• IP address, browser type, device information, and operating system
• Pages visited, time spent, and navigation patterns
• Referring website addresses
• Information submitted through contact forms, enquiry forms, and the AI assistant chatbot
• Cookie and analytics data (see Section 10)

3.4 Employees and Prospective Employees

• Information provided in job applications, resumes, and interviews
• Employment history, qualifications, and references
• Tax file numbers, superannuation details, and emergency contact information

3.5 Sensitive Information

We may collect sensitive information (as defined in section 6 of the Privacy Act) only where required by law or with your explicit consent. This may include health information for workplace safety purposes, criminal history for security clearance requirements, and membership of professional associations.

We collect personal information through the following means:

• Directly from you — when you complete forms on our website, contact us by phone or email, submit an enquiry, register on the Zayin.ai platform, or engage our services
• From third parties — including referees, government agencies (for licence verification), industry prequalification bodies, credit reporting agencies, and your employer or principal contractor
• Automatically — through cookies, web analytics, and server logs when you visit our website (see Section 10)
• From publicly available sources — including ASIC records, ABN Lookup, NSW Fair Trading licence registers, and professional directories

Where it is reasonable and practicable to do so, we will collect personal information directly from you. We will notify you at or before the time of collection (or as soon as practicable afterwards) of the matters required by APP 5, including the purposes of collection and the consequences of not providing the information.

We collect, hold, use, and disclose personal information for the following purposes:

• Providing electrical, telecommunications, engineering, and security services to our clients
• Managing contractor and subcontractor relationships, including through the Zayin.ai platform
• Preparing quotes, tenders, and project proposals
• Complying with our obligations under the Home Building Act 1989 (NSW), Work Health and Safety Act 2011 (NSW), and Security Industry Act 1997 (NSW)
• Verifying licences, qualifications, insurance, and compliance documentation
• Processing payments and managing accounts
• Communicating with you about our services, projects, and the Zayin.ai platform
• Responding to enquiries submitted through our website, contact forms, or AI assistant
• Improving our website, services, and user experience
• Meeting our obligations under applicable laws, regulations, and industry standards (including ISO 9001, 45001, and 14001)
• Fulfilling government prequalification and security clearance requirements
• Direct marketing (with your consent, and subject to your right to opt out at any time)

We will not use or disclose personal information for a purpose other than the purpose for which it was collected (the primary purpose), unless you have consented, or a permitted exception under APP 6 applies (including where the secondary purpose is directly related to the primary purpose and you would reasonably expect such use or disclosure).

We may disclose your personal information to the following categories of recipients:

• Our employees, officers, and contractors — on a need-to-know basis for the purposes described in Section 5
• Clients and principal contractors — where required for project delivery, site access, or compliance verification
• Subcontractors and suppliers — where necessary for the performance of contracted works
• Government agencies and regulators — including SafeWork NSW, NSW Fair Trading, the Australian Taxation Office, and other bodies where required by law
• Industry prequalification bodies — including Cm3, Avetta, and government procurement platforms
• Professional advisers — including our lawyers, accountants, auditors, and insurers
• Technology service providers — including cloud hosting, email, CRM, and analytics providers who assist in the operation of our website and business systems
• Payment processors — for the processing of invoices and payments

We will not sell, rent, or trade your personal information to third parties for their marketing purposes.

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification, and disclosure, as required by APP 11. Our security measures include:

• Encryption of data in transit (TLS/SSL) and at rest
• Access controls and authentication requirements for systems containing personal information
• Regular security assessments and vulnerability testing
• Staff training on privacy and data handling obligations
• Physical security measures at our offices and data storage locations
• Incident response procedures aligned with the Notifiable Data Breaches scheme
• Secure disposal of personal information that is no longer required

While we take all reasonable precautions, no method of electronic storage or transmission is completely secure. We cannot guarantee the absolute security of your personal information.

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Specific retention periods include:

• Client and project records — retained for a minimum of 7 years after completion of the relevant project, in accordance with the Limitation Act 1969 (NSW) and taxation record-keeping requirements
• Contractor compliance records — retained for the duration of the contractor relationship and for 7 years thereafter
• Work health and safety records — retained for a minimum of 30 years in accordance with the Work Health and Safety Regulation 2017 (NSW) clause 38
• Financial records — retained for a minimum of 5 years as required by the Income Tax Assessment Act 1997 (Cth)
• Website analytics data — retained for up to 26 months
• Enquiry and correspondence records — retained for 3 years unless related to a project or ongoing engagement

When personal information is no longer required, we will take reasonable steps to destroy or de-identify it in accordance with APP 11.2.

Under the Australian Privacy Principles, you have the following rights:

9.1 Access (APP 12)

You have the right to request access to the personal information we hold about you. We will respond to your request within 30 days. We may charge a reasonable fee for providing access where permitted by law. Access may be refused in circumstances permitted by the Privacy Act, including where providing access would pose a serious threat to the life, health, or safety of any individual, or would unreasonably impact the privacy of other individuals.

9.2 Correction (APP 13)

You have the right to request correction of personal information that is inaccurate, out of date, incomplete, irrelevant, or misleading. We will respond to correction requests within 30 days. If we refuse to correct the information, we will provide written reasons and advise you of your right to request that a statement of the correction sought be associated with the information.

9.3 Opt-Out of Marketing

You may opt out of receiving direct marketing communications from us at any time by contacting us or using the unsubscribe mechanism in our electronic communications. We will process your opt-out request within 5 business days.

9.4 Anonymity and Pseudonymity (APP 2)

Where it is lawful and practicable, you have the option of not identifying yourself or using a pseudonym when dealing with us. However, this may not be possible where we are required by law to verify your identity (for example, for security clearance or licence verification purposes).

Our website uses cookies and similar technologies to improve your browsing experience and to collect analytics data. The types of cookies we use include:

• Essential cookies — required for the operation of our website, including session management and security features
• Analytics cookies — used to understand how visitors interact with our website, including pages visited, time spent, and navigation patterns. We use privacy-respecting analytics tools
• Functional cookies — used to remember your preferences and settings

You can control cookie settings through your browser preferences. Disabling certain cookies may affect the functionality of our website. Our analytics data is collected in aggregate form and does not identify individual users unless you have provided your personal information through a form or account.

Our website and services may contain links to third-party websites and services. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party services you access through our website.

Third-party services we use that may process personal information include cloud hosting providers, email service providers, payment processors, analytics services, and AI-powered tools for our chatbot and platform features. We take reasonable steps to ensure that these providers comply with the APPs or equivalent privacy standards.

In accordance with APP 8, we may disclose personal information to recipients located outside Australia in the following circumstances:

• Cloud hosting and technology service providers with servers located in the United States, Singapore, or the European Union
• Where required for the performance of international projects or engagements

Before disclosing personal information overseas, we take reasonable steps to ensure that the overseas recipient does not breach the APPs in relation to the information, or that the recipient is subject to a law or binding scheme that is substantially similar to the APPs and that you can access to enforce the protection of your personal information.

In accordance with Part IIIC of the Privacy Act (the Notifiable Data Breaches scheme), if we become aware of an eligible data breach that is likely to result in serious harm to any individual whose personal information is involved, we will:

• Take all reasonable steps to contain the breach and mitigate any resulting harm
• Assess the breach to determine whether it is an eligible data breach
• Notify the Office of the Australian Information Commissioner (OAIC) as soon as practicable
• Notify affected individuals as soon as practicable, including a description of the breach, the types of information involved, and recommended steps to take

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child without parental consent, we will take steps to delete that information as soon as practicable.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will post the updated policy on our website with a revised "Last updated" date. Material changes will be notified through our website or by direct communication where practicable.

We encourage you to review this policy periodically. Your continued use of our website and services after any changes constitutes your acceptance of the updated policy.

If you have any questions, concerns, or complaints about this Privacy Policy or our handling of your personal information, please contact our Privacy Officer:

We will acknowledge receipt of your complaint within 5 business days and endeavour to resolve it within 30 days. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

You may also lodge a complaint with the NSW Privacy Commissioner in relation to NSW privacy legislation: