Privacy Policy

Cogito Group is committed to protecting the privacy and confidentiality of your information.

How is Privacy Managed?

Cogito Group is bound by the following privacy principle’s which regulate the way we handle your personal and sensitive information:

  1. The Privacy Act 1988 (Privacy Act) which includes 13 Australian Privacy Principles
  2. The Privacy Act 2020 which includes 13 New Zealand Privacy Principles
  3. The United Kingdom’s Data Protection Act 2018, which is the UK’s implementation of the General Data Protection Regulation


If you would like to complain about a breach of Privacy Principles, you may contact our Privacy Officer at the details on the bottom of the page.

We will respond to complaints within a reasonable period of time (usually 30 days).

If you disagree with our decision, you may refer your complaint to:

The Office of the Australian Information Commissioner by visiting, calling 1300 363 992 or by emailing .

New Zealand
The Office of the Privacy Commissioner by visiting, calling 0800 803 909 or by emailing 

United Kingdom
Information Commissioner’s Office (ICO) by visiting, calling 0303 123 1113 or by emailing 

Personal Information

Definition of Personal Information

‘Personal information’ is to mean any information or opinion about an identified individual, or an individual who is reasonably identifiable, whether the information or opinion is true or not and whether the information or opinion is recorded in a material form or not.


Access to Your Personal Information

You have a right to request access to personal information that we hold about you and request its correction if it is inaccurate, out of date, incomplete, irrelevant or misleading. You may do so by contacting our Privacy Officer at the details below.

In some cases, in accordance with the Privacy Act, we may charge you a fee for access to personal information we hold about you or refuse to give you access to personal information we hold about you.


How We Store Your Personal Information

We are committed to protecting the personal information we hold. We take all reasonable steps to protect your personal information, including the use of encryption technology. We take all reasonable steps to ensure your information is secure from loss, interference, modification, misuse, unauthorised access, and disclosure. All access to personal information is by authorised staff only and is carefully monitored.

How is Personal Information Collected?

We collect information from clients to provide a range of services.

We collect, hold, use and disclose personal information for the purposes for which it was collected, related purposes, and other purposes including:

  • Providing the services that our clients have requested.
  • Maintaining, managing and developing our relationship with clients and potential client.
  • Service development, security and risk management.
  • Marketing our services, administering, and operating purposes.
  • Organisation of events.
  • Assessing and considering applications from prospective employees, contractors, and service providers.
  • Developing and managing relationships with our employees, contractors, and service providers.

Direct Marketing

If you are a client or have otherwise expressed interest and provided us with your contact details, we may send emails to you with information about Cyber Security developments (such as publications, alerts and newsletters) and marketing our services (such as seminar invitations).

We may use an “email management system” to automate the management and dispatch of these emails. The system operates by inserting tracking codes in the emails that we send to you. The tracking code allows us to collect personal information about you, such as whether you received and opened an email, and whether you clicked through to any links to our website. The personal information that the email management system collects and holds about you is used by us to:

  • Ensure that you only receive correspondence that you have informed us that you wish to receive.
  • Insert your personal information into our communications with you.
  • Determine whether the information that we send to you is suitable for your interests, information needs and profile.
  • Ensure that the email address that you have provided us is still operational.
  • Determine whether emails that we send to you are received by you.
  • Update a request that you make to us to unsubscribe from a publication that we send to you.
  • Review the effectiveness and relevance of our emails to you by collecting other statistical information.

If you do not wish for us to send you such emails, please let us know by contacting our Privacy Officer at the details below. You can also unsubscribe from our email notifications by clicking on the ‘Unsubscribe’ button at the bottom of our email notifications and following the prompts or by emailing us by clicking the ‘Contact Us’ button.

Privacy Officer

Privacy Officer

If you would like more information about the way we manage personal information, would like to request access to or correction of personal information that we hold about you, or wish to make a complaint, please contact our Privacy Officer:

– Post – Attention “Privacy Officer” PO Box 4294, Kingston ACT 2604; or

– Telephone – 1800 COGITO (264486)

Changes To Our Privacy Policy

From time to time it may be necessary for us to review and revise our Privacy Policy. We may notify you about changes to this Privacy Policy by posting an updated version on our website. We encourage you to check our website from time to time to ensure you are familiar with our latest Privacy Policy.