Skip to main content

Privacy Policy

Purpose

YES Group is committed to protecting the privacy of individuals and complying with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Although we do not generally collect personal information from customers, we may collect and handle personal information from employees, subcontractors, suppliers, and other stakeholders in the course of our operations.

Scope

This policy outlines how we manage personal information, including:

  • What personal information we collect (if any)
  • How we use and disclose it
  • How we protect it
  • Your rights regarding your personal information.

What Personal Information We Collect

We typically do not collect personal information from customers. However, we may collect personal information from:

  • Employees and job applicants (e.g. contact details, employment history, emergency
    contacts)
  • Subcontractors and suppliers (e.g. ABN, contact details, insurance and licensing information)
  • Visitors to our sites and premises (e.g. CCTV footage for security purposes)

We do not collect sensitive information unless required by law or with consent.

How We Use Personal Information

We use personal information only for purposes directly related to our business operations, including:

  • Employment and HR management
  • Safety and compliance with workplace laws
  • Managing supplier and subcontractor relationships
  • Security and incident management

We do not use personal information for marketing purposes.

Disclosure of Personal Information

We may disclose personal information:

  • To government agencies or regulators where required by law
  • To service providers who assist us in our operations (e.g. payroll, IT support)
  • Where consent has been provided

We do not sell or share personal information for unrelated third-party marketing.

Website Usage and Cookies

When you visit our website, certain data may be collected automatically through the use of cookies and similar tracking technologies. This includes:

  • Usage Data: Information such as browser type, operating system, pages visited, time spent on site, and referring URLs.
  • Cookies: Small data files stored on your device to enhance user experience, enable website
    functionality, and support analytics.

Cookies may be set by us or by third-party services integrated into our website (e.g. analytics providers or social media platforms). These cookies help us understand how visitors interact with our website and improve its performance and usability.

You can manage your cookie preferences through your browser settings. Disabling cookies may affect the functionality of certain parts of our website.

We do not use cookies to collect sensitive personal information or for third-party marketing purposes.

We may also collect personal information directly from customers or website users when they submit forms, request quotes, sign up for services, or interact with our online tools. This may include names, email addresses, phone numbers, property addresses, and energy usage estimates.

This customer information is collected to allow us to respond to enquiries, provide quotes, deliver services, and support customer accounts.

Online Account and Portal Use

If you use our customer portals or monitoring dashboards, we may collect login credentials, usage analytics, and session information to help secure and improve these services.

We take steps to protect this data through secure authentication mechanisms and encryption

Metering Data

In the course of providing retail energy services, we may collect personally identifiable information (PII) such as names, contact details, National Meter Identifiers (NMIs), billing details, and property usage history. We may also collect and manage metering data from you. Metering data includes information about your electricity usage, which may be collected via smart meters or other metering devices.

Metering data is collected to:

  • Accurately bill for electricity usage
  • Monitor and manage energy supply
  • Support network planning and reliability
  • Comply with regulatory obligations

Depending on the type of meter installed, we may collect:

  • Interval data (e.g. usage every 5 or 30 minutes)
  • Accumulated usage data over billing periods
  • Load profiles and time-of-day consumption patterns

We may disclose metering data:

  • to the Australian Energy Market Operator (AEMO) and other authorised entities for market operations
  • to your authorised representatives upon request
  • to regulators or government agencies as required by law

Retail customers may request access to their metering data. We will respond within 10 business days, in accordance with NER Rule 7.14, and provide the data in both summary and detailed formats, including diagrammatic representations where applicable

Mobile Applications and Tracking

Where staff or contractors use mobile applications or field management systems, we may collect data such as location, qualifications, logged hours, and job activity records. This data helps us manage safety, compliance, and project delivery. We do not use this data for monitoring staff outside of work-related purposes.

Data Security

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification, or disclosure. This includes:

  • Secure physical and electronic storage
  • Restricted access to personal data
  • Staff training on privacy obligations

Overseas Data Storage and Processing

Some personal information may be stored or processed using cloud-based systems hosted outside Australia. These may include CRM platforms, accounting software, or data backup providers.

We ensure that any overseas data handling complies with the Australian Privacy Principles and that reasonable steps are taken to protect your information.

Access and Correction

Individuals may request access to or correction of their personal information by contacting us at the details below. We will respond within a reasonable timeframe and in accordance with the Privacy Act.

Data Breaches

In the event of a data breach that is likely to result in serious harm, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) in accordance with the Notifiable Data Breaches (NDB) scheme.

Contact Us

If you have any questions or concerns about this policy or how we handle personal information, please contact: legal@yesgroupsa.com.au

Updates to This Policy

We may update this policy from time to time to reflect changes in our practices or legal obligations.

The latest version will always be available on our website.
Board Approval Date: 13/08/2025