All Boeing entities and subsidiaries in Australia (Boeing) are committed  to safeguarding the privacy and confidentiality of personal information and sensitive information.

We handle personal information in accordance with the Australian Privacy Principles set out in the Privacy Act 1988 (Cth) (the Act) unless permitted or required by law to depart from these privacy principles.

As a contracted service provider to various governmental bodies and commercial customers, Boeing also complies with the requirements of applicable State and Territory privacy legislation.

Summary of Changes

This privacy policy relates to Boeing’s current privacy standards, processes, plans and procedures. We may vary this policy from time to time with any changes being published at https://www.boeing.com.au/privacy.page

Furthermore, visitors can read Boeing’s global privacy policy at https://www.boeing.com/privacy.html.

Approved Date: November 22, 2023

What is ‘personal information’?

Personal information is any information or an opinion about an identified individual, or an individual who is reasonably identifiable, regardless of whether:

• the information or opinion is true or not; and
• the information or opinion is recorded in a material form or not.

Sensitive information is a special subset of personal information which is more strictly regulated. Sensitive information is defined to mean information or an opinion about an individual’s:

• racial or ethnic origin;
• political opinions;
• memberships of a political association;
• religious beliefs or affiliations, or philosophical beliefs;
• membership of a professional or trade associations or a trade union;
• sexual preferences or practices;
• criminal records; and
• health, genetic or biometric information.

We will obtain your consent before collecting sensitive information about you (such as health information), unless we are required or permitted by law to collect that sensitive information without your consent. 

For the purposes of this privacy policy, any reference to “personal information” includes “sensitive information” unless otherwise stated.

What kinds of personal information does Boeing collect and hold?

The kinds of personal information that we generally collect and hold are:

• identity, demographic and contact information, such as full name, postal and email address, telephone and/or mobile numbers, date of birth, gender, family and marital status, and signature;
• health information, including information about your physical health, mental health and pre-existing conditions, permanent and temporary disabilities, and biometric test results;
• employment details, such as payroll, attendance, and leave records, referee reports, performance management and evaluation records, redundancy and termination decisions, workers’ compensation records, work health and safety records, medical assessment records, bank account and financial records, name and contact details of referees, proof of identity, and past employment details;
• professional or educational qualifications and certificates, and information about trade unions or professional associations with which you are associated;
• residency status and history of criminal convictions;
• personal attributes such as ethnic background and, in the case of job applicants and employees, disability information, which we use for equal employment opportunity reporting purposes and for understanding the diversity profile of our applicants and employees;
• government identifiers such as Medicare number, passport number, Australian tax file number, and superannuation account details; and
• other information such as miscellaneous personal and health information contained in correspondence with contractors or members of the public.

When we collect personal information, we take reasonable steps to inform you about what the information will be used for, who will have access to it, which organisations (if any) will receive the information from us, how you can access the personal information we hold, whether the collection is required by law, and the consequence for not providing the information to us.

In general, we collect and hold personal information about our employees, customers, business partners or third parties, contractors, employees of third parties, applicants for employment, credit providers, suppliers and other professional associates.  

Boeing will collect personal information directly from you, including unless it is unreasonable or impractical to do so.

We will only collect personal information if it is for a lawful purpose that is directly related to Boeing’s functions and it is reasonably necessary for Boeing to have the information.

 If you request a correction to personal information we hold about you, or if we are otherwise satisfied that personal information we hold about you is inaccurate, out of date, incomplete, irrelevant, or misleading, then we will take reasonable steps to correct that personal information.

In some circumstances, we may also collect information about you from your agent or representative, third parties, related entities’, service providers, insurers, statutory authorities, government departments, publicly available sources and the general public.

Boeing may also collect and hold personal information when exercising functions relating to the delivery of commercial and government services (this information may be provided to Boeing by third party providers).

Data tracking and website

Boeing may collect information about your visit to our website to analyse, enhance and tailor our website functionality and customer experience. Records of website activities and browsing habits are generated automatically.

Boeing uses Google Analytics to measure how many people visit our website, and to better understand how to improve our products and services. One of the main methods used by this tool is cookies. We use other technologies similar to cookies which are embedded into and accompany emails sent by us or on our behalf to collect information including pages visited, time spent and documents reviewed, location, preferences, server address or IP address. Google Analytics uses other data collection methods such as appending query strings to an image request. The data generated by Google Analytics is not shared with any other third party besides Google technical support, and we store this data securely.

Boeing uses Skype or WebEx to host ‘live virtual’ meetings with employees, customers, stakeholders and other business partners or third-party providers. Participants who use this functionality may have their information collected by the hosting platform.

Boeing uses social networking services such as Facebook, Twitter and LinkedIn to communicate with the public. We collect your personal information when you communicate with us via these social networking services. The social networking services will also manage your personal information for functional purposes and they have their own privacy policies.

For what purposes does Boeing collect and hold personal information?

Boeing collects personal information for the purposes of:

• providing and receiving payment for its products and services (and those of its business partners);
• supplying products and services to its customers;
• responding to enquiries;
• processing job applications; and
• managing its employee and contractor relationships, some of which may be located overseas, for the purpose of performing commercial and government services

Boeing may also use personal information for related purposes such as for research purposes.

Dealing with Boeing anonymously

There are some circumstances where you can deal with Boeing anonymously, including if you are only looking for general information. It is your right to interact anonymously or use a pseudonym or even to tell us that you do not wish to use or disclose your personal information for a particular purpose. However, if you choose not to provide the personal information we (and our business partners or third-party providers) have asked for, we may not be able to provide you with our products and services.

Boeing may share or disclose personal information to third party suppliers, business partners and government agencies, regulatory bodies, investigative bodies for the purposes set out in this Privacy Policy or any other purpose required or permitted by law.

Some organisations to which we disclose personal information may be located outside Australia. The countries in which these recipients may be located will vary from time to time but include Countries of Presence and Partnerships. Boeing will not disclose your personal information to an overseas recipient without taking reasonable steps to ensure that the overseas recipient will not breach the Australian Privacy Principles set out in the Act.

If you have consented to receive direct marketing from Boeing, then we may use your personal information to offer you or advise you about our products and services. Any personal information we hold about you in relation to direct marketing will be retained until you opt out of receiving such information. If you consent to receive direct marketing from our agents or business partners, we may disclose your personal information (but not sensitive information) to those agents or business partners. If you do not want to receive offers from us (or our agents or business partners, please contact us.

Boeing will take reasonable security measures to protect personal information from misuse, interference and loss, and from unauthorised access, modification or disclosure, and destroy or de-identify personal information when no longer needed.

We hold personal information in secure systems, databases and paper records, and it is made available on a business-need-to know basis.

Protecting personal information, we collect is important to us, and we take the following steps to maintain this protection:

• operating robust security systems and secure buildings;
• keeping personal information only for as long as required for business needs or as required by law;
• partnering with trusted service providers, contractors and third-parties, and imposing contractual requirements on those service providers, contractors and third-parties; and
• training our staff on managing personal information in line with the Act.

Boeing seeks to maintain personal information which is accurate, up to date, complete, relevant and not misleading. If you would like to access or seek correction of personal information we hold about you, we will first ask you to confirm your identity.

We may refuse access to personal information where authorised by law. If this occurs, we will provide you with a written notice which outlines the reasons for our decision and the mechanisms available to complain about the refusal.

We aim to provide access to and correction of personal information without unreasonable expense or delay. Therefore, we aim to respond to requests within 30 days. We may seek to recover reasonable costs incurred in supplying you with access to information.

If you feel that the information we currently have on record about you is incorrect or incomplete, or if you would otherwise like to access the personal information we hold about you, please email GlobalPrivacy@boeing.com.

A data breach occurs when personal information is lost, accessed or disclosed without authorisation. In the event of a data breach, Boeing will comply with the Notifiable Data Breach Scheme and our requirements under the Security of Critical Infrastructure Act 2018 (SOCI Act) and notify affected individuals, the regulator and key stakeholders as appropriate. We are committed to ensuring that incidents are identified, contained and investigated in a timely manner, and in line with our incident response plan.

We will acknowledge and investigate any complaint about the way we manage personal information and will do our best to resolve your complaint as quickly as possible. If you have any concerns or queries about privacy, you can contact:

Chief Privacy Officer- Global Privacy Office (Attn Asia Pacific Lead):

• Email: GlobalPrivacy@boeing.com
• Level 10, 10 Bridge Street, Sydney NSW 2000

If you are not satisfied with the results of your complaints to us, you can refer your complaint to the

Office of the Australian Information Commission (OAIC). Complaints to the OAIC must be made in writing.

• Online privacy complaint form: oaic.gov.au
• Phone call: 1300 363 992
• Mail: GPO Box 5218, Sydney NSW 2001
• Email: enquiries@oaic.gov.au