Woolworths

The claims show adequate transparency with general purpose statements and contact information provided, but lack specific mechanisms for key transparency requirements like update notifications, version history, and language accessibility. The disclosures are somewhat vague with generic language rather than detailed specific processes.

The claims provide basic purpose statements but lack specificity and comprehensiveness required for APP 6 compliance. While primary purposes are mentioned, the language is vague ('great shopping experience'), secondary use disclosures are minimal, and there's no mention of consent mechanisms or marketing opt-out options.

The claims provide basic contact information and generic statements about user control, but lack specific commitments on key accountability measures like review frequency, change notification procedures, governance frameworks, or compliance monitoring timeframes required for higher scores.

The disclosures are minimal and generic, using broad categories like 'personal information' and 'cameras and technology' without specifying actual data types collected. While collection methods are mentioned, the lack of granular detail and specific data enumeration results in inadequate disclosure quality.

The claims provide only minimal, generic disclosures about third-party sharing with vague recipients like 'other companies' and broad purposes like 'help deliver our services', lacking specific named parties, detailed purposes, or information about contractual protections.

The claims contain only generic, boilerplate language about security design principles and user responsibility without any specific technical measures, encryption details, certifications, or breach notification commitments required for meaningful APP 11 compliance.

No specific findings.

While New Zealand is specifically named as an operational location, there are no actual disclosures about cross-border data transfers, adequacy mechanisms, or safeguards as required by APP 8. This is merely a business operations reference without privacy-specific content.

The policy provides basic consumer rights disclosures including access, correction, and complaint mechanisms, but lacks specificity in key areas such as response timeframes, detailed processes, deletion rights, and clear escalation procedures to OAIC.

Complete absence of any automated decision-making disclosures across all key areas including ADM use, types of decisions, opt-out rights, human review availability, and logic transparency. No relevant claims were found in the privacy policy content.

No relevant claims found in policy.

No specific findings.