Online Security

Mulitple Sclerosis Ltd (MSL) uses the SecurePay Payment Network for our online credit card transactions. All transaction data is encrypted using a 128-bit encryption key with SSL public key cryptography as the secure transport. The standard level of encryption used by SecurePay is considered realistically unbreakable.

Credit card numbers or personal details supplied by customers are not stored anywhere in the SecurePay Payment Network and cannot be used other than for its specific intended purpose.

All communication between your browser, the SecurePay Payment Network and MS Australia - ACT/NSW/VIC is fully authenticated. Transaction information can be readily cross-referenced by MS Australia - ACT/NSW/VIC, SecurePay and Westpac Bank should there be a need.

The SecurePay Payment Network is PCI / DSS accredited and only physically accessible to a limited and accountable group of technicians. All maintainence and enhancements are completed using a thorough change management process.

SecurePay is an approved provider of credit card payment services to Westpac Bank and uses dedicated lines into the national banking network.

Privacy Statement

Multiple Sclerosis Limited (MSL) is committed to protecting the privacy of all the individuals it deals with. MSL is bound by the Privacy Act 1988 and undertakes to adhere to the National Privacy Principles. This document sets out MSL's policies on handling personal information, including health information.

MSL will ensure that each individual about whom personal and/or health information is collected, stored or used has access to this policy in accordance with MSL's obligations under the Privacy Act

Information Regarding Service Recipients

MSL collects personal information in order to provide services to its service recipients or where it is necessary for the purposes of its activities. MSL collects and holds personal information including a person's name and contact details, and where a service recipient makes a financial contribution to MSL, information including their credit card and/or bank particulars along with the amount of their financial contribution.

MSL collects health information about its service recipients for the purposes of providing its services. MSL undertakes to seek the consent of the service recipient prior to collecting health information about the service recipient in accordance with its obligations under the Privacy Act.

MSL uses a service recipient's personal information to provide and market its services to service recipients and for administration purposes.

MSL undertakes to seek the consent of the service recipient prior to using their personal information for fundraising and marketing purposes.

The personal and health information collected by the Society is considered to be strictly confidential. However, MSL may from time to time provide a service recipient's personal and health information to service providers and contractors engaged incidental to the purposes for which MSL has collected the information, including providers of medical and rehabilitation services as applicable, regulatory bodies and to others. Where MSL is required to do this, MSL will require these parties protect the information in the same mannerMSL  does. If legal or health and safety issues arise, MSL may also have to make disclosures to relevant organisations to deal with these matters.

MSL undertakes to seek the consent of the service recipient prior to providing their personal or health information to research organisations in accordance with its obligations under the Privacy Act. Such information is provided so as not to identify the individual.

MSL uses a variety of physical and electronic security measures including restricting physical access to its offices and secure databases to keep personal information secure from misuse, loss or unauthorised use or disclosure.

MSL agrees that each service recipient has a right to access most personal information MSL holds about that service recipient. MSL reserves the right to deny access to some information in accordance with the Privacy Act and other applicable laws, however undertakes to advise the service recipient of the reason for this denial.

Personal Information Which Does Not Relate To Service Recipients

Fundraising to collect funds to provide its services and to fund research into multiple sclerosis is one of MSL's functions. MSL collects personal information from individuals other than its service recipients for the purpose of fundraising.

The Society collects and holds personal information including a person's name and contact details, and where that person chooses to make financial contributions to the Society, information including their credit card and/or bank particulars and the amount of the financial contribution.

The Society uses the personal information to provide and market its services and for administration purposes, fundraising and marketing purposes.

The personal information collected by the Society is considered by the Society to be strictly confidential. The Society may from time to time provide information to contractors engaged to assist the Society with its fundraising activities. If it does, the Society will require the contractors to handle the personal information in the same manner as the Society does.

The Society uses a variety of physical and electronic security measures including restricting physical access to its offices and secure databases to keep personal information secure from misuse, loss or unauthorised use or disclosure.

The Society agrees that each individual whose personal information the Society holds, has a right to access most personal information held by the Society. The Society reserves the right to deny access to some information in accordance with the Privacy Act and other applicable laws, however the Society undertakes to advise the individual of the reason for this denial.