Online Security

Multiple Sclerosis Limited (MSL), ABN 66 004 942 287 uses the SecurePay Payment Network for our online credit card transactions. All transaction data is encrypted using a 128-bit encryption key with SSL public key cryptography as the secure transport. The standard level of encryption used by SecurePay is considered realistically unbreakable.

Credit card numbers or personal details supplied by customers are not stored anywhere in the SecurePay Payment Network and cannot be used other than for its specific intended purpose.

All communication between your browser, the SecurePay Payment Network and TMS Ltd is fully authenticated. Transaction information can be readily cross-referenced, by {event_org_name}, SecurePay and the NAB should there be a need.

The SecurePay Payment Network is PCI / DSS accredited and only physically accessible to a limited and accountable group of technicians; all maintenance and enhancements are completed using a thorough change management process.

SecurePay is an approved provider of credit card payment services to the NAB and uses dedicated lines into the national banking network

Privacy Statement

Mutliple Sclerosis Limited (MSL) is committed to protecting the privacy of all the individuals it deals with. MSL is bound by the Privacy Act 1988 and undertakes to adhere to the National Privacy Principles. This document sets out the policies of MSL on handling personal information, including health information.

MSL will ensure that each individual about whom personal and/or health information is collected, stored or used has access to this policy in accordance with MSL's obligations under the Privacy Act

Information Regarding Service Recipients

Multiple Sclerosis Limited collects personal information in order to provide services to its service recipients or where it is necessary for the purposes of its activities.  MSL collects and holds personal information including a person's name and contact details, and where a service recipient makes a financial contribution to MSL, information including their credit card and/or bank particulars along with the amount of their financial contribution.

MSL collects health information about its service recipients for the purposes of providing its services. MSL undertakes to seek the consent of the service recipient prior to collecting health information about the service recipient in accordance with its obligations under the Privacy Act.

MSL uses a service recipient's personal information to provide and market its services to service recipients and for administration purposes.

MSL undertakes to seek the consent of the service recipient prior to using their personal information for fundraising and marketing purposes.

The personal and health information collected by MSL is considered to be strictly confidential. However, MSL may from time to time provide a service recipient's personal and health information to service providers and contractors engaged incidental to the purposes for which MSL has collected the information, including providers of medical and rehabilitation services as applicable, regulatory bodies and to others. Where MSL is required to do this, MSL will require these parties protect the information in the same manner MSL does. If legal or health and safety issues arise, MSL may also have to make disclosures to relevant organisations to deal with these matters.

MSL undertakes to seek the consent of the service recipient prior to providing their personal or health information to research organisations in accordance with its obligations under the Privacy Act. Such information is provided so as not to identify the individual.

MSL uses a variety of physical and electronic security measures including restricting physical access to its offices and secure databases to keep personal information secure from misuse, loss or unauthorised use or disclosure.

MSL agrees that each service recipient has a right to access most personal information MSL holds about that service recipient. MSL reserves the right to deny access to some information in accordance with the Privacy Act and other applicable laws, however undertakes to advise the service recipient of the reason for this denial.

MSL collects health information about its service recipients for the purposes of providing its services. MSL undertakes to seek the consent of the service recipient prior to collecting health information about the service recipient in accordance with its obligations under the Privacy Act.

MSL uses a service recipient's personal information to provide and market its services to service recipients and for administration purposes.

MSL undertakes to seek the consent of the service recipient prior to using their personal information for fundraising and marketing purposes.

The personal and health information collected by MSL is considered to be strictly confidential. However, MSL may from time to time provide a service recipient's personal and health information to service providers and contractors engaged incidental to the purposes for which MSL has collected the information, including providers of medical and rehabilitation services as applicable, regulatory bodies and to others. Where MSL is required to do this, MSL will require these parties protect the information in the same manner MSL does. If legal or health and safety issues arise, MSL may also have to make disclosures to relevant organisations to deal with these matters.

MSL undertakes to seek the consent of the service recipient prior to providing their personal or health information to research organisations in accordance with its obligations under the Privacy Act. Such information is provided so as not to identify the individual.

MSL uses a variety of physical and electronic security measures including restricting physical access to its offices and secure databases to keep personal information secure from misuse, loss or unauthorised use or disclosure.

MSL agrees that each service recipient has a right to access most personal information MSL holds about that service recipient. MSL reserves the right to deny access to some information in accordance with the Privacy Act and other applicable laws, however undertakes to advise the service recipient of the reason for this denial.

MSL may allow third parties to obtain base information (team captain name, team name, email address) to Community Hosts who are acting on behalf of MSL.

Personal Information Which Does Not Relate To Service Recipients

Fundraising to collect funds to provide its services and to fund research into multiple sclerosis is one of functions of MSL. MSL collects personal information from individuals other than its service recipients for the purpose of fundraising.

MSL collects and holds personal information including a person's name and contact details, and where that person chooses to make financial contributions to the Society, information including their credit card and/or bank particulars and the amount of the financial contribution.

MSL uses the personal information to provide and market its services and for administration purposes, fundraising and marketing purposes.

The personal information collected by MSL is considered by MSL to be strictly confidential. MSL may from time to time provide information to contractors engaged to assist MSL with its fundraising activities. If it does, the Society will require the contractors to handle the personal information in the same manner as MSL does.

MSL uses a variety of physical and electronic security measures including restricting physical access to its offices and secure databases to keep personal information secure from misuse, loss or unauthorised use or disclosure.

MSL agrees that each individual whose personal information MSL holds, has a right to access most personal information held by MSL. MSL reserves the right to deny access to some information in accordance with the Privacy Act and other applicable laws, however MSL undertakes to advise the individual of the reason for this denial.