Information Security

Our commitment to our customers and their information is a high priority.
With our comprehensive security protocols, we strive to maintain your trust in all that we do.

How do we achieve this?

Compass ISO 27001 logo

Compliance with Information security regulations

Instant Windscreens and Tinting has implemented systems and processes to ensure we align and adhere to the regulatory requirements outlined by the following laws and regulations:

Australian Privacy Act 1988

The Australian Privacy Principles (APPs) in schedule 1 of the Privacy Act, outline how most Australian Government agencies, all private sector and not-for-profit organisations with an annual turnover of more than $3 million, all private health service providers and some small businesses (collectively called ‘APP entities’) must handle, use and manage personal information.

There are 13 privacy principles that set standards, rights and obligations including the collection, disclosure, and usage of personal data, governance and responsibilities requirements, integrity of personal information and an individual’s right to access personal information

APRA Regulation CPS 234

The Australian Prudential Regulation Authority (APRA) has recognised cyber security threat and defined and implemented a new Prudential Standard CPS 234 (CPS 234). The purpose of CPS 234 is to ensure that APRA-regulated entities have implemented sufficient information security protections.

As of 1 July 2020, third parties that handle information assets associated with any of the aforementioned APRA regulated entities will also need to adhere to CPS 234 and attest to the security controls established when requested by the APRA regulated entity.

Although Instant Windscreens and Tinting is not regulated by APRA, our ISO 27001 certification provides controls assurance for the information assets we manage on behalf of APRA regulated entities.

ISO security 02
ISO security 01

Suppliers and Vendors

To ensure the confidentiality, integrity and availability of the information assets that are accessible and/or managed by suppliers, we have developed a Supplier Relationship Policy, which sets out the conditions that are required to maintain the security of Instant Windscreens and Tinting information assets.

To maintain the agreed level of security in line with third party supplier agreements, the following controls are in place:

  • Suppliers that require access to our systems must comply with our Supplier Relationship Policy, Acceptable Use Policy and the Access Control Policy
  • Monitoring of the services provided by a supplier via third party risk assessments is performed to ensure agreed service levels are met
  • Periodic reporting of formal agreements to identify any gaps in service
  • Provision of a clause for a right to audit to verify effectiveness of control mechanisms

Collaborating closely with our suppliers adds value to maintaining a strong information security platform that mitigates risks while enabling us to achieve our business goals and objectives.

Network Operations Control Center 1
OIP 2

Frequently asked questions

How do you store my data?

All information processing systems and infrastructure (e.g. servers, storage) are located in Microsoft datacentre (i.e. Microsoft Office365 environment).

Strong perimeter security at the data centres is, of course, essential and achieved by utilising Microsoft IaaS (i.e. cloud service provider with ISO 27001 certifications).

What happens to my personal information?

Your personal information is managed in accordance with our Asset Management Policy which outlines the requirements in capturing, labelling, distribution, transmission, storage and disposal of information.

This also includes the classification of personal information as Customer Confidential and adhering to Privacy Act 1988 which regulates the collection, storage, use and disclosure of personal information.

We take reasonable steps to ensure that personal information is kept accurate, complete and up to date, protected from misuse, loss, unauthorised access, modification or disclosure, and destroyed or permanently de-identified when no longer needed.

Have you a dedicated cyber security team?

Instant Windscreens and Tinting engage the services of an external Managed Security Service Provider (MSSP) who provide a security team that monitors and manages our devices and systems 24x7x365. Our MSSP manages clients across a variety of industries which ensures their Threat Intelligence database and Tactics, Techniques and Procedures (TTPs) are comprehensive.

What security assessments do you conduct?

Our Managed Security Service Provider (MSSP) conducts multiple different types of security assessments throughout the year.

Vulnerability Scans against our production environment are routinely performed and Internal and External Penetration testing are conducted annually.

Do you share my information external to the organisation?

We may disclose your personal information to any of our employees, officers, insurers, professional advisers, agents, suppliers or subcontractors insofar as reasonably necessary for the purposes set out in our Privacy Policy. Personal information is only supplied to a third party when it is required for the delivery of our services.

We may, from time to time, need to disclose personal information to comply with a legal requirement, such as a law, regulation, court order, subpoena, warrant, in the course of a legal proceeding or in response to a law enforcement agency request.

Further information

Security information

For further queries on Instant Windscreens and Tinting security please email us at [email protected]

Give us a Call

Call on 132444 or contact us online to discuss your automotive, residential or commercial glass and tinting needs today

Request a Quote

Want a quick estimate of cost? Provide the make, model and year of your car to request a quote today
Get a Quote

About Instant Windscreens

Instant Windscreens & Tinting is now recognised as Australasia’s largest independent fitting business serving customers 24 hours a day, 7 days a week.

Book online today or call 132 444 for a location near you!

Instant Windscreens & Tinting

In addition to our many stores nationwide, Instant Windscreens & Tinting are affiliated to a broad network of hundreds of approved service providers to assist our customers in areas that may not have a group store.

association logo