Privacy policy

Course Hub is covered by, and adheres to the privacy policy of its parent company, Curio.

Updated July, 2020


Curio Group Pty Ltd (“Curio”) and its wholly-owned subsidiaries (Curio Academy Pty Ltd) is registered as an organisation under the Privacy Act 1988 (Commonwealth of Australia) (the Act) and as such is required to abide by the provisions of the Act. Our details and further information about our registration can be found in the Opt-In Register held by the Australian Information Commissioner. Curio is committed to keeping data secure and this Privacy Policy governs the manner in which your Personal Information, will be dealt with and the client’s (“you”, “your” and “client”) choices regarding use, access and correction of Personal Information. The “Client” is defined as an organisation that engages Curio to provide a range of services including but not limited to, learning management system hosting, consulting and course design and development. “Personal Information” includes any information provided by the client, especially information that is capable of identifying an individual.

We reserve the right, at our discretion, to modify or remove portions of this Privacy Policy at any time. This Privacy Policy should be reviewed periodically so that you are updated on any changes. Furthermore, this Privacy Policy describes our widest possible use of your Personal Information and we may actually use far less.

For the purposes of the General Data Protection Regulation (GDPR) of the European Commission, Curio is the ‘processor and controller’ of certain types of Personally Identifiable Data provided by the client its users or customers. We offer a Data Protection Policy (DPP) that outlines our compliance with GDPR.


What information do we collect?

Personal Information about users is collected only when knowingly and voluntarily submitted with your consent. For example, we may need to collect such information to provide you with further services or to answer or forward any requests or enquiries. It is our intention that this policy will protect your Personal Information from being dealt with in any way that is inconsistent with applicable privacy laws in Australia. No law requires you to provide us with your Personal Information.

You may withdraw your consent for us to process your Personal Information at any time, but that may preclude you from using any services provided by Curio. We will delete your Personal Information if your consent is withdrawn, however, this will not affect the lawfulness of processing of data prior to the withdrawal of consent. When your access to our systems is terminated or expired, all Personal Data collected through the platform will be deleted, as required by applicable law.

We may statistically aggregate in non-person-specific form information collected to improve our systems, websites, platforms, our quality controls, operations management, security processes, future marketing and promotional efforts, and the overall services we provide in an attempt to better understand our users’ interests and preferences. In some cases, we may transfer this information to our third-party service providers. By engaging Curio and using our systems and platforms provided in the provision of services, you consent to this non-person specific data aggregation and the use and transmission of this aggregated statistical data as outlined above.


How do we collect your Personal Information?

In engaging Curio, we may collect Personal Information about you in order for you to take full advantage of our services. Information may include, but is not limited to, your name, email address, address, telephone numbers and other information. You may access this information at any time by logging into the systems provided by Curio in the provision of its services.

Our websites and systems may collect information through the use of cookies. Cookies are small pieces of information that are stored by your browser on your computer’s hard drive. Change the options in your web browser if you do not wish to receive a cookie or if you wish to set your browser to notify you when you receive a cookie. You can easily delete any cookies that have been installed in the cookie folder of your browser. Please check your browser’s cookie settings and support pages to confirm how to enable and disable cookies for your specific browser.

Our web servers for sites and systems gather your IP address to assist with the diagnosis of problems or support issues with our services. Again, information is gathered in aggregate only and cannot be traced to an individual user.


How do we use your Personal Information?

Personal Information that users submit is used solely for the purpose for which it is submitted or for such other secondary purposes that are related to the primary purpose unless we disclose other uses in this Privacy Policy or at the time of collection. Copies of correspondence, that may contain Personal Information, are stored as archives for record-keeping and back-up purposes only.

We may use your Personal Information to contact you regarding your use of any systems or services provided by Curio, for customer support purposes, and to inform you of updates, modifications and other relating matters, and information about others services that we offer. You may decline to receive mail or e-mail from us that does not relate directly to your access to or use of the system by selecting the opt-out link contained in any such e-mail.

Apart from where you have consented, or disclosure is necessary to achieve the purpose for which it was submitted, Personal Information may be disclosed in special situations where we have reason to believe that doing so is necessary to identify, contact or bring legal action against anyone damaging, injuring, or interfering (intentionally or unintentionally) with our rights or property, users, or anyone else who could be harmed by such activities. We may also disclose Personal Information when we believe in good faith that the law requires disclosure.

We may engage third parties to provide you with goods or services on our behalf. In that circumstance, we may disclose your Personal Information to those third parties in order to meet your request for goods or services. We do not, in any form, sell Personal Information to third parties.


How do we ensure the security of your information?

Curio seeks to use reasonable security measures to help protect against the loss, misuse and alteration of the Personal Information under Curio's control. We strive to ensure the security, integrity and privacy of Personal Information submitted to our sites and in engagements with us is reviewed and updated by our security measures in light of current technologies. Unfortunately, no data transmission over the Internet can be guaranteed to be totally secure. Please note that emails, messages sent via your web browser, and other similar means of communication with other users on our systems, are not encrypted. To clarify, connections are encrypted, email content is not encrypted. We strongly advise you not to communicate any confidential or sensitive information through these means.

However, we will endeavour to take all reasonable steps to protect the Personal Information you may transmit to us or from our online products and services.
Once we do receive your transmission, we will also make our best efforts to ensure its security on our systems.

Therefore, while we strive to protect your information, we cannot guarantee its security.
Please also be aware that we may use third-party cloud service providers that provide hosting, data storage and other services pursuant to standard terms and conditions that may be non-negotiable; these service providers have informed us or the general public that they apply security measures they consider adequate for the protection of information within their system, or they have a general reputation for applying such measures. However, we will not be liable (to the fullest extent permitted by law) for any damages that may result from the misuse of any information, including Personal Information, by these companies.

In addition, our employees and the contractors who provide services related to our information systems are obliged to respect the confidentiality of any personal
information held by us. However, we will not be held responsible for events arising from unauthorised access to your Personal Information.

We assume that all parties we engage with and users of our systems, and platforms have carefully read this document and agree to its contents. If someone does not agree with this privacy policy, they should refrain from using our website and platform. Continued use of our website and platform after having been informed of any such changes to these conditions implies acceptance of the revised privacy policy.


How do we access and control your personal information?

You have the following data protection rights:

1. Right to Access: Learn whether we are processing your Personal Information and, if so, to gain access to it and certain information about it.

2. Right to Rectification: Have inaccurate Personal Information corrected or removed, and have incomplete Personal Information completed.

3. Right to Erasure: Have your Personal Information erased when it is no longer necessary for the purposes collected, you withdraw consent to process it, we have processed it unlawfully or when EU or Member State laws to which we are subject requires erasure.

4. Right to Restrict Processing: Restrict our processing of your Personal Information when you contest its accuracy (for a period necessary to verify it), the processing is unlawful and you prefer restriction of use to erasure or we no longer need the data, but you need it in connection with legal claims.

5. Right to Data Portability: Obtain in usable form the Personal Information you gave us and, if technically feasible, require its transmittal directly to another controller that you designate.

6. Right to Object: In certain circumstances, you have the right to object to the processing of your Personal Information. If you would like to object to the processing of your Personal Information, please contact us using the contact details provided below.

To exercise any of these rights, please contact our Data Protection Officer:

Anthony Rae
Chief Operating Officer and Data Protection Officer
Email: or or
Address: 3 Albert Coates Lane, Melbourne, Victoria Australia
Phone: +61 3 9013 3818

We will respond to your request to change, correct, or delete your information within 72 hours and notify you of the action we have taken.


Do you have any questions?

If we become aware of any ongoing concerns or problems with our web sites or services, we will take these issues seriously and work to address these concerns.

Anthony Rae
Chief Operating Officer and Data Protection Officer
Email: or or
Address: 3 Albert Coates Lane, Melbourne, Victoria Australia
Phone: +61 3 9013 3818

Any questions?

With customers spanning higher education, not-for-profit and corporate education, Course Hub accommodates a wide range of requirements.

Get in touch to discuss your organisation's needs