Collecting customer data and online forms

Owned by Marcella Marino
Last updated: 08 Aug, 2024 by Emma Cameron
1 min read

The SDP content management system (CMS) is only classified to collect data up to the level “unclassified”.

This means no 'sensitive personal information' can be captured in any webforms that store submissions in the CMS.​

The definition of ‘sensitive information’ is in Schedule 1 of the Privacy and Data Protection Act 2014 and means information or an opinion that relates to an individual’s:

  • health (including predictive genetic information)​

  • racial or ethnic origin​

  • political opinions​

  • membership of a political association, professional or trade association or trade union​

  • religious beliefs or affiliations​

  • philosophical beliefs​

  • sexual orientation or practices​

  • criminal record​

  • biometric information that is to be used for certain purposes​

  • biometric templates.​

More information

Related content

Privacy requirements for webforms
Privacy requirements for webforms
SDP - Knowledge Base
More like this
Forms documentation
Forms documentation
SDP - Knowledge Base
Read with this
Third-party tools on vic.gov.au and the storage of sensitive data
Third-party tools on vic.gov.au and the storage of sensitive data
SDP - Knowledge Base
More like this
Content vendors that have already used SDP
Content vendors that have already used SDP
SDP - Knowledge Base
Read with this
Advanced guide: Drupal webform settings
Advanced guide: Drupal webform settings
SDP - Knowledge Base
Read with this
Advanced guide: Building Drupal webforms
Advanced guide: Building Drupal webforms
SDP - Knowledge Base
Read with this