APNIC Privacy Statement

1. As the Regional Internet Registry (RIR) in the Asia Pacific region, APNIC Pty Ltd (Asia Pacific Network Information Centre or APNIC) performs a number of functions, including:
   1. distributing and managing Internet number resources;
   2. providing forums for Internet Number Resource policy development;
   3. helping build essential technical skills across the Asia Pacific region;
   4. supporting Internet infrastructure development;
   5. producing insightful research and statistics; and
   6. serving as an active participant in the multi-stakeholder model of Internet cooperation and governance.
2. To support our mission and role as an RIR, we collect personal information about you and your interactions with us.
3. We respect your privacy and are committed to protecting the personal information that you provide. As an entity located in Australia, APNIC complies with the Privacy Act 1988 (Cth) and Australian Privacy Principles (the Privacy Law).
4. This Privacy Statement describes how we collect, store, use, disclose and protect your personal information.

1. Personal information is defined in the Privacy Law and includes any information, or an opinion, about an identified individual or an individual who can be reasonably identified from the information or opinion.
2. Information or an opinion may be personal information regardless of whether it is true.
3. Sensitive information is a subset of personal information which attracts a higher level of privacy protection than non-sensitive personal information. Under the Privacy Law, this covers information such as ethnic origin, memberships to professional associations or trade unions, criminal records, and biometric data.

To provide Internet number resources, products, or services

1. APNIC uses your personal information to provide Internet number resources, products, or services, including to:
   1. confirm your identity
   2. evaluate your APNIC account, Membership, and Internet number resource requests
   3. manage your APNIC account, Membership, and Internet number resources
   4. administer your accounts with us
   5. send APNIC account or Membership-related notifications.

Registering your delegation in the APNIC Whois Database

2. As part of our Internet number resource distribution and management function, APNIC maintains a public database (the APNIC Whois Database) of all Internet number resources that we delegate. This is necessary to ensure uniqueness and to provide information for Internet network management and troubleshooting at all levels.
3. If the information you provide for your delegation, including network contact details, contains personal information, this personal information will be published in the public APNIC Whois Database (and the associated APNIC Whowas Database). The APNIC Whois Database is publicly accessible via the online Whois search facility and both Whois and RDAP protocols. Bulk access to the APNIC Whois Database is granted to eligible parties for permissible uses under APNIC’s Whois Acceptable Use Policy.
4. You may avoid the publication of certain personal information by, for example, choosing to register role-based object names and contact details (e.g. sys.admin@example.net) in place of personal details in the network contact details, or hiding customer assignment registrations (see APNIC Internet Resource Policy, section 3.1.2).

To publish your Membership on the APNIC Website

5. APNIC publishes the names, Membership tiers, economies, and uniform resource locator (URLs) of all APNIC Members on the public APNIC website.
6. If the name you use to register as an APNIC Member contains personal information (e.g. if you are an APNIC Member operating your business as an individual), this personal information will be published on the APNIC website.

To plan and conduct events

7. When you sign up for in-person or virtual events such as public conferences, meetings, and training sessions (including on-demand training), APNIC uses your personal information to plan and conduct these events.
8. Certain events such as APNIC Conferences often involve photography and videography and such media may be used in APNIC publications, on the APNIC website, or on social media platforms. If you attend an APNIC Conference or event virtually your name and image may be included in the recording of that event, including in video and transcripts, which are made available publicly. APNIC takes care to inform attendees that photography and videography may take place.

To process your application or nomination to an APNIC program or position

9. When you apply, or are nominated, for an APNIC program (such as the APNIC Fellowship program), community position, or role with APNIC, we use your personal information to assess your application, and for purposes related to the program or position if your application is successful.
10. If the program or position that you are selected for involves us organising travel for you, we may request additional information so that we may book travel on your behalf.

To administer mailing lists

11. Orbit and its associated mailing lists are facilitated by APNIC, on behalf of the community, as a place for community discussion related to Internet addressing, networking, and multistakeholder coordination.
12. When you subscribe to a mailing list, the personal information you provide is used only in the mailing lists you specify and may be visible to other list members. Your personal information will be visible to mailing list moderators and administrators. You can manage your subscription to mailing lists via Orbit.

For improvement, monitoring, and reporting

13. We are always working on improving our products, events, and services to provide our community with the best service experience. We may use information that we have collected about you and your interactions with us to help us, for example, monitor website performance and stability, understand user navigation patterns, identify usability, accessibility, and navigation issues, improve delivery of services, develop products, or when we plan future events and services.
14. In some cases, the information we collect about you may be used and shared with relevant third parties for reporting purposes, such as where we conduct an event in partnership with a third party.
15. We may also collect your personal information when you interact with us to monitor network performance and to ensure the security and stability of our products and services, such as identifying and tracking denial of service attacks.

To send direct marketing

16. With your consent, APNIC may use your personal information to contact you about products, services, or events we believe may interest you.
17. If you do not wish to receive marketing communications, you can opt out at any time by following the unsubscribe instructions in any of our marketing communications. Please note that certain communications from APNIC, such as APNIC account or Membership-related notifications, are not marketing communications and cannot be unsubscribed from if you are a contact for an APNIC account.

To comply with our legal obligations

18. APNIC may collect, use, or disclose your personal information to comply with our obligations under law, including where required by government and law enforcement agencies or regulators.

1. APNIC collects personal information about you where it is necessary for our functions or activities. The exact types of information we collect about you depends on your interaction with us, but we have provided some common examples below.

Personal information we collect directly from you

2. When you create an APNIC account: The information you provide in your registration form, such as your name, contact details, and any optional demographic information you choose to give us.
3. When you apply for Internet number resources, products, and services: The information you provide in your application or request, such as your name, contact details, employer, proof of identity documents, billing details, and other information you give us in support of your application or request.
4. When you visit our website or use our products and services: Usage and analytics data about your activity on our website or platforms and other technical data about your browser and operating systems through cookies and other technologies. This can include, for example, your IP address, geographic location, device, browser and operating system type, navigation paths, referral source, length of visit, and number of page views. We do not use this information to identify you personally as the information is analysed on an anonymous basis.
5. When you participate in an event: The information you provide in your event registration, such as your name, contact details, employer, and any demographic information you provide. Any information collected in the course of the event, such as photographs and recordings of sessions that you attend. We may request your medical and/or dietary information for in-person events and/or where otherwise necessary, and only with your consent.
6. When you apply or nominate for an APNIC program or position: The information you provide in your application or nomination, such as your name, employment history, qualifications, identification documents, residency/citizenship/visa details, and other information you give us in support of your application or nomination.

   If the program or position that you are selected for involves us organising travel for you, we may request additional medical and/or dietary information and other travel-related information such as your passport.

7. When you participate in a mailing list: The name and email you provide to subscribe to a mailing list, and any other personal information you choose to make public in the course of your participation.
8. When you participate in one of our surveys or interviews: The information that you provide in the survey or interview. Many of our surveys allow you to remain anonymous, but you may provide us with your contact information if you wish to enter one of our prize draws.
9. When you contract with us to provide goods and services: Your contact and payment details.

Personal information we collect from others

10. When you apply for or use Internet number resources, products, and services: Information about you and/or your business from sources such as corporate registries and identity verification services. We may also receive information about you from an APNIC account holder if you are nominated as a contact for the account or if you have received an Internet number resource assignment from an APNIC account holder.
11. When you use our products and services through a National Internet Registry: Information about your account and resource registration, such as your name, address and contact details. We may also receive information about you, similar to that described in section 4.3, under our agreements with National Internet Registries.
12. When you participate in an event: When you sign up for and/or attend an APNIC-affiliated event organised or facilitated by a third party, we may collect the information you provide in your event registration, and other information relevant to your participation, from that third party.
13. When you apply or nominate for an APNIC program or position: Information about you from third-party service providers, such as police and background checks.
14. When you participate in one of our surveys or interviews: When you participate in an APNIC survey or interview being hosted by or conducted through a third-party, we may receive the information that you provide to that third-party platform.

Sensitive information we collect

15. We may collect personal information about you which may be considered sensitive as defined in the Privacy Law. Except where the law allows or requires otherwise, we will only ask for sensitive information where it is necessary for one of our activities and with your consent. Examples of this are set out below.
16. When you participate in an event: Photographs, videos, and other recordings of the event, which you may be captured in.
17. When you participate in an in-person event, or when APNIC organises travel for you: Your dietary requirements and any other sensitive information you provide to us. For example, some passports will contain information about racial or ethnic origin.
18. When you apply or nominate for an APNIC program or position: Any sensitive information you provide in support of your application or nomination. For certain positions, we may need to collect sensitive information, such as any criminal history you might have, from you or third-party service providers.

What if I don’t want to share my personal information?

19. APNIC respects your privacy and is committed to protecting the personal information that you provide. If you do not wish to share your personal information with APNIC, we may not be able to provide you with our services, communicate with you, or process your registrations or applications.

1. Most information that APNIC holds about you is stored digitally in computer systems and databases operated by either us or our external service providers. Some information about you may be recorded in paper files or other physical storage media that we store securely either directly or through a third-party storage provider.
2. We implement and maintain processes and security measures to protect your personal information from misuse or loss, and from unauthorised access or disclosure, such as:
   1. maintaining and continuously improving an Information Security Management System in accordance with the requirements of ISO/IEC 27001:2022 (see our Information Security Policy Statement);
   2. monitoring and regularly reviewing our practise against our own policies and against industry best practice; and
   3. taking reasonable steps to ensure that our employees, contractors, and service providers comply with relevant information security policies.
3. Some services provided by APNIC (e.g. Whois Database registration, our mailing lists, participation in our public meetings) make the information you provide public. You are responsible for carefully considering whether to use these services.
4. We endeavour to keep the personal information we hold as current as possible, and that irrelevant or excessive data is deleted or de-identified as soon as reasonably possible. When the personal information we hold is no longer required for a legitimate business reason, such as the reason for which it was collected, we endeavour to take reasonable steps to destroy or de-identify it.

6. Who do we share your personal information with?

1. APNIC works with a broad range of third-party service providers, contractors, and business partners to deliver our products and services. We may occasionally share personal information about you that has been collected for that particular purpose with these third parties. Examples of this are set out below.
2. When you apply for Internet number resource products and services: Third parties who assist us with verifying the information you provide in support of your application, such as corporate registries and service providers assisting with due diligence and identify verification. If your application for resources or Membership is approved, we may also publish your personal information in the public APNIC Whois Database or Membership register respectively (see sections 3.2 to 3.6).
3. When you visit our website or use our products and services: Third parties who help us provide and improve our products or services.
4. When you participate in an event: Local hosts, trainers, partner organisations, and other service providers necessary to conduct the event. Photographs, videos, and other recordings of the event will be published on third-party hosting platforms, such as Flickr and YouTube, and may be posted on our website or other social media publications. If you have consented in your event registration, we may also publish attendance information such as your name, employer, and economy on the conference website.
5. When you apply for an in-person event, or when APNIC organises travel for you: Third parties who help us organise and deliver the event or associated travel, such as our travel booking partners and transport and accommodation providers. We may also provide personal information to government and regulatory authorities, for example to support visa applications.
6. When you apply or nominate for an APNIC program or position: Third parties who assist us with verifying the information you provide in support of your application, such as background check service providers. If you are successful, we may also publish your selection and information such as your name and qualifications on our website.
7. When you enter a prize draw: The third-party platform for prize delivery (depending on the prize), such as gift card distribution platforms.
8. We may also share your personal information in other ways as part of our functions and activities, such as:
   1. with your authorised APNIC account contacts;
   2. with financial service providers, such as banks and payment processors, to administer your accounts with us;
   3. with mail automation platforms to distribute account or Membership-related notifications and, where you have provided consent, marketing material;
   4. with parties who help us comply with our legal obligations, such as auditors; and
   5. with law enforcement or other government and regulatory authorities as required or authorised by law.

   Sharing your information outside Australia

9. Personal information that APNIC collects may be disclosed to recipients located outside Australia. This may include recipients in:
   1. countries where APNIC conferences, meetings, training sessions or other events are held; and
   2. any country where personal information is accessed through publicly available services, such as the APNIC Whois Database, which is accessible via the Internet.
10. APNIC takes reasonable steps to ensure that overseas disclosures of personal information are handled consistently with the Australian Privacy Principles, unless an exception under the Privacy Act 1988 (Cth) applies. As the APNIC Whois Database must be made publicly available and otherwise in accordance with APNIC’s community developed policies, APNIC is unable to ensure that overseas access to this information is handled in accordance with the Privacy Law at all times.

1. You may request access, or corrections, to the personal information that APNIC holds about you at any time by contacting us (see section 9 below). We will consider each request in accordance with applicable privacy laws, which may permit refusal in certain circumstances. Should access, or a correction, to your personal information be denied, reasons will be given and complaint mechanisms are available if you have a concern about the decision made (see section 8 below).
2. We also provide tools and services that allow you, if you are an APNIC account holder, to access and update your registration details in the APNIC Whois Database. To prevent unauthorized changes, there are strict procedures to identify people and verify their right to request changes.
3. Where we receive information about you from an APNIC account holder we have presumed they have received your consent to do so. If this is not the case, we encourage you to contact the relevant APNIC account holder in the first instance.
4. You can manage your subscription to mailing lists via Orbit.

Complain to APNIC

1. If you have a concern or complaint about your privacy, please contact us (see section 9 below).
2. We investigate all complaints we receive and will provide you with an estimated timeframe for our investigations as soon as possible. Once we have completed our investigation and made a finding, we will inform you of the outcome and explain how we came to such a finding.
3. If you are not satisfied with our investigation and/or finding, you can escalate your complaint to APNIC management and, if you are still not satisfied, to the APNIC EC on our website forms.

Complain to the OAIC

4. You can lodge a complaint with the Office of the Australian Information Commissioner (OAIC), which is the independent regulator responsible for enforcing the Privacy Law, if you consider that APNIC has interfered with your privacy or if you are not satisfied with how your complaint has been handled.

1. If you have any concerns or questions about how we handle your personal information, or if you would like to receive a copy of our current policy, you may contact us via any of the methods listed on our Contact APNIC page, by email at privacy@apnic.net, or in writing to:
   APNIC
   PO Box 3646
   South Brisbane, QLD 4101, Australia

1. APNIC may make changes to this Privacy Statement from time to time, which will be announced on our website.
2. This document was last updated on 14 May 2026.