WHAT PERSONAL INFORMATION WE COLLECT & HOW AND WHY WE COLLECT IT?
What personal information do we collect?
The personal information we collect is generally limited to:
- name and contact details;
- drivers licence for ID verification;
- business information;
- job information;
- and any communications we have.
However, we may also collect:
- financial information; and
- information about how you use our website, via third parties.
How do we collect your personal information?
The main way we collect information is when you give it to us. You might do this by filling out forms on our website like sign-up or intake forms. Or you might give us information through phone calls, emails, or social media. On occasion we may also collect information from the person that referred you, or other people or organisations.
We love hearing from you, and we promise to keep your information safe and secure.
Why do we collect your personal information?
We need your personal information to:
- communicate with you in relation to your enquiry;
- verify your identity for security purposes;
- send you news if you have signed up (you can unsubscribe at any time);
- conduct our business, and enable your use of our website, products and services; and
- in some cases, to comply with our legal obligations, such as record keeping.
We also collect personal information to analyse and enhance our business operations and improve your experience with our business. This is used as statistical information to analyse our website traffic and to customise the content and advertising we provide.
You can opt-out of the collection and use of this information by changing your privacy settings or opting out.
To opt-out of Google advertising you can go here: https://tools.google.com/dlpage/gaoptout
To change your Facebook ad preferences you can go to “Facebook Help Centre”, “Manage my account” and “Ad preferences”.
Where we collect your financial information, we use it to help you pay for our products and services. Only the staff that need to know this information have access to it, and we only keep it as long as it is necessary. We use SSL certificates to verify your identity and encrypt any data you give us. All financial information is encrypted on our servers, and we do not keep all your data (to prevent unauthorised and duplicated transactions). We do not keep any details of your direct debit, and all information is sent to our bank for processing.
WHEN DO WE DISCLOSE PERSONAL INFORMATION & HOW YOU CAN ACCESS IT?
When do we disclose your personal information?
We use reasonable precautions to make sure your information stays safe and secure. Only authorised personnel can access it, and we keep it in accordance with our legal record keeping obligations. When we don’t need it anymore, or it is unsolicited, we destroy it appropriately. We generally will not disclose your personal information unless we have your consent, it’s required by law*, or it’s necessary for us to provide you with our services.
* This can include where we are of the reasonable belief that there is a serious risk to life, health or safety of you or another person. For example, if there is evidence of clear danger of harm to self and/or others, we may be legally required to report this information to the authorities responsible for ensuring safety. This includes if there is a strong suspicion of physical or sexual abuse or emotional, or neglect or exposure to family violence of any person under 18 years of age. A court order could also require us to release information contained in records.
Sometimes we do disclose your personal information where it is necessary to obtain third-party services, like analytics, data storage, payment providers or advertising services. Some of these third parties may be overseas. We do our best to make sure the providers we use comply with privacy laws and regulations. You can opt-out of the collection and use of this information by changing your privacy settings or opting out.
How can you access or delete your information?
If you want to access, correct or delete your information, please email us at firstname.lastname@example.org. We’re happy to help, unless we’re required by law to withhold it. And if you have any concerns at all about your privacy, please also email us at email@example.com. You can also make a complaint with the Office of the Australian Information Commissioner by phone on 1300 363 992, online at http://www.oaic.gov.au where you can go to the “Lodge a Privacy Complaint with us” page, or post to: Office of the Australian Information Commissioner, GPO Box 5218, Sydney, NSW 2001.
ADDITIONAL PROVISIONS FOR EUROPEAN CITIZENS
If you are a resident of the European Economic Area (“EEA”) or the UK you have certain rights and protections under the General Data Protection Regulations (“GDPR”) or it’s UK equivalent, The Data Protection Act 2018. We want you to know that we take these rights seriously and will always do our best to protect your personal information. We’re what’s called a “controller” under the GDPR as we collect, use and store your personal information to provide you with our website services and information about them.
We’ll always rely on a lawful reason for processing your information like:
- where you have given us valid express consent to use your personal information we will rely on that consent, and only use the personal or sensitive information for the specific purpose for which you have given consent; and
- where we need comply with the law or act in an emergency, we will rely on that lawful means of processing your personal information.
As an EEA or UK resident, you have various rights including the right to be informed; right of access; to rectification; to object; to restrict processing; to erasure or to be forgotten; to data portability; and the right not to be subject to automated processing. If you want to access personal information we hold about you, or ask if that the information be corrected, or deleted or otherwise exercise your rights, please contact us at firstname.lastname@example.org. You can also opt out of email newsletter communications by following the instructions in those emails or by clicking unsubscribe. In some circumstances where we have a legal basis to do so we may continue to process your information after you have withdrawn consent, for example if it is necessary to comply with an independent legal obligation or if it is necessary to do so to protect our legitimate interest in keeping our services secure.
We keep all personal information on our website platform confidential and secure, and it can only be accessed by authorised personnel. We collect what’s necessary, and keep it only as long as is necessary, taking into account the purpose for which it was collected. We implement and maintain appropriate technical, security and organisational measures to protect your personal information against unauthorised or unlawful processing and use, and against accidental loss, destruction, damage, theft or disclosure. We ensure the encryption and pseudonymisation of personal information and we have adequate cyber security measures in place. By providing us with your personal information you consent to us disclosing it to third parties who reside outside the EEA countries and the UK. We will ensure that those third parties are GDPR compliant as much as possible.
Thank you for trusting us with your personal information. Above all, we will do our best to keep it safe and use it responsibly.