- Introduction and Use of this Website
If you live in the European Union (EU), you have specific rights as outlined in the General Data Protection Regulation (GDPR). Those rights are outlined below, under ‘9 What Are My Rights if I am in the EU?’.
Given the nature of our business, the majority, if not all, of our clients are adults. In the rare case that a child under the age of 18 becomes a client, personal information about that client will only be collected and held with parental consent.
- What is “personal information” and how do you collect it?
- Name, address and other contact details.
- Date of birth.
- Payment and transaction information including type, bank and credit card details.
- Delivery address or collection details.
- Your location details through your smart phone or device.
- Occupation and copies of correspondence you send us, through our website, by email, or otherwise.
We may collect personal information from you, for example, when you ask about or order our products or services, subscribe to our email list, contract with us (in writing or online) to become a client, use our website, when you provide us with feedback or complete a survey for us.
In the course of our business, we may also collect from you (and others) anonymous answers to surveys, or collective information (from all website users) on how our clients or prospective clients use our website. This information is not all personal information but may be linked to personal information we hold about you. More information is provided on information that can be obtained from you when you use our website below, in ‘5 What happens when I use your website?’.
- Why do you need my personal information?
Personal information is collected from you, through our website and directly from you, for the following reasons.
- First and foremost – so that we can give you our best possible service and/or purchase experience when you ask for it and to track your preferences for future products or services you may seek.
- To manage our accounts and records.
- So that we can answer your enquiries and complaints, and send information you request.
- To enrol you to receive our free newsletter, so that we can send you information about existing and new products and services, competitions and/or promotions.
- To conduct market research.
- To identify and understand our clients’ and website users’ needs and continually improve the functioning of our website.
- To send you information about third parties that we think you may find interesting.
We value your personal information highly and will not abuse it. All emails will contain clear instructions on how to remove yourself from our email mailing list, if you wish to receive no further emails from us, with an unsubscribe option at the bottom of all emails from us. If you ever have problems with the unsubscribe option functioning, you can email us or use our website contact form to ask us to unsubscribe you.
- What if I don’t want to give you my personal information?
You do not have to provide personal information to us if you do not want to. If you choose not to, this may impact on our ability to provide products or services to you. For example, we may only be able to offer a lower level of service to you, or possibly not be able to serve you at all. You may possibly also be unable to be kept informed of any special offers we may make to our loyal clients from time to time.
- What happens when I use your website?
In addition to the obvious information that you provide about yourself on our website (for example, when completing our website contact form), the mere use of our website itself can enable us to obtain information specific to you.
Data Collection Technology
We may use data collection technologies (such as Google Analytics or other comparable technologies) to collect information about your equipment, browsing actions and patterns. For example, we may obtain information about your location, the type of computer you use, your internet connection, your IP address, your operating system, your browser type, how you browse through our website and any communications between your computer and our website.
This kind of data helps us to review and improve our website and services for future users (including you!). If you would like to opt out of the Google Analytics data collection system, you can do so at any time through Google at https://tools.google.com/dlpage/gaoptout/.
While our cookies are delicious, those are not the kind we are talking about here! In the internet world, a cookie is a small summary file containing a unique ID number.
An IP address is the electronic address of a computer linked to the internet. We may log your IP addresses generally to analyse trends, gather broad demographic information, track clients’ movements within our website and maintain our website.
We may also use other items like cookies, such as social media pixels. Social media pixels enable social media sites to track visitors to outside websites. This is how, when you’re on social media, the advertisements you see are tailored to products and services you may have recently been researching on the internet. If we do use these pixels, we will always do so in accordance with the relevant social media site’s policies.
Through our website, we offer products from international third-party suppliers which are shipped directly from the supplier to you. As a result, personal information will be shared with those third parties to the extent necessary to complete any order you make through our website. We are not responsible for the actions or inaction of third-party suppliers, nor for the level of security of their websites or electronic communications. You will need to make your own enquiries of those third parties (if you wish) about their privacy policies.
Any information you disclose online is disclosed at your own risk. Although we do our best to keep our website as secure as possible, we cannot guarantee the security of information you disclose online. No method of transmission over the internet or method of electronic storage is 100% secure. Help protect your personal information by keeping your account details confidential, limit access to your accounts and computer, use a unique and strong password, and log out of your device/s after use. If you become aware of unauthorised access, please let us know as soon as practicable.
- Will you ever disclose my personal information?
Your personal information will not be shared, sold, rented or disclosed other than as outlined below.
- To our employees, contractors or third party service providers to the extent necessary for us to operate our website and business, respond to requests from you and provide services to you. (Examples of service providers include website hosting providers, providers of electronic appointment booking applications, IT technicians, couriers, payment processors, debt collectors, our accountants, suppliers and sellers who provide products and services through our website, etc. Some of our trusted service providers may be located outside of Australia.)
- To a solicitor, debt collector, credit reporting agency, regulatory authority or court if you fail to pay for goods or services we provide to you, or to enforce any other aspect of our Terms & Conditions.
- When legally required by a court or government entity to do so or when we reasonably believe it is necessary to protect our legal rights.
- When we reasonably believe it is necessary to protect your physical safety.
- To any successor, or potential successor, in the event of a sale, transfer, merger, restructure, divestiture or dissolution of some or all of our assets and/or business.
- To any other organisation with your express consent.
Any trusted service provider must observe and meet our information security requirements to minimise the risk of unauthorised access to, and loss, misuse or unapproved alteration of, personal information. We also have a number of security controls in place and use a range of resources, process and technology controls to protect your personal information.
- How long do you keep my personal information?
For Australian tax law reasons, we must keep basic information about you (including your identity, contact details and financial transaction data) for five years from the date of any transaction.
More generally, we will destroy or inactivate your personal information when it is no longer needed, or when we are no longer required to retain it by law (whichever comes last). When deciding whether we need to keep your personal information, we will take into account things like whether you are still a regular customer, the quantity and sensitivity of information we hold and whether we think there are special circumstances in your case that might require us to revisit your information at later date.
- What are my rights if I am not in the EU?
You can contact us at any time to find out what personal information we hold about you. We will liaise with you to negotiate the best way for us to provide the information to you, and for you to receive it. When requesting information, please provide as much detail as possible to help us retrieve your information. To protect your information, we may ask for proof of your identity before releasing the information you seek.
There is also no fee to request information. However, depending on the quantity of information you have requested, we may charge a fee to provide you with a copy of the personal information we hold to cover administrative costs such as scanning, photocopying and/or postage.
We reserve the right to refuse access to your personal information if doing so would interfere with the privacy of others or would result in a breach of confidentiality. If we have to refuse a request for access to your personal information, we will give you a written explanation.
If you notice an error in the personal information we hold about you, or that it is incomplete, you can ask us to fix this at any time. If we do not agree that your information requires correction, we will note in our systems the extent to which you disagree with the information. We will not charge a fee to correct your personal information. If we correct your personal information and have previously disclosed that information to another agency or organisation that is subject to the Privacy Act, you may ask us to notify that other entity. If you ask us to do this, we will take reasonable steps to do so, unless it would be impracticable or unlawful.
We encourage you to keep your personal details up to date in any accounts you hold with us.
- What are my rights if I am in the EU?
If you live in the EU, the GDPR provides you with rights regarding your personal information. These rights include the following.
- To be informed – to ask us how we use your personal information.
- To access – to make a data access request for a copy of the personal information we hold about you.
- To rectification – to make us correct personal information that is inaccurate or incomplete.
- To erasure – to ask us to delete your personal information (unless we are required to keep it by law).
- To object, restrict or withdraw – to object to, restrict, or withdraw your consent for, us processing your personal information in certain circumstances.
- To complain – to complain to an authority that has jurisdiction over GDPR issues.
There are certain processes that must be followed to exercise these rights.
You can find out more about your rights as an individual under the GDPR at this website:
- What do I do if I think my privacy has been breached?
Contact us immediately. Provide as much information as possible about the alleged breach, so that we can investigate it as quickly and as efficiently as possible for you. Where relevant, we will comply with any time requirements for processing a complaint under the Privacy Act and/or GDPR. All complaints will be dealt with fairly, taking into account all of the circumstances surrounding the complaint.
We will treat your complaint with discretion and the utmost confidentiality.
- How do I contact you?
Telephone: 1300 910 453
Website contact form: https://thesweetbox.com.au/contact-us/
For information about privacy generally, you may visit the Office of the Australian Information Commissioner’s website at www.oaic.gov.au.
30 August 2020