2. What personal information do we collect?
We collect personal information where relevant so that we can provide you with access to information or other services.
We may collect personal information from you in the course of your interactions with us, or your use of our website and services (including purchasing our products). We may collect personal information for related purposes, but only if you reasonably expect us to, or consent to us doing so.
The nature of the personal information we collect and hold will vary depending on how you interact with us. In this regard we may collect information such as:
· your name and other contact details (e.g. address, email address, phone number);
· credit card and other payment information (if purchasing goods or services from our websites).
We may collect personal information for related purposes, but only if you reasonably expect us to, or consent to us doing so.
3. How do we collect personal information?
We collect personal information in a variety of ways, including:
· through completed forms you provide us in various formats (such as through our websites);
· phone and email;
· our websites generally (such as through cookies);
· via our social media channels, email newsletters, publications and other online updates.
To help us make emails more productive to improve service, we may send you newsletters of our services activities and notifications of changes to our policies. If you do not want to receive emails from us, please let us know.
Please note we are not responsible for any links to third-party websites, the content of those third-party websites or the practices of those third-parties.
4. How do we use or disclose personal information?
We use and disclose personal information to fulfil the purpose for which it is collected or for related purposes.
The online store provided through our website is hosted on NETO, an online commerce platform. Any data relating to your purchase of our products from our website will be stored through NETO’s data storage, databases and the general NETO application. For more information about how NETO collects, stores and uses personal information please visit www.netohq.com/privacy-policy
Payments are processed via our PayPal account, which may involve the collection of your credit card and other payment details.
This collection is necessary to complete your purchase. For more information on how PayPal collects, stores and uses personal information please visit https://www.paypal.com/au/webapps/mpp/ua/privacy-full
6. How do we manage and secure personal information?
We have in place steps to protect the security of your personal information. Although we take all necessary steps to protect your personal information, the internet is subject to security threats (such as hacking). Accordingly, we provide no warranty and cannot ensure the security of any information which you provide to us. Any information which you provide to us is at your own risk.
We will retain your personal information for as long as we require it for our purposes or as permitted or required by the Privacy Law. When we no longer require it, we will take all necessary steps to permanently delete, destroy or de-identify it.
We may disclose Personal Information to overseas recipients when we use ‘cloud’ service providers, who may store and process Personal Information outside Australia, including the USA, UK, Japan and Singapore.
7. Notifiable Data Breaches
If despite our efforts to protect the security of your personal information, a suspected data breach occurs, we will determine the extent of the suspected data breach. A data breach may occur if your personal information is lost or subjected to unauthorised access or disclosure.
If we believe that the suspected data breach is likely to result in serious harm to you, we will notify you and the Office of the Australian Information Commissioner as soon as practicable and as required by the Privacy Law. This notification will set out a description of the data breach, the kinds of information concerned, and recommendations about the steps you should take in response to the data breach.
8. How can you access or correct your personal information?
We will give you access to a broad range of information about your interactions with us for the limited purpose of viewing and, in certain cases, updating your personal information. Please advise us of changes to your contact details or other personal information.
We take reasonable steps in the circumstances to ensure that personal information we collect, use or disclose is accurate, current, complete and relevant. Under the Privacy Law, you have the right to obtain access to any personal information which we hold about you, and to advise of any inaccuracy, if it is out of date, incomplete, irrelevant or misleading. There are some exceptions to this right set out in the Privacy Law.
If you request access to or correction of personal information, we will require you to verify your identity and specify what information you require. We may charge a fee to cover the cost of verifying your application and locating, retrieving, reviewing and copying any personal information requested. If we agree to correct the personal information, we will do it as soon as practicable and if there is a delay, we will advise you in writing.
To make a request to access or update any of personal information we hold about you, please contact our Privacy Officer at firstname.lastname@example.org.
If you live or are located in the EU, you may have additional rights under the General Data Protection Regulation (GDPR).
The GDPR provides additional rights for individuals located in the EU (data subjects) and imposes additional obligations on entities holding any personal information. In this section, personal information has the same meaning as “personal data” under the GDPR, being means any information relating to an identified or identifiable natural person.
What information do we collect?
We do not collect any personal information which falls into the “special categories” of data under the GDPR (such as biometric data or data concerning your health, sex life or sexual orientation).
What additional rights do you have and how will we assist you?
To request an explanation of your personal information we collect
We will provide you with an explanation of the information and how we use that information
To receive a copy of the information we have collected
We will provide you with a copy of any of your personal information we have collected
To have personal information deleted
We will delete any of your personal information we have, unless we need to retain it to comply with our legal obligations or for legitimate business reasons
To restrict the processing of your personal information
In certain circumstances, we will stop using your personal information though may continue to store it.
To object and complain about our use of your personal information
* Please note Immuron has not nominated a representative in an EU member State. Immuron only undertakes ‘occasional’ data processing activities in relation to EU data subjects, and considers it meets the exemption set out in Article 27(2)(a) of the GDPR.
When can we use your personal information?
Under the GDPR, use of personal information (known as “data processing”) can only be made on the basis of specific grounds. These includes where you have consented to us doing so, or where it is necessary:
· to provide you with services or features you have requested;
· to protect our legitimate interests or those of other persons; or
· to fulfil our legal obligations.
10. What can you do if you have a question or complaint?
If you would like further information about the way we manage Personal Information, or wish to complain, please contact our Privacy Officer using the details above and we will investigate the issue. We will notify you of a decision in relation to your complaint as soon as practicable after it has been made.
You may also obtain further information regarding compliance with the Privacy Law at www.privacy.gov.au