OUR COMMITMENT TO YOUR PRIVACY AND DATA SECURITY
The types of personal information we may collect about you include:
- your name;
- your contact details, including email address, mailing address, street address and/or telephone number;
- your credit card or payment details (through our third party payment processor);
- your preferences and/or opinions;
- information you provide to us through customer surveys;
- your sensitive information as set out below;
- details of products and services we have provided to you and/or that you have enquired about, and our response to you;
- your browser session and geo-location data, device and network information, statistics on page views and sessions, acquisition sources, search queries and/or browsing behaviour;
- information about your access and use of our Services, including through the use of Internet cookies, your communications with our online Services, the type of browser you are using, the type of operating system you are using and the domain name of your Internet service provider;
- additional personal information that you provide to us, directly or indirectly, through your use of our Services, associated applications, associated social media platforms and/or accounts from which you permit us to collect information; and
- any other personal information requested by us and/or provided by you or a third party.
We may collect these types of personal information directly from you or from third parties.
Collection and use of personal information
We may collect, hold, use and disclose personal information for the following purposes:
- to enable you to access and use our Services, associated applications and associated social media platforms;
- to contact and communicate with you, including:
- Account Messages: These are important email messages related to the online SIDRA Account including COVER Renewal notices, trial signup communications and other various system messages. These are sent via our eCommerce system;
- SIDRA News is our email newsletter sent approximately once a month and includes information and special offers related to our software, training workshops and events. We use Mailchimp to store and manage our email database;
- Direct Mail campaigns are physical mailings sent for Training Workshops, Events and important Product News;
- Support Requests: We communicate with our customers via Freshdesk ticketing system. These emails are only related to resolving support requests initiated by the customer; and
- Ticket Sales System: We use Eventbrite to process tickets sales to events. The Eventbrite system will store email addresses and some other personal information in order to communicate with the attendee and purchaser;
- for internal record keeping, administrative purposes, invoicing and billing purposes;
- for analytics, market research and business development, including to operate and improve our Services, associated applications and associated social media platforms;
- to run promotions, competitions and/or offer additional benefits to you;
- for advertising and marketing, including to send you promotional information about our products and services and information that we consider may be of interest to you;
- to comply with our legal obligations and resolve any disputes that we may have; and
- if you have applied for employment with us; to consider your employment application.
Disclosure of personal information to third parties
We may disclose personal information to:
- third party service providers for the purpose of enabling them to provide their services, including (without limitation) IT service providers, data storage, web-hosting and server providers, debt collectors, maintenance or problem-solving providers, marketing or advertising providers, professional advisors and payment systems operators;
- our employees, contractors and/or related entities;
- our existing or potential agents or business partners;
- anyone to whom our business or assets (or any part of them) are, or may (in good faith) be, transferred;
- credit reporting agencies, courts, tribunals and regulatory authorities, in the event you fail to pay for goods or services we have provided to you;
- courts, tribunals, regulatory authorities and law enforcement officers, as required by law, in connection with any actual or prospective legal proceedings, or in order to establish, exercise or defend our legal rights;
- third parties, including agents or sub-contractors, who assist us in providing information, products, services or direct marketing to you. This may include parties located, or that store data, outside of Australia;
- third parties to collect and process data, such as [Google Analytics or other relevant businesses]. This may include parties that store data outside of Australia.
By providing us with personal information, you consent to the disclosure of your information outside of Australia and acknowledge that we are not required to ensure that overseas recipients handle that personal information in compliance with Australian Privacy law. You acknowledge that some overseas third parties may not be regulated by the Privacy Act and the Australian Privacy Principles in the Privacy Act and if any third party engages in any act or practice that contravenes the Australian Privacy Principles, it would not be accountable under the Privacy Act and you will not be able to seek redress under the Privacy Act.
How we treat personal information that is also sensitive information
Sensitive information is a sub-set of personal information that is given a higher level of protection under the Australian Privacy Principles. Sensitive information means information relating to your racial or ethnic origin, political opinions, religion, trade union or other professional associations or memberships, philosophical beliefs, sexual orientation, sexual practices or sex life, criminal records, health information or biometric information.
We will not collect sensitive information about you without first obtaining your consent.
Provided you consent, your sensitive information may only be used and disclosed for purposes relating to the primary purpose for which the sensitive information was collected.
Sensitive information may also be used or disclosed if required or authorised by law.
Your rights and controlling your personal information
Accessing your personal information: You may have the ability to view or edit your personal information online. In order to help prevent your personal information from being viewed by others, you will be required to sign in with your credentials (e-mail address and password). If a password is used to help protect your accounts and personal information, it is your responsibility to keep your password confidential. Do not share this information with anyone. If you are sharing a computer with anyone you should always log out before leaving a site or service to protect access to your information from subsequent users.
Restrict and unsubscribe: To object to processing for direct marketing/unsubscribe from our email database or opt-out of communications (including marketing communications), please contact us using the details below or opt-out using the opt-out facilities provided in the communication.
Correction: If you believe that any information we hold about you is inaccurate, out of date, incomplete, irrelevant or misleading, please contact us using the details below. We will take reasonable steps to promptly correct any information found to be inaccurate, incomplete, misleading or out of date.
Complaints: If you wish to make a complaint, please contact us using the details below and provide us with full details of the complaint. We will promptly investigate your complaint and respond to you, in writing, setting out the outcome of our investigation and the steps we will take in response to your complaint. You also have the right to contact the relevant authority in the country in which you are based.
Storage and security
We are committed to ensuring that the personal information we collect is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures, to safeguard and secure personal information and protect it from misuse, interference, loss and unauthorised access, modification and disclosure. When we transmit highly confidential information (such as a credit card number or password) over the Internet, we protect it through the use of encryption, such as the Secure Socket Layer (SSL) protocol.
Cookies and web beacons
You can block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our online Services.
We may use web beacons on our online Services from time to time. Web beacons (also known as Clear GIFs) are small pieces of code placed on a web page to monitor the visitor’s behaviour and collect data about the visitor’s viewing of a web page. For example, web beacons can be used to count the users who visit a web page or to deliver a cookie to the browser of a visitor viewing that page.
We may use Google Analytics to collect and process data. To find out how Google uses data when you use third party websites or applications, please see visit this page or any other URL Google may use from time to time.
Links to other websites
For any questions or notices, please contact our Privacy Officer via this form:
Last update: 17 March 2020
256-BIT ENCRYPTION: GODADDY.COM
Our online store uses 256-bit encryption GoDaddy.com SSL certificate, in order to protect your data when you make a purchase, and manage your online account.
WHAT IS SSL?
SSL has been the de facto standard for eCommerce transaction security. SSL encrypts data, like credit cards numbers (as well as other personally identifiable information), which prevents anyone from stealing your information for malicious intent. You know that you're on an SSL protected page when the address begins with "https" and there is a padlock icon at the bottom of the page (and in the case of Mozilla Firefox in the address bar as well).
The actual encryption strength on a secure connection using a digital certificate is determined by the level of encryption supported by the user's Web browser and the Web server that the website resides on. For example, the combination of a Firefox browser and an Apache server normally enables up to 256-bit AES encryption with our SSL certificates. This means that depending on the browser and server that combine to establish the secure connection through one of our SSL certificates, the encryption strength of the secure connection may be 40, 56, 128, or 256 bit.
SSL Certificates: At the other end of the equation, and of greatest importance to eCommerce site builders, is the SSL certificate. The SSL certificate sits on a secure server and is used to encrypt the data and to identify the Web site. The SSL certificate helps to prove the site belongs to who it says it belongs to and contains information about the certificate holder, the domain that the certificate was issued to, the name of the Certificate Authority who issued the certificate, the root and the country it was issued in.