In this policy, “us”, “we”, or “our” means Lulu and Stone, operators of this website.
We are bound by the National Privacy Principles contained in the Commonwealth Privacy Act 1988 (subject to any exemptions that apply to us under that Act).
1. Information we collect
The personal information we collect falls into four categories: contact details, click trails and activity history.
Contact details are collected as supplied by you from time to time. We do not personally store usable credit card information.
Click trails record the paths taken by visitors through the website. This information is generally recorded against IP address, and may be possible to correlate by computer.
Activity History consists of orders, enquiries or offline contact you have with us such as phone calls.
2. How we collect it
Contact details are collected when supplied by you either via the website or direct to us by other means. Click trails are recorded by our servers as each request reaches the website. This includes but is not limited to:
- The type of browser you are using
- The date and time of your visit
- Your IP address
- The addresses of pages accessed
Click trails can be correlated over time by the use of ‘cookies’ as outlined in section 6. In most cases click trail data is not directly individually identifiable.
Activity history is recorded whenever you undertake an activity such as submit an enquiry or make a comment.
3. Why we collect it and how we use it
We collect your personal contact details and activity history:
- To respond to requests or queries you raise
- To confirm your identity
- To fulfil orders made by you
- To keep you up to date with news, special offers, and other marketing information you have opted-in to receive.
We collect click trail data:
- To measure and monitor the performance of our website
- To estimate interest in our products and services
- To refine and update our website’s content
4. How we disclose it
We may disclose your personal information to third parties, and you consent to us disclosing your personal information to third parties, under the following circumstances:
- As part of a sale of all or part of our business
- When explicitly authorised to do so by yourself at the time you supply the information
- As required or authorised by any applicable law
- As part of any investigation by us into you or your activity on our website (including to your Internet Service Provider or network administrator)
- To lessen or prevent a serious threat to a person’s health or safety
Cookies are electronic tokens containing small amounts of information that are passed between a web browser and server. They are used to maintain session state between pages or to retain information between visits if you return to the website at a later time.
6. Opting in and out
You may opt out from the correlation of passive activity data by turning off cookies in your browser. Please note however that disabling cookies may result in a reduction of available functionality on our site.
When you supply us with your email address you may be asked to opt in to receive marketing information by e-mail.
You will be given the opportunity to opt out from receiving further communications from us in accordance with this policy each time we send you information for which you have opted in. This comes in the form of an ‘unsubscribe’ link, generally in the footer of each email.
If you receive any communication purporting to be connected with us or our products or services that you believe has been sent to you other than in accordance with this policy, or in breach of any law, please contact us immediately as outlined in section 9.
7. Information management and security
We will take all reasonable steps to ensure that the personal information we hold is not lost, misused, or inadvertently provided to unauthorised third parties, including by means of firewalls, password locking, truncation of credit card data, encryption of data in transit, and secured servers.
You acknowledge that the security of communications sent by electronic means cannot be guaranteed. You provide information to us via the internet at your own risk. We cannot accept responsibility for misuse or loss of, or unauthorised access to, your personal information where the security of information is not wholly within our control.
You must ensure the security and confidentiality of any username and/or password used by yourself to access this website. You agree that you will be held responsible for all activities which occur under your username and password (including but not limited to publication of illegal or defamatory material or any other unlawful activity, or unauthorised charging of your credit card).
You agree that we are not responsible for the privacy or security practices of any third party and that the collection and use of your information by third parties may be subject to separate privacy and security policies.
If you suspect any misuse or loss of, or unauthorised access to, your personal information, please contact us immediately as outlined in section 9.
8. Gaining access to your information
You have the right (excluding exceptions outlined in the Privacy Act) to seek access to and update or correct the personal information we hold about you.
If you would like to seek access to personal information we hold about you, you can contact us as outlined in section 9.
9. How to contact us
If you have any questions or complaints about how we collect, use, disclose, manage or store your personal information, please contact us at firstname.lastname@example.org