1. Respecting your privacy
Nut Grocer is committed to compliance with privacy laws which apply to its businesses and which set out standards for the management of personal information. This policy outlines our personal information management practices. Specifically:
- The kinds of personal information we collect and hold;
- How we collect and hold it;
- The purposes for which we collect, hold, use and disclose it;
- Your right to access and seek correction of it;
- How you may complain about privacy matters; and
- Our sharing of your personal information overseas.
2. What kinds of personal information do we collect and hold?
The personal information we collect and hold is what is reasonably necessary for our business functions and activities. When we collect and hold personal information, it is of the following kinds:
- Your personal details such as your name, addresses, email addresses, telephone numbers; and
- What, how and when you buy from us or have expressed an interest in buying from us; and
- Your stated or likely preferences, for example whether you may be interested in particular products or promotions.
3. How do we collect and hold personal information?
Collection of personal information: When we collect personal information about you, we do so by making a record of it.
We do this when:
- You register with us, for example to create an account or to send you information;
- You communicate with us online;
- You take part in our promotions, competitions, testimonials, surveys and focus groups;
- You deal with us in other ways involving a need for personal information to be provided such as when you contact us or bring a claim against us.
We may also collect personal information about you by accessing data from other sources and then analysing that data together with the information we already hold about you in order to learn more about your likely preferences and interests. When you visit our websites, social media pages or click on our advertisements on the online media of other companies, we may collect information about you using technology which is not apparent to you, for example “cookies”.
Most of the personal information we collect and hold about you is from your direct dealings with us. We may sometimes collect your personal information other than from you directly. For example from other suppliers who, in common with us, have a relationship with you.
Personal information we hold is generally stored in computer systems. These may be operated by us or by our service providers. In all cases, we have rigorous information security requirements aimed at eliminating risks of unauthorised access to, and loss, misuse or wrongful alteration of, personal information.
4. Why do we collect, hold, use and disclose personal information?
When we collect, hold and use your personal information, we do so primarily to sell and promote goods and services to you and to improve on the range of our offerings. For example:
- To learn of your likely preferences so that we may promote goods and services to you in a way which may be of most interest to you. This includes the products and services of our suppliers and other trusted partners who offer products and services that may be of interest to you; and
- To assist in investigating your complaints and enquiries.
- We disclose personal information we collect for purposes which are incidental to the sale and promotion of our goods and services to you. For example, we may disclose your personal information within our group, to service providers who assist us in our day-to-day business operations and as part of buying or selling businesses.
We may collect, hold, use and disclose your personal information for other purposes which are within reasonable expectations or where permitted by law. You may opt out of our direct marketing to you.
We may anonymise and aggregate your personal information. We may do this for use and disclosure of the anonymous data to determine preferences and shopping patterns. We share this anonymised data with our trusted partners to assist them in marketing products and services to you that are likely to be relevant to your interests and preferences.
5. How can you enquire about, access and correct your personal information?
Access to personal information: We will provide you with access to any of your personal information we hold (except in limited circumstances recognised by law). If you wish to access your personal information or have an enquiry about privacy, please contact us at firstname.lastname@example.org or by calling us on (03) 9005 0056.
Before we provide you with access to your personal information we may require some proof of identity. We may charge a reasonable fee for giving access to your personal information if your request requires substantial effort on our part.
Correction of personal information: If you need to correct your personal information, please contact us at one of the above contact points.
6. How do we use ‘cookies’?
A cookie is a small file downloaded on to your device when you interact with online content (such as websites, social media sites, and mobile apps). The content may be our own, or may be the content of others in which we have an interest, such as our banner advertisements. Cookies allow a website to recognise a user’s computer, and are commonly used to tailor advertising by identifying users that share a particular interest or attribute so that they can be served more relevant advertising. Cookies may be set by us or by others under an arrangement with us, such as companies whose business it is to analyse information. We may also access information from third party cookies.
The information that we collect through cookies may not identify, or relate, to a particular individual. Generally, the information collected through cookies relates to a device used to access online content, such as an IP address or location data about the device. Cookies may also collect information about the behaviours of the user of the device, such as the websites visited by the user and their activity on the website.
We allow session cookies to be used when you visit our online content, including our websites. Session cookies enable your device to move from page to page without having to log in repeatedly. The placement of this type of cookie generally improves your browsing experience.
We allow persistent (permanent) cookies to be used to better inform how the content your device visits may be presented to you. Persistent cookies can store your preferences for a particular site, so they will be remembered when the site is visited again. We also allow persistent and other kinds of permanent cookies to be set and we and others access information from third party cookies in order to assist in compiling and analysing the types of online content you visit and your interaction with that content.
Overall, the collection of this information assists us to assess what promotions to make to you, when and how. This information enables us, and third parties, to send you tailored advertising about products and services that may interest you. You may receive tailored advertising on the websites you visit in the form of banner advertising, or on the social media platforms you use. The collection of this information also assists in measuring the effectiveness of promotions run by us or by third parties.
7. How can you complain about our management of personal information?
If you wish to complain about a breach of the privacy rules that bind us, you may contact us at one of the above contact points. We may ask you to put your complaint in writing and to provide details about it. We may discuss your complaint with our personnel and our service providers and others as appropriate.
We will investigate the matter and attempt to resolve it in a timely way. We will inform you in writing about the outcome of the investigation. If we do not resolve your complaint to your satisfaction and no other complaint resolution procedures are agreed or required by law, we will inform you that your complaint may be referred to the Privacy Commissioner for further investigation and will provide you with the Commissioner’s contact details.
8. Our sharing of your personal information overseas
It is our policy to require all of our overseas sharing of personal information to be done in a way which requires observance of strict privacy and security standards, both during transit and at the overseas destination. We may allow your personal information to be shared with those who are in countries other than your own location. We do this:
- Where we have made a business decision to store our data with a trusted service provider who is in the business of providing data storage and processing services. Examples are those who store and process our email and mobile application data. These services commonly involve diverse geographic locations which change from time to time for reasons which include data protection and processing efficiency. Where these services are used by us, it is not practical for us to notify you of which country your personal information may be located in;
- For disclosures between our group companies. Our main business locations are in Australia and New Zealand, but some of our group companies may be based in other countries from time to time.
- When our business which collected your personal information is in a different country to your location;
- When our supply to you necessarily involves overseas disclosures. For example a reinsurer of some of our insurance offerings uses computer systems in Switzerland and the United States to store insurance-related personal information;
- Where you are involved with public liability issues concerning a product we may disclose your personal information to any overseas supplier of such a product in the course of managing those issues.
10. More information
More information about privacy law and privacy principles is available from the Privacy Commissioner. The Privacy Commissioner may be contacted at www.oaic.gov.au or email@example.com.
Last update of this policy: October 2017