31. October 2020
Dita’s Witches Apothecary, operates the website: www.ditaswitchesapothecary.com and provide natural and organic skin care.
This Policy is design to help you understand what kind of information we collect in connection with our services, the purposes for which we use the information and how we may share this information, In the course of providing you with our services we will collect and process information that is commonly known as Personal Data.
We have adopted the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth) / Federal Trade Commission’s guidelines and Safe Harbour Privacy Principles for EU to USA (the “Privacy Laws) The Privacy Laws govern the way in which we collect, use, disclose, store, secure and dispose of your Personal Data.
For the purposes of meeting the Privacy Laws territorial scope requirements, NSW Australia is identified as the named territory where the processing of personal data takes place.
You can learn more about your privacy rights at The Office of the Australian Information Commissioner at www.aoic.gov.au/government website.
4/88 Oaks Avenue
Dee Why, NSW 2099
Telephone: 0420 549 751
Why do we collect Personal Data?
Personal Data is obtained in many ways including interviews, online calls, text message, online chat, correspondence, by telephone, by email, via our website, from your website, from media and publications, from other publicly available sources, from cookies and from third parties, including but not limited to social media platforms scubas Facebook, Instagram, Twitter and LinkedIn. We don’t guarantee website links or policy of authorised third parties.
We collect your Personal Data for the primary purpose of providing our services to you, providing information to our clients and marketing. We may also use your Personal Data for secondary purposes closely related to the primary purpose, in circumstances where you would reasonably expect such use or disclosure. You may unsubscribe from our mailing / marketing lists at any time by contacting us in writing or email as below.
When we collect Personal Data we will, where appropriate and where possible, explain to you why we are collecting the information and how we plan to use it. Please ask if you do not understand.
Disclosure of Personal Information
We may release personal data where we believe that it is appropriate in a number of circumstances including following:
Third parties where you consent to the use or disclosure
where required or authorised by law,
to enforce or apply our agreements with you
to protect the rights, property or safety of us, our clients or others, and
with your consent following specify notice or request from us.
Security of Personal Information
Your Personal Data is stored in a manner that reasonable protects it from misses and loss and from unauthorised access, modification or disclosure.
When your Personal Data is no longer needed fro the purpose for which it was obtained, we will take reasonable steps to destroy or permanently de-identify your personal Data. However, most of the personal Data is or will be stored in client files which will be kept by us for duration period.
Access to Your Personal Information:
You may request a copy of all data that we store about you for $20 administration fee at firstname.lastname@example.org
In order to protect your Personal Data we may require identification fro you before releasing the requested information. Repeated, unfounded or excessive requests may be challenges by us.
There are some circumstances that may limit the information that we can provide to you in a request, for example, public interest, law enforcement, legal and or health related matters.
Please also bear in mind that we rely on third parties for some of your information in the loo of data. It may take us the full calendar month permitted to provide a full response to your request.
Your rights is such a request include:
Right to access
Right to rectification of errors
Right to deletion (may be limited)
Right to object to processing
Right to restrict processing
Right to withdraw consent
Right to object to marketing
Right to complain to relevant data protection authority
Maintaining the Quality of Your Personal Information
It is important to us that your Personal Data is up to date. We will talk reasonable steps to make sure that your Personal Data is accurate, complete and up to date. If you find that the information we have is not up to date or is inaccurate, pleas advise us as soon as practicable so we can update our records and ensure we can continue to provide quality services to you.
If you have received Services / Products with us we will store your data for 5 years from your last appointment / purchase with us for any potential claims.
Third party Processors
Where reasonable and practicable to do s, we will collect your Personal Data only from you. However, in some circumstances we may be provided with information by third parties. We may use third party suppliers for management of specify services e.g. payment processing, and they may store some of your Personal Data to provide such service to you. In such a case we will take reasonable steps to ensure that you are made aware of the information provided to us by the third party or that you can access your account to check this information directly yourself.
Communication with us via email are stored in our account with GMAIL. Any telephone or online calls may be recorded with your permission and stored in your clients records as a digital file.
Payments for our services / products can use third party payment facilitators Stripe, Xero, PayPal. All are PCI DSS v 3.2.1 compliant to ensure your financial data is secure and we can never access your full payment details.
Marketing from us may include:
Social Media is use by us. If you follow, like and interact with our social media accounts then your comments may be public depending on your personal privacy setting within that social media platform. Please check this if you are concerned about your privacy on any social media platform. Please let us know if you do not wish to be tagged in any of our post.
We may conduct surveys using third parties to collect information in the survey to get an idea of the market. You do not have to participate, and you c an house to complete your name and email address or leave it anomymized
Our Mailing List ensures that we only send emails to those who want to hear from us. Our emails have content related to our services / products Yo can unsubscribe at any time by clicking on the unsubscribe button in the email sent.
Links to other websites
We do not provide any personally identifiable customer information to these sites.
International Data Transfers
Our services are not available internationally. WE control and manage Personal Data in NSW, Australia. We may transfer dates outside of Australia to our suppliers to provide the service to you. We ensure that their service meets the minimum requirement set out in the Privacy Laws. You can request to learn more about what data and which services may have access to your Personal Data.