1. General Statement
② Personal information is defined in the Privacy Act 1988 (Cth) and means information or an opinion about an individual whose identity is apparent or can be reasonably ascertained from that information or opinion.
2. Collection of Personal information
① Nanummy only collects personal information for the purposes of conducting our business as an online retailer of goods and services. The personal information we collect from you will include information you give us when you:
a) register or subscribe to our Website;
b) complete a transaction with us; and
c) contact us.
② The personal information that we collect on individuals may include, but is not limited to:
a) your name;
b) your contact details;
c) your payment details; and
d) other personal information that we collect in the course of a transaction.
③ We may collect personal information from individuals who are not customers of our business but whose personal information is given to us by those individuals via our Website or in the course of a transaction.
④ Where reasonably practicable, we attempt to collect information directly from individuals. When we collect information, we will generally explain to the individual why we are collecting it, who we give it to and how we will use or disclose it or, alternatively, those matters will be obvious from the circumstances.
⑤ If we collect information about an individual from someone else, we will take reasonable steps to ensure that the individual is made aware of the matters listed in clause 2.4.
⑥ We will collect personal information from you by lawful and fair means and not in an unreasonably intrusive way.
⑦ When you visit our Website, for the purpose of managing our Website and improving our business, we may also collect the following information:
a) your computer's operating system;
b) your computer's browser type and capabilities;
c) your computer's Internet Protocol (IP) address and geolocation;
d) web pages visited, including how you were referred to each web page; and
e) web page usage statistics, including the time spent on each web page.
⑧ We will not identify users or their browsing activities, except where required by law or in accordance with our Terms and Conditions of Use and Sale.
3. Using and disclosing your personal information
① We will generally use or disclose your personal information only for the primary purpose for which it was collected; or for a related secondary purpose where you would reasonably expect us to use or disclose the personal information for that secondary purpose. We may otherwise use and disclose your personal information if you have given us consent for the use or disclosure or it is required or authorised by law.
② Generally, we use and disclose your personal information for the purpose of providing you with the goods or services that you have requested, or otherwise to enable us to carry out our business as an online retailer of goods and services.
③ If those purposes for which we have collected the information involve providing personal information about an individual to any third party, we will take appropriate and reasonable steps to ensure any personal information is protected.
④ We will generally only use personal information for marketing if you have given express or implied consent or it is impracticable to seek consent before this use and you are given the opportunity to opt out of receiving any further direct marketing communications. Our electronic marketing activities will comply with the requirements of the Spam Act 2003 (Cth).
⑤ We may also provide your information to third parties that provide services to us, including third parties that provide our payment gateway, marketing, logistics and technology support services. This may include providing your information to third parties that are located outside of Australia. Where your personal information is transferred outside Australia, we will do so in accordance with National Privacy Principle 9.
① We take steps to protect the personal information we hold against loss, unauthorised access, use, modification or disclosure and against other misuse. When no longer required, personal information is destroyed in a secure manner or deleted.
② To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed.
③ If you provide us with your credit card information, the information is encrypted using secure socket layer technology (SSL) and stored with a AES-256 encryption. Although no method of transmission over the Internet or electronic storage is 100% secure, we follow all PCI-DSS requirements and implement additional generally accepted industry standards.
5. Access to your personal information
① Under the Privacy Act 1988 (Cth), you have certain rights to access the personal information we collect and hold about you.
② Generally, we will allow an individual access to the personal information we hold about them within a reasonable time after it is requested. When requesting such access please identify the precise type/s of information requested.
You may make a request by sending us an email using our Contact Nanummy or by writing to us at:
Office of the Chief Information Officer Nanummy, unit 11, 1 Talavera Road, Macquarie Park, Australia 2113.
③ Additional information regarding privacy may be obtained from the Office of the Australian Information Commissioner.