The Commonwealth Privacy Act 1988, the General Data Protection Regulation (GDPR), and general law place stringent requirements on companies to treat any information provided by the general public as confidential. Women Who Sail Australia recognises this need and takes very seriously its responsibility to protect and maintain the security, privacy and accuracy of personal information.
Women Who Sail Australia collects only that information which is necessary for the conduct of our business relationship with you. Conduct of that business relationship includes not only the supply of magazines and electronic media, other related products and services, but also the management of business transactions entered into with us, administration of any accounts you have with us, informing you of current and future magazines, other related products and services which may be relevant to you, and your participation in competitions or other similar activities organised by us. Some of the information we collect, for example on your use of our websites, may be used to improve our services to you and monitor performance. The information we collect is dependent on the purpose for which it is collected. Generally, for supply of magazines and other related products or services it will include, name, delivery address, billing address, contact details, details relevant to effect payment e.g. bank account details, credit card details. If you have a credit account with us we may also collect personal details, bank account details, and financial details. We collect the information we require in the following ways;
– from you directly when you provide information either over the phone, in a form or submit details through our websites;
– from publicly available sources
– from third parties such as your representative/s, credit reporting agencies, third parties related to Women Who Sail Australia.
– from your use of our websites. The information collected from your use of our websites may or may not identify you. It may include the type of internet browser used by you, operating system used by you, address of referring site, your IP address and clickstream information. Cookies are pieces of information that our website sends to your computer while you are browsing our sites. These pieces of information allow your browser to utilise some of the features of our sites. We use both session ID cookies and persistent cookies. Most web browsers are set by default to accept cookies. If you reject cookies you will be unable to take advantage of some of the features of our websites.
Use and Disclosure
We use your information to carry out our business with you, to facilitate our financial dealings with you, for promotion and direct marketing of our magazines and other related products and services to you, internal product/service analysis, and to comply with applicable laws and regulations. In relation to any promotional or direct marketing messages sent to you by us via email, in accordance with the Spam Act 2003, these messages must;
– be sent with your consent. (You may give express consent, or consent may be inferred from your conduct and existing business or other relationships),
– contain accurate information about the person or organisation that authorised the sending of the message, and
– contain a functional ‘unsubscribe’ facility to allow you to opt out from receiving messages from us in the future.
We disclose information to the following organisations or individuals when and to the extent necessary to conduct our business and comply with applicable laws and regulations;
– Government and Regulatory authorities, as required or authorised by law,
– The company’s professional advisors (including legal and accounting firms, auditors, consultants and other advisors)
– Third party service providers we may engage to provide administration, technology, auditing, mailing, printing or transport services. We take reasonable steps to ensure that such third-party service providers exercise the same standard of care as us in handling your personal information.
Security and Maintenance
We have well documented and understood processes for the security of all data whether in physical or electronic form. Security of information is a high priority to us. Access to, and manipulation of, information, both physical and electronic, is controlled using systems (electronic and manual) which are current and in line with industry standards. Our systems are regularly reviewed to ensure that the highest standards possible are maintained. Only those employees performing services or tasks relevant to your business with us have access to your information. This includes those employees involved in direct marketing. Information collected via the website is stored securely by authorised third parties and will only be accessed by authorised personnel. We take all reasonable steps to ensure that your information is de-identified or destroyed when it is no longer required by us. As a general rule we are legally required to keep information for seven years, however this may vary depending on specific legal requirements or our business needs. We take all reasonable steps to ensure that your information is current and accurate. To assist us in this regard we request that you notify us of any changes to the information we hold on you.
GDPR Compliant – May 2018
Newsletter: Names and Email address only.
Process: Email addresses and names are collected and stored on a personal, home computer by the Public Officer, Jackie Parry.
The computer where the data is stored (1) has full virus protection.
Each email requesting receipt of the newsletter is kept in a personal file and not shared with anyone, including any third-party mailing companies (except for the organisations mentioned above, e.g. government, accountant, etc.) This is current for May 2018, if this should change we will advise all subscribers immediately.
The data is kept until you contact the Public Officer to ask for your information to be removed from the list. This will be done immediately the notification is received and read.
Merchandise: Email/phone and home addresses details
Details are collected via a plugin ECWID who are GDPR compliant (23rd May 2018)
Your details are transferred to a spreadsheet to manage the process.
Once your order is fulfilled (mailed) your details are deleted from the online store. We will keep your details on our spreadsheet for two months, to ensure you have received the order and are satisfied. After two months, your details will be deleted from the spreadsheet and we will hold no personal information on you whatsoever, unless you place another order, to which the same process applies.
In case of a refund, if you provide your bank details to us, we will process the refund and delete the information immediately (from email) after the process is complete. The Public Officer is the only person within the company to view the details.
Access and Correction
You can access and correct your personal details held by us by contacting: