Privacy Policy

Welcome to www.pickandlock.com.au and thank you for your interest in this Privacy Policy! As the protection of your personal information is of particular concern to us, we strictly adhere to the legal requirements of Australia`s Privacy Act (“Privacy Act”) as well as the APP Principles when processing your personal information, and this privacy policy.

In the below, we inform you in detail about the scope and purpose of our processing activities as well as your rights as a data subject.

The APP Entity (Data Controller)

Pick and Lock Services with ABN: 87902006631 of 29 Nepean Hwy, Elsternwick VIC 3185, Australia (hereinafter referred to as “Pick and Lock” or “we”)

The Australian Privacy Principles

The Privacy Act requires adherence to the following Australian Privacy Principles:

  • APP 1: Open and transparent management of personal information. This ensures that App entities manage personal information in an open and transparent way. This includes having a clearly expressed and up to date privacy policy.
  • APP 2: Anonymity and pseudonymity. Requires App entities to give individuals the option of not identifying themselves, or of using a pseudonym. Limited exceptions apply.
  • APP 3: Collection of solicited personal information. Outlines when an App entity can collect personal information that is solicited. It applies higher standards to the collection of sensitive information.
  • APP 4: Dealing with unsolicited personal information. Outlines how App entities must deal with unsolicited personal information.
  • APP 5: Notification of the collection of personal information. Outlines when and in what circumstances an App entity that collects personal information must tell an individual about certain matters.
  • APP 6: Use or disclosure of personal information. Outlines the circumstances in which an App entity may use or disclose personal information that it holds.
  • APP 7: Direct marketing. An organisation may only use or disclose personal information for direct marketing purposes if certain conditions are met.
  • APP 8: Cross-border disclosure of personal information. Outlines the steps an App entity must take to protect personal information before it is disclosed overseas.
  • APP 9: Adoption, use or disclosure of government related identifiers. Outlines the limited circumstances when an organisation may adopt a government related identifier of an individual as its own identifier or use or disclose a government related identifier of an individual.
  • APP 10: Quality of personal information. An App entity must take reasonable steps to ensure the personal information it collects is accurate, up to date and complete. An entity must also take reasonable steps to ensure the personal information it uses or discloses is accurate, up to date, complete and relevant, having regard to the purpose of the use or disclosure.
  • APP 11: Security of personal information. An App entity must take reasonable steps to protect personal information it holds from misuse, interference, and loss, and from unauthorised access, modification or disclosure. An entity has obligations to destroy or de-identify personal information in certain circumstances.
  • APP 12: Access to personal information. Outlines an App entity’s obligations when an individual requests to be given access to personal information held about them by the entity. This includes a requirement to provide access unless a specific exception applies.
  • APP 13: Correction of personal information. Outlines an App entity’s obligations in relation to correcting the personal information it holds about individuals.

GENERAL INFORMATION ABOUT DATA PROTECTION

  1. a) What is personal information?

Personal data is information that can be individually attributed to you. Examples include your address, name, postal address, email address or telephone number. Information such as the number of users visiting a website is not personal information because it cannot be attributed to an individual.

  1. b) Your Rights

You have the right to:

  • to request information about your personal information processed by us;
  • to request the correction of incorrect or incomplete personal information stored by us without delay;
  • to request the erasure of your personal information stored by us, unless the processing is necessary for the for compliance with a legal obligation;
  • to request the restriction of the processing of your personal information, insofar as the accuracy is disputed;
  • to revoke your consent to the processing of your personal information;

The above rights may be limited in some circumstances, for example, if fulfilling your request would reveal Personal Data about another person, if you ask us to delete information which we are required to have by law, or if we have compelling legitimate interests to keep it. We will let you know if that is the case and will then only use your information for these purposes.

You may also be unable to continue using our services if you want us to stop processing your Personal Data. Please contact us at any time with questions and suggestions regarding data protection and to enforce your rights as a data subject.

We encourage you to get in touch if you have any concerns with how we collect or use your personal information. Lastly you also have the right to file a complaint with the competent data protection authority. The competent data protection authority in Australia is the Office of the Australian Information Commissioner (www.oaic.gov.au).

  1. c) Assertion of your rights

You yourself decide on the use of your personal information. Therefore, should you wish to exercise any of your aforementioned rights against us, you are welcome to contact us using our contact form, per mail to the address above.

Please submit a copy of an official photo ID together with your request for clear identification and assist us in specifying your request by answering questions from our staff regarding the processing of your personal information. Please also state in your request in which role (employee, applicant, supplier, customer, etc.) and in which period of time you have had a relationship with us. This will enable us to process your request in a timely manner.

  1. d) Storage of your Personal Data

We are obliged to delete personal information immediately as soon as the purpose for processing has been fulfilled. In this context, we would like to point out that statutory retention obligations and periods constitute a legitimate purpose for the processing of personal information.

In any case, data will be stored and retained by us in personal form until the termination of the business relationship or until the expiry of applicable guarantee, warranty, or limitation periods; furthermore, until the termination of any legal disputes in which the data are required as evidence; or in any case until the expiry of the third year after the last contact with a business partner. 

  1. e) Transfer of data

We do not transfer your personal information to third parties for purposes other than those listed below. If we do pass on your personal information, we make sure that:

  • you have given your express consent, or
  • the disclosure is necessary for the purpose it was collected for, or
  • there is a legal obligation for disclosure, as well as
  • it is legally permissible and necessary for the processing of contractual relationships with you.

USE OF OUR WEBSITE

  1. a) When you visit our website

When you visit our website, information is automatically sent to our website server by the browser used on your end device. This information is temporarily stored in a so-called log file. The following information is collected without your intervention and stored until it is automatically deleted:

  • IP address of the requesting computer,
  • Date and time of access,
  • name and URL of the file accessed,
  • website from which the access was made (referrer URL),
  • the browser used and, if applicable, the operating system of your computer as well as the name of your access provider.

The aforementioned data is processed by us for the following purposes:

  • Ensuring a smooth connection set-up of the website,
  • Ensuring a comfortable use of our website,
  • evaluating system security and stability, and
  • for other administrative purposes.
  1. b) When using our contact form

If you have any questions, we offer you the possibility of contacting us via a form provided on the website. In doing so, the marked information is required so that we know from whom the enquiry originates and in order to be able to answer it. Further information can be provided voluntarily.

  1. c) Cookies

Our website uses so-called cookies. These are small text files that are stored on your end device with the help of the browser. They do not cause any damage. We use cookies to make our website user-friendly. Some cookies remain stored on your end device until you delete them. They enable us to recognise your browser on your next visit. If you do not wish this, you can set up your browser so that it informs you about the setting of cookies and you only allow this in individual cases. If you deactivate cookies, the functionality of our website may be limited.

  1. d) Hosting

To provide our website, we use the services of Google, who process the below-mentioned data (access data and log files) and all data to be processed in connection with the operation of our website on our behalf.

  1. e) Google AdSense

We use Google AdSense, a web advertising service provided by Google. Google AdSense uses so-called “DoubleClick DART Cookies” and “web beacons” to collect information, through the use of which simple actions such as user traffic on our website can be recorded, collected and evaluated. The information generated by the cookie and/or web beacon may include your IP address and will be transmitted to and stored by Google on servers in the United States.

  1. f) Content

Our website may contain links to third-party websites (“external links”). These external links are subject to the liability of the respective operators. We have no influence whatsoever on the current and future design or content of the linked sites. The setting of external links does not mean that the contents are ours. Constant monitoring of external links is not possible or reasonable for us without concrete indications of legal violations. However, if we become aware of any legal violations, such external links will be deleted immediately.

  1. g) Data security

Within the website visit, we use the widespread SSL procedure (Secure Socket Layer) in connection with the highest encryption level supported by your browser. As a rule, this is 256-bit encryption. If your browser does not support 256-bit encryption, we use 128-bit v3 technology instead. You can tell whether an individual page of our website is encrypted by the closed display of the key or lock symbol in the lower status bar of your browser.

We also use appropriate technical and organisational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or against unauthorised access by third parties. Our security measures are continuously improved in line with technological developments.

ADVERTISING AND MARKETING 

Insofar as you have also given us your consent to process your data for marketing and advertising purposes, we are entitled to contact you for these purposes via the communication channels you have given your consent to.

You may give us your consent in a number of ways including by selecting a box on a form where we seek your permission to send you marketing information, or sometimes your consent is implied from your interactions or contractual relationship with us. Where your consent is implied, it is on the basis that you would have a reasonable expectation of receiving a marketing communication based on your interactions or contractual relationship with us.

Direct Marketing generally takes the form of e-mail but may also include other less traditional or emerging channels. These forms of contact will be managed by us, or by our contracted service providers. Every directly addressed marketing sent or made by us or on our behalf will include a means by which you may unsubscribe or opt out.

As a further technology, we have integrated Google Remarketing services on our website. Google Remarketing is a function of Google Ads that enables a company to display advertisements to Internet users who have previously visited our website.

The purpose of Google Remarketing is to display interest-relevant advertising. Google Remarketing enables us to display advertisements via the Google advertising network or to have them displayed on other Internet pages that are tailored to the individual needs and interests of Internet users. Privacy Policy

You have the option to object to interest-based advertising by Google. To do this, the data subject must call up the link www.google.com/settings/ads from any of the internet browsers he or she uses and make the desired settings there.

MISCELLANEOUS

  1. a) Automated decision-making

Automated decision-making including profiling pursuant does not take place.

  1. b) Processing of Special Category and Sensitive Personal Data

We do not routinely process special category or sensitive personal information, if such becomes necessary throughout the provision of our services, we will obtain separate consent.

  1. c) Personal data of Children

Our services are not targeted to children under the age of 18. If you become aware that a child has provided personal information to us, please contact us immediately. If the processing of a child’s data becomes necessary, we will obtain parental consent.

  1. d) Withdrawing your consent

You may withdraw your consent and request us to stop using and/or disclosing your Personal Data for any or all of the Purposes by submitting your request to us in writing. Should you withdraw your consent to the collection, use or disclosure of your Personal Data, it may impact our ability to proceed with your transactions, agreements, or interactions with us. Prior to you exercising your choice to withdraw your consent, we will inform you of the consequences of the withdrawal of your consent. Please note that your withdrawal of consent will not prevent us from exercising our legal rights (including any remedies) or undertaking any steps as we may be entitled to at law.

  1. e) Obligation to provide Personal Data

You are not obligated to provide personal information to us. However, data is necessary for the conclusion or fulfillment of the contract you have entered into with us. If you do not provide us with this data, we will usually have to refuse to conclude the contract or will no longer be able to perform an existing contract.

CLOSING

Can we make changes to this Privacy Policy?

We reserve the right to update and amend all or parts of this Privacy Policy, at any time, to the fullest extent permitted under applicable law. The version published on the Site is the version actually in force.

As an individual whose personal information is processed as described in this Privacy Policy, you have a number of rights which are summarized above. Please note that exercising these rights is subject to certain requirements and conditions as set forth in applicable law.

Questions, suggestions, or comments

If you have any questions, suggestions, or comments on the subject of data protection, please do not hesitate to contact us. This Privacy Policy was last updated on Tuesday, 08 November 2022