Updated 16 June 2021
We will update this policy on our website if we change the way we handle personal information.
Who we are
Information we collect
The types of personal information that we collect and process about you will depend on our relationship with you. It could include some or all of the following:
- General information about you: your name, title, gender, date of birth, contact details, and your answer to a security question (for example, your favourite colour).
- Contact details: such as phone number, address, email address, and social media handle.
- Payment details: such as credit or debit card number and expiry date.
- Our interactions with you: such as any feedback, complaints, compliments you have made, records of any correspondence and interactions with us and our staff (including in person, online, by telephone or email and via social media).
- Website and mobile apps: if you use our website, your geo-location, IP address, mobile telephone number or ID, and details of how you use the website or app and any third party sites that you have accessed from them.
Sensitive personal information
Under privacy laws, certain categories of personal information are considered particularly sensitive and therefore as needing additional protection. These categories include information about health, racial or ethnic origin, political opinions, religious beliefs, trade union membership or your sexual orientation. Sensitive information may also include genetic and biometric data. Information concerning criminal convictions and offences is also viewed as sensitive, for example, under European data protection law.
We may collect and handle your sensitive personal information, for example, when you request special access assistance or if you tell us you have certain needs.
We will ask you for your consent to handle this type of personal information, to the extent required under applicable laws, for example under the Australian Privacy Act or the European General Data Protection Regulation.
How we collect personal information
How we collect personal information about you will depend on our relationship or interactions with you.
Directly from you
We mainly collect information directly from you, for example, when you use our website or social media, you call or write to us or we interact with you in person, such as when you use our products and services or participate in workshops.
There may be occasions when we collect information about you from someone else, such as:
- When someone else books or purchases goods or services on your behalf.
- Our service providers, including providers of data analysis services.
- Third parties that provide us with marketing leads.
- Businesses for whom we provide marketing and data analysis services.
- Providers of third party websites, apps and social media platforms.
How we use your personal information
We may use your personal information for the following purposes:
- For marketing purposes: to provide you with updates and offers, if you have chosen to receive these; to operate our promotions and events; to distribute our newsletters and other communications. We may also use your information for marketing ISMOTION and our selected business partners’ products and services to you by post, email, SMS, phone and, where required by law, we will ask for your consent at the time we collect your data to conduct any of these types of marketing. We will provide an option to unsubscribe or opt-out of further communication on any electronic marketing communication sent to you.
- To provide customer support: to handle queries, complaints and claims.
- To detect and prevent fraudulent activity throughout our business operations
- To conduct market, consumer and other research: to improve our products, services and marketing activities, including our websites, and to generate consumer insights that help us to market more efficiently and to be more relevant to you.
- To ensure website content is relevant: including to ensure that content from our websites is presented in the most effective manner for you and for your device, which may include passing your data to business partners, suppliers and/or service providers.
How we hold information and keep it secure
We hold your personal information in electronic files. We use third party information system providers who may store or have access to your personal information.
When you book services a secure server is used. Secure Sockets Layer (SSL) encrypts the information you send through this website.
No data transmission over the Internet or website can be guaranteed to be secure from intrusion. However, we maintain physical, electronic and procedural safeguards to protect your personal information in accordance with data protection legislative requirements and industry standards.
If we have given you (or you have chosen) a password which enables you to access certain parts of our websites, you are responsible for keeping this password confidential and for complying with any other security procedures notified to you. We require that you do not disclose your passwords to anyone else.
Cookies are small pieces of data stored on the web browser on your computer. This website and associated websites may store cookies on your web browser.
Disclosure of personal information
We may disclose your personal information to third parties to:
- Comply with our legal obligations.
- Facilitate goods and services that you have bought through us or that we provide to you.
- Investigate and protect ourselves and third parties against any activity that we reasonably suspect to be fraudulent.
- Respond to complaints and claims.
- Billing and payment processing, including detecting and preventing fraudulent or suspicious activity.
- Market research and analysis.
- Marketing, printing and distribution (including mailing and email) services.
- Information technology services such as data storage, communication networks, software and system development, maintenance and support, and information processing, analysis and reporting.
- Investigating and responding to incidents.
- Law enforcement agencies, regulatory authorities and governments around the world and their service providers in connection with their investigations or other functions.
Disclosure of information across borders
Our service providers
We may also disclose your personal information to data processors (including processors that assist us in preventing and detecting fraud) and customer service providers. The countries in which these third parties are located include Ireland and the United States.
Access to, and correction of, information about you
In some countries you have the right to access, or correct, the personal information that we hold about you. If you would like to request access to, or correction of, your personal information that we hold, please contact us.
To the extent required by applicable law, we will provide you with access to the information we hold about you, including for the purpose of correcting or updating that information, within a reasonable timeframe (or any time frame stipulated by the laws that apply to your request). If we are permitted to withhold some of your personal information and we choose to do so, we will advise you when responding to your request. If we refuse to provide you with access to, or to amend, the information, to the extent required we will notify you of our reasons for the refusal and how you may complain about the refusal.
Where permitted by law, we may recover from you our reasonable costs of supplying you with access to this information. However, we will not charge you for the making of the request or to correct or update your personal information.
Privacy complaints and further information
If you have a concern about your privacy or you have any query on how your personal information is collected or used please contact us. We will respond to your query or complaint within a reasonable time.
If you are not satisfied with our response, you may also contact the body responsible for administering the privacy laws in your country. If you are in Australia, you can contact the Office of the Australian Information Commissioner.
Our retention periods for personal data are based on business needs and legal requirements. We retain personal data for as long as is necessary for the processing purpose(s) for which the information was collected, and any other permissible, related purpose. For example, we may retain certain transaction details and correspondence until the time limit for claims arising from the transaction has expired, or to comply with regulatory requirements regarding the retention of such data. When personal data is no longer needed, we either securely destroy it, or irreversibly anonymise the data (and we may further retain and use the anonymised information).
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.