Privacy Policy

Our Privacy Commitment

1. Miriam Van Doorn and MI Retreats ABN 60 919 325 994 is committed to managing your personal information openly and transparently and to keeping your personal information safe. We will take all necessary measures to fulfil this commitment, including to:

(a) Comply with the Australian Privacy Principles (APPs);

(b) Ensure that we manage your personal information openly and transparently;

(c) Only collect personal information from you that we need in order to fulfil your request and offer you the best possible service and customer experience;

(d) Tell you how we might use your personal information;

(e) Let you know if we need to disclose your personal information to anyone else (including anyone overseas) and if so, in what circumstances this might occur;

(f) Keep your personal information secure;

(g) respond promptly and appropriately to any incident where your personal information may be compromised, including where your personal information is lost, or subject to unauthorized access, modification, use or disclosure or other misuse;

(h) Promptly respond to any request by you not to receive direct marketing material from us;

(i) make sure your personal information is kept accurate and up to date and to properly dispose of any personal information which is no longer required by us; and

(j) Ensure that, where appropriate, you can access and correct your personal information.

Use of Software and Website

To improve your experience on our site, we may use ‘cookies’. Cookies are an industry standard and most major web sites use them. A cookie is a small text file that our site may place on your computer as a tool to remember your preferences. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website.

Our website may contain links to other websites. Please be aware that we are not responsible for the privacy practices of such other sites. When you go to other websites from here, we advise you to be aware and read their privacy policy.

Our website uses Google Analytics, a service which transmits website traffic data to Google servers in the United States. Google Analytics does not identify individual users or associate your IP address with any other data held by Google. We use reports provided by Google Analytics to help us understand website traffic and webpage usage.

By using this website, you consent to the processing of data about you by Google in the manner described in Google’s Privacy Policy- external site and for the purposes set out above. You can opt out of Google Analytics if you disable or refuse the cookie, disable JavaScript, or use the opt-out service provided by Google- external site.

About this Policy

2. This policy is intended to explain clearly and in plain language some of the key processes and procedures that we have implemented to manage your personal information, to protect your privacy and to comply with the Privacy Act 1988 (Act) and the APPs.

3. References to “our”, “us” and “we” in this policy are references to Miriam Van Doorn and its related entities.

4. This policy gives a broad overview of our policies in relation to privacy and the handling of your personal information but if you require further information, you are welcome to contact me or to read any of the privacy statements or notices that will be issued to you as and when personal information is collected.

5. You must read this privacy policy before providing us with any personal information. By providing us with your personal information, you are confirming your agreement to the policies and procedures described in this privacy policy.

What sorts of personal information do I/we collect?

6. We will only collect from you information that is necessary and relevant to our relationship with you, including to enable us to fulfil your request and provide to you the best possible customer experience.

7. Depending on the exact nature of our relationship with you and the type of services you request from us, we may request that you provide some or all of the following information:

a) Information that we may require to initially identify you, including your name;

b) Information that we can use to contact you, including your email address, telephone number, mobile number, fax number and your address; and

c) Information for processing payment, being your credit card details.

8. The information we require from you will depend on the specific services that we are providing to you. We will only collect personal information from you that we reasonably require in order to satisfactorily perform the services that you require from us.

9. We may also use your personal information for other reasons, including:

(a) To contact you in relation to an event, special offer or service that you might be interested in;

(b) Preventing fraud and other criminal activities;

(c) to assist me to run my business and to improve my products, services and performance, including staff training, accounting, risk management, record keeping, archiving, systems development, developing new products and services and undertaking planning, research and statistical analysis; and

(d) To comply with our legal obligations.

10. There is no obligation for you to provide us with any of your personal information but if you choose not to provide us with your personal information, we may not be able to provide the information or services that you require.

How do we collect your personal information?

11. The means by which we collect your personal information will depend on the nature of the services that we are providing to you.

12. We may collect your personal information:

(a) Directly from you, either in person, via email or over the phone;

(b) When you complete a form on our website to receive newsletters from us; or

(c) From publicly available sources, for example, the electoral role, the telephone directory or from third party websites.

13. We will always collect your personal information directly from you unless it is impracticable to do so.

Collecting and disclosing personal information about others

14. Wherever possible, we will collect personal information directly from the relevant individual to whom that information relates.

15. You represent and warrant to us that where you provide personal information to us about another person:

(a) You are authorised to provide that information to us;

(b) You have obtained the express consent of the individual to disclose their personal information to us for the use of that personal information by us, including for the purposes outlined in this policy;

(c) you have complied with the Privacy Act, including the APPs in collecting that personal information, including by making all relevant notifications required under APP 5 and specific to our use of the personal information; and

(d) You have informed that person about the contents of this privacy policy including whom we are, how we use and disclose personal information, and that they can gain access to, and correct, that information.

Unsolicited personal information

16. From time to time we may receive personal information about you that we have not requested or taken steps to come to know. In these circumstances, we will only hold on to such information as permitted by the Act. Any information that has not been requested but is subsequently retained by us will be subject to the procedures and requirements set out in this privacy policy.

How do we use or disclose your personal information?

17. We may use and disclose your personal information for the purposes for which it was collected or for a related purpose such as:

(a) To consider your request for a service;

(b) To enable us to provide services to you;

(c) To carry out, or respond to, your requests;

(d) to our third party service providers, including to assist us in providing, and improving, our services to you, and to analyse market trends and better understand your needs or to develop, improve and market our products and services to you;

(e) For regulatory reporting and compliance with our legal obligations;

(f) To relevant third parties to undertake fraud checks;

(g) To various regulatory bodies and law enforcement officials and agencies to protect against fraud and for related security purposes;

(h) To perform administrative and operational tasks (including risk management, systems development and testing, staff training and collecting debts);

(i) To use in direct marketing of promotions, products and services that we, or our third party service providers, think may be of interest to you;

(j) To seek your feedback in relation to particular services, customer satisfaction and our relationship with you and to manage any customer complaints;

(k) To monitor or improve the quality and standard of the services that we provide to you;

(l) To consider any concerns or complaints you may raise against us;

(m) To our agents, successors and/or assigns;

(n) To notify you of offers that may be of interest to you; and

(o) To better understand your preferences.

18. By agreeing to accept the terms of this privacy policy or by providing your personal information to us, or both, you are taken to have consented to the use and disclosure of your personal information for the above purposes.

19. At the time that we collect your personal information, we will make it clear to you why we are collecting your information, including through this privacy policy where appropriate. We will only use your personal information in accordance with, and as permitted by, the Act.

20. Other than as outlined in this privacy policy or in any notice provided to you at the time of collecting your personal information, we will not disclose your personal information without your consent unless disclosure is permitted by the Act.

Do we share your personal information with others?

21. We may provide your personal information to third parties as outlined in this privacy policy.

22. We deal with third party service providers who may assist us with a variety of functions including with research, mail and delivery, security, insurance, professional advisory (including legal, accounting and auditing advice), banking, payment processing, fraud checks or technology services. By agreeing to accept the terms of this privacy policy or by providing your personal information to us, or both, you are taken to have consented to us disclosing your personal information to our third-party service providers. Where we engage third party service providers to perform services for us, those third parties may be required to handle or deal with your personal information. Under these circumstances, those third parties must safeguard this information and must only use it for the purposes for which it was supplied, and we will make all reasonable enquiries to try to ensure that this is the case.

23. Wherever possible, we will limit the information provided to independent third parties so that information required for those third parties to properly perform their functions.

Do we use your personal information for marketing purposes?

24. As part of the services that we provide to you, we may:

(a) Use personal information that we have collected about you to identify a product or service that may benefit you;

(b) contact you from time to time to let you know about a product or service that we believe you might be interested in; and

(c) Disclose your personal information to any third parties or to any entities or companies related to Miriam Van Doorn to enable them to tell you about a product or service that you might be interested in.

25. Where we intend to use your personal information for direct marketing purposes, we will seek your consent to do so prior to using your personal information. You can opt-out, unsubscribe or make a request not receive direct marketing communications from us, in writing to us at miriamvandoorn@optusnet.com.au. Additionally, each direct marketing communication will include an opt-out or “unsubscribe” option which will immediately indicate to us that you no longer wish to receive communications of this kind.

26. You may make a request that we do not disclose your personal information to facilitate direct marketing by another organisation and you may request that we provide you with the source of any personal information we use for direct marketing purposes. Any such requests will be actioned within a reasonable period of time and there will be no charges to you for making or to you from us actioning, such requests.

How do we store your personal information?

27. We have implemented appropriate processes and techniques to protect personal information from loss, misuse and interference and from unauthorised access, modification or disclosure. In addition, access to your personal information is limited to those who specifically need it to conduct their responsibilities

28. We take all necessary steps to destroy or permanently de-identify your personal information where it is no longer required and to protect your personal information from loss, misuse and interference and from unauthorised access, modification or disclosure.

29. While care is taken to protect your personal information, unfortunately no data transmission over the internet is guaranteed as 100% secure. Accordingly, we cannot ensure or warrant the security of any information you send to us or receive from us online. This is particularly true for information you send to us via email as we have no way of protecting that information until it reaches us. Once we receive your personal information, we are required to protect it in accordance with the Act.

What if there is a breach in relation to my personal information?

30. We take breaches of your privacy very seriously. In the event that there is a data breach relating to personal information that we hold about you, such as loss of, unauthorised access to, or unauthorised disclosure of, the information (Data Breach), we will take immediate steps to contain and remedy any effects of the Data Breach in accordance with our Data Breach Response Plan. Where required under the Act, we will notify both you and the Office of the Australian Information Commissioner (OAIC) of the Data Breach.

Maintaining your personal information

31. We take reasonable steps to ensure that:

(a) The information that we collect about you is accurate, complete and up-to-date at the time of collection;

(b) When we use your personal information, it is accurate, up-to-date, complete and accurate at the time of use; and

(c) If we disclose your personal information, it is accurate, up-to-date, complete and accurate at the time of disclosure.

32. You warrant that all information that you provide to us is accurate, complete and up to date at the relevant time.

How can you access your personal information?

33. Usually we will be able to provide you with access to your personal information upon receipt of your written request, either by email sent to miriamvandoorn@optusnet.com.au and confirmation of your identity. There are some limited circumstances in which we may not be able to provide you with access to your personal information when requested. Such circumstances might include where access would pose a serious threat to the life, health or safety of another person or where such access would unreasonably impact on the privacy of others.

34. Where you request access to your personal information, we will respond to any such request in accordance with the Act.

35. We may recover from you our reasonable costs of supplying you with access to your personal information but we will not charge you for any request you might make to access your information.

How can you seek to correct your personal information?

36. We do what we can to ensure that the information we hold about you is accurate, complete, up-to-date, relevant and not misleading. To assist us to do this, it is imperative that you provide us with correct information at the time you provide it to us and immediately inform us if any of the information changes at any time. You may make a request that we correct any of your information. We would prefer your request to be in writing.

37. We will respond to any requests regarding the correction of your personal information within a reasonable period after the request is made and in accordance with the Act.

38. We will not charge you for any request to correct your personal information, nor will we pass on to you any costs incurred by us in correcting your personal information or for associating a statement with your personal information.

What if you want to make a complaint about some aspect of our privacy procedures?

39. We are committed to maintaining and protecting your privacy but it is possible that in limited circumstances, mistakes might be made. If you are concerned with the way your personal information has been handled then you are entitled to make a complaint. If you would like to lodge a complaint, please contact us at miriamvandoorn@optusnet.com.au.

40. If your personal information has not been handled in an appropriate way, we will do our best to remedy your concerns as quickly as possible.

41. If your complaint is not satisfactorily resolved, you may approach an external dispute resolution service or apply to the OAIC to have the complaint heard and determined.

Protecting your identity

42. Wherever it is practicable, we will always provide you with the option not to identify yourself when dealing with us. Alternatively, you may elect to use a pseudonym to protect your identity.

Changes and exemptions to this policy

43. From time to time it may be necessary for us to review and revise this privacy policy. We reserve the right to change our privacy policy at any time.

44. Please note that the Act contains certain exemptions which may permit us to use your personal information in a particular way if specific circumstances arise. Any such exemptions under the Act will take priority over this privacy policy to the extent of any inconsistency.

How can you contact us?

45. Please do not hesitate to contact us in relation to any privacy-related concerns and we will use our best endeavours to address any such concerns thoroughly and in a timely manner. Write to miriamvandoorn@optusnet.com.au.

46. If it is practical to do so, you can contact us without identifying yourself. However, if you choose not to identify yourself, it may be more difficult for us to assist you with your enquiry. This will depend on the nature of your enquiry.

Express consent to collection, storage, use and disclosure

47. In addition to the other consents provided by you above, by agreeing to accept the terms of this privacy policy, or by providing your personal information to us, or both, you are taken to have expressly consented to the collection, storage, use and disclosure of your personal information for each of the purposes and to all of the parties outlined in this privacy policy.

48. We may make use of a number of automated processes in providing our services to you using your personal information to provide an efficient and effective customer experience. An automated process is decision based on information we have about you that does not involve any human intervention.

49. The types of automated processes we are likely to use include purchasing / behaviour triggered EDMs and basic profiling algorithms within the CMS (as examples).

What are your rights?

50. You have the following rights in respect of the personal information we hold about you:

(a) You have the right to be informed about how your personal information is being collected and used. Where we rely on your consent to process your personal information, you have a right to withdraw that consent. If you withdraw consent, we may not be able to provide certain services to you.

(b) You can access your personal information that we hold about you.

(c) You have the right to question any personal information we have about you that is inaccurate or incomplete. If you do, we will take reasonable steps to check the accuracy and correct it.

(d) You have the right to ask us to delete your personal information if there is no need for us to keep it.

(e) You have the right to ask us to restrict our use of your personal information in some circumstances.

(f) In some circumstances, you have the right to request that we provide you with a copy of the personal information you have provided to us in a format that can be easily reused.

(g) In some circumstances, you have the right to object to us processing your personal information.

(h) You have the right to ask that we not use automated processes in relation to your personal information. You also have the right to object to an automated decision, and ask that a person reviews it.

(i) You have the right to complain to the regulator if you are not happy with the outcome of a complaint.