Our commitment to privacy
DIYblinds.com.au Pty Ltd (ABN 96 168 941 599) (including the businesses “DIY Blinds” and “DIY Home”) and members of its corporate group (collectively referred to as “DIY Blinds”) are committed to managing personal information in accordance with the Australian Privacy Principles under the Privacy Act 1988 (Cth) (“Act”).
Terms defined in the Act
The Act defines "personal information" as information or an opinion about an identified individual or an individual who is reasonably identifiable:
(a) whether the information or opinion is true or not; and
(b) whether the information or opinion is recorded in a material form or not.
The Act defines “sensitive information” to include personal information about an individual’s racial or ethnic origin, political opinions, religious beliefs or affiliations, philosophical beliefs, membership of a professional or trade association, membership of a trade union, sexual orientation or practices and criminal record and also health and genetic information about an individual. We will not be collecting such information from you.
What personal information do we collect?
Collection of personal information is not the core of our business. We only collect personal information that is necessary for the operation of our business being the retail of curtains, blinds, shutters and kitchen, wardrobe and laundry cabinetry and bench tops and similar goods.
We collect the following information about you:
Customers and prospective customers
When you enquire about our goods or services or when you become a customer of DIY Blinds, a record is made which includes your personal information. The type of personal information that we collect will vary depending on the circumstances of collection, but will typically include:
- Address (including delivery address)
- Post code
- Phone number
- Email address
- Payment card number
- Payment card expiry date
- Purchase history
- Product/service preferences
- Customer satisfaction information
- Opinions about products and services
Credit card numbers are not stored in our systems. When purchasing from DIY Blinds your financial details are passed through to a secure server]. We do not share credit card information with third parties, except with our bank, NAB, for the purpose of processing payments through their payment check out facility or as required by law.
Prospective employees, contractors or applicants
We collect personal information when recruiting personnel (for example, when you send us a job application or resume) such as your name, contact details, academic and professional qualifications, work history, payroll information and any other information that we receive from our communications with you, such as feedback or survey responses that you have provided us and information collected at interviews. Generally, we will collect this information directly from you.
We may also collect personal information from third parties in ways which you would expect (for example, from recruitment agencies or referees you have nominated). Before offering you a position, we may collect additional details such as your tax file number and superannuation information and other information necessary to conduct background checks to determine your suitability for certain positions.
We may collect personal information about other individuals who are not customers of DIY Blinds such as service providers, contractors, suppliers, sponsors, business partners and other individuals who interact with us on a commercial basis (or their representatives). The kinds of personal information we collect will depend on the capacity in which you are dealing with DIY Blinds. Generally, it would include your name, contact details, and information regarding our interactions and transactions with you.
You can always decline to give us any personal information we request, but that may mean we cannot provide you with some or all of the goods or services you have requested. If you have any concerns about personal information we have requested, please let us know.
How and why does DIY Blinds collect and use personal information?
DIY Blinds collects personal information reasonably necessary to carry out our business. We may also collect information to fulfil administrative functions associated with these goods and services, for example billing, entering into contracts with you or third parties and managing customer relationships.
The purposes for which DIY Blinds usually collects and uses personal information depends on the nature of your interaction with us, but may include:
- providing and improving our goods and services;
- contacting you about your account;
- providing you customer service;
- processing payments;
- responding to requests for information and other general inquiries;
- managing, planning, advertising and administering of our goods and services;
- researching, developing and expanding our facilities, goods and services;
- informing you of our activities, events, facilities, goods and services;
- recruitment processes;
- responding to enquires and complaints; and
- detecting, preventing, mitigating and investigating fraudulent or illegal activities.
DIY Blinds generally collects personal information directly from you. We may collect and update your personal information over the phone, by email, over the internet or social media, or in person.
We may also collect personal information about you from other sources, for example:
- members of our corporate group; and
- third party suppliers and contractors who assist us to operate our business.
DIY Blinds also collects and uses personal information for market research purposes and to innovate our delivery of products and services.
How does DIY Blinds interact with you via the internet?
You can use the settings in your browser to control how your browser deals with cookies. However, in doing so, you may be unable to access certain pages or content on our website.
DIY Blind’s websites may contain links to third-party websites. We are not responsible for the content or privacy practices of websites that are linked to our website.
We may allow you to share information with social media sites or use social media sites to interact with DIY Blinds. Those social media sites may give us automatic access to certain personal information retained by them about you (e.g., content viewed by you, content liked by you and information about the advertisements you have been shown or may have clicked on, contact details you may have provided them). Where this information is received by us, we will use this information to further personalise your experience with DIY Blinds.
Can you deal with DIY Blinds anonymously?
DIY Blinds will provide individuals with the opportunity of remaining anonymous or using a pseudonym in their dealings with us where it is lawful and practicable (for example, when making a general enquiry). Generally, it is not practicable for DIY Blinds to deal with individuals anonymously or using a pseudonym because we need to enter into contracts with our customers for our goods and services. If we do not collect personal information about you, you may be unable to utilise our services or be supplied with goods.
How does DIY Blinds store information?
When you place an order, all of your information is processed through our secure server. DIY Blinds utilise industry standard 128 bit Secure Socket Layer (SSL) technology that encrypts all your information before it is sent to us – the same technology Australia’s leading banking institutions employ to secure your information.
DIY Blinds stores information in electronic record keeping methods in secure databases (including trusted third-party storage providers based in Australia and overseas). We take reasonable steps to protect your personal information from misuse, interference and loss and from unauthorised access, modification or disclosure.
DIY Blinds maintains physical security over electronic data stores, such as through locks and security systems at our premises. We also maintain computer and network security, for example, we use firewalls (security measures for the internet) and other security systems such as user identifiers and passwords to control access to our computer systems.
Our websites do not necessarily use encryption or other technologies to ensure the secure transmission of information via the internet. Users of our websites are encouraged to exercise care in sending personal information via the internet.
We take steps to destroy or de-identify information that we no longer require.
Does DIY Blinds use or disclose your personal information for direct marketing?
DIY Blinds may use or disclose your personal information for the purpose of informing you about our goods and services, upcoming promotions and events, or other opportunities that may interest you. If you do not want to receive direct marketing communications, you can opt-out at any time by clicking the “unsubscribe” link or contacting us by using the contact details below.
If you opt-out of receiving marketing material from us, DIY Blinds may still contact you in relation to its ongoing relationship with you.
How do we use and disclose this information?
For clients and customers
If you have engaged us to supply you with goods, then we will disclose your order details to:
- our manufacturers in order to manufacture the order;
- couriers in order to arrange delivery.
Disclosure to contractors and other service providers
DIY Blinds may disclose information to third parties we engage or partner up with in order to provide our goods and services, including to contractors and service providers used for data processing, data analysis, customer satisfaction surveys, information technology services and support, website maintenance/development, printing, archiving, mail-outs and market research. We also provide your personal information to freight companies for the purposes of arranging delivery.
Personal information may also be shared between related and affiliated companies of DIY Blinds.
Other third parties
When required by law, DIY Blinds will disclose personal information to a government authority.
We may disclose your personal information to third parties in the event that we sell, buy or merge any business or assets, including the prospective seller or buyer of such business or assets.
DIY Blinds may also disclose the personal information you provide on a job application to human resources practitioners, hiring managers and to any recruitment advisors for the purpose of considering you for career opportunities within DIY Blinds.
Use and disclosure for administration and management
DIY Blinds will also use and disclose personal information for a range of administrative, management and operational purposes. This includes:
- administering billing and payments and debt recovery;
- planning, managing, monitoring and evaluating our goods and services;
- quality improvement activities;
- statistical analysis and reporting;
- training staff, contractors and other workers;
- risk management and management of legal liabilities and claims (for example, liaising with insurers and legal representatives);
- responding to enquiries and complaints regarding our services;
- enforcing our legal rights, for example, our intellectual property rights or website terms and conditions of use;
- obtaining advice from consultants and other professional advisers; and
- responding to subpoenas and other legal orders and obligations.
Other uses and disclosures
Does DIY Blinds disclose your personal information overseas?
We use third-party service providers, namely, Amazon Web Services for our website and client database and Microsoft for email correspondence and communications (“IT Suppliers”).
The IT Suppliers to whom we may disclose personal information may have servers in and operate out of locations outside Australia. Our Amazon Web Services server is located in Australia, however as some of the IT Suppliers are of a global nature, we cannot say with certainty where their servers are located or the countries out of which they operate. Further, these locations may be subject to change without notice to us.
How can you access or seek correction of your personal information?
You are entitled to access your personal information held by DIY Blinds on request. To request access to your personal information please contact our privacy officer using the contact details set out below.
You will not be charged for making a request to access your personal information, but you may be charged for the reasonable time and expense incurred in compiling information in response to your request.
We will take reasonable steps to ensure that the personal information we collect, use or disclose is accurate, complete and up-to-date. You can help us to do this by letting us know if you notice errors or discrepancies in the information we hold about you and letting us know if your personal details change.
However, if you consider any personal information we hold about you is inaccurate, out-of-date, incomplete, irrelevant or misleading, you are entitled to request correction of the information. After receiving a request from you, we will take reasonable steps to correct your information.
We may decline your request to access or correct your personal information in certain circumstances in accordance with the Australian Privacy Principles. If we do refuse your request, we will provide you with a reason for our decision and, in the case of a request for correction, we will include a statement with your personal information about the requested correction.
What should you do if you have a complaint about the handling of your personal information?
You may make a complaint about privacy to the privacy officer at the contact details set out below.
The privacy officer will first consider your complaint to determine whether there are simple or immediate steps which can be taken to resolve the complaint. We will generally respond to your complaint within a week.
If your complaint requires more detailed consideration or investigation, we will acknowledge receipt of your complaint within a week and endeavour to complete our investigation into your complaint promptly. We may ask you to provide further information about your complaint and the outcome you are seeking. We will then typically gather relevant facts, locate and review relevant documents and speak with individuals involved.
In most cases, we will investigate and respond to a complaint within 30 days of receipt of the complaint. If the matter is more complex or our investigation may take longer, we will let you know.
If you are not satisfied with our response to your complaint, or you consider that DIY Blinds may have breached the Australian Privacy Principles or the Privacy Act, a complaint may be made to the Office of the Australian Information Commissioner. The Office of the Australian Information Commissioner can be contacted by telephone on 1300 363 992 or by using the contact details on the website www.oaic.gov.au.
Under the Notifiable Data Breaches scheme in the Privacy Act, there is a statutory obligation to make an assessment when there are reasonable grounds to suspect that there may have been an eligible data breach. An ‘eligible data breach’ involves personal information that is likely to result in serious harm to individuals.
Our privacy response team will assess all suspected or potential data breaches and, if it has reasonable grounds to believe that there has been an eligible data breach, then DIY Blinds will notify the affected individuals and the Australian Information Commissioner of that data breach.
How do I get more information?
The details of our privacy officer are as follows:
Terry Gardner - firstname.lastname@example.org