Poyenics Privacy Policy

Last updated on: 24/September/2024 

This Privacy Policy applies to all personal information collected by Poyenics (“We”) via the website located at https://poyenics.com.

1 - What is "personal information"?

  • (a) The Privacy Act 1988 (Cth) currently defines "personal information" as meaning information or an opinion about an identified individual or an individual who is reasonably identifiable:
  • (i) whether the information or opinion is true or not; and
  • (ii) whether the information or opinion is recorded in a material form or not.
  • (b) If information do not disclose your identity or enable your identity to be ascertained, it will in most cases not be classified as "personal information" and will not be subject to this privacy policy.

2 - What information do we collect?

The kind of personal information that we collect from you will depend on how you use the website.

The personal information which we collect and hold about you may include a person’s:

  • Email address
  • Phone number
  • Name
  • Addresses (Residential/Office)
  • Business Details including Registration Details and place of business
  • Location information
  • Age

3 - How we collect your personal information

  • (a) We may collect personal information from you whenever you input such information onto our website or Poyenics portal.
  • (b) We also collect cookies from your computer which enable us to tell when you use the website or Poyenics Portal and also to help customise your experience. These cookies are mainly essential cookies such as login cookie for the purpose of authentication and authorisation.

4 - Purpose of collection

  • (a) The purpose for which we collect personal information is to provide you with the best service experience possible on the website.
  • (b) We customarily disclose personal information only to our service providers who assist us in operating the website. Your personal information may also be exposed from time to time to maintenance and support personnel acting in the normal course of their duties.
  • (c) By using our website, you consent to the receipt of direct marketing material. We will only use your personal information for this purpose if we have collected such information direct from you, and if it is material of a type which you would reasonably expect to receive from use. We do not use sensitive personal information in direct marketing activity. Our direct marketing material will include a simple means by which you can request not to receive further communications of this nature.

5 - Access and correction

We take the security of your personal information seriously and have implemented robust technical and organizational measures to protect it from unauthorized access, use, or disclosure. This includes:

  • (a) Encryption: All personal information is encrypted using strong encryption methods both in transit and at rest.
  • (b) Access Controls: Access to personal information is restricted to authorized personnel only, who require access to perform their job functions.
  • (c) Data Minimisation: We only collect and retain personal information that is necessary for the purposes outlined in this Privacy Policy.
  • (d) Security Monitoring: We regularly monitor our systems for vulnerabilities and attacks to ensure your data is protected.

8 - Overseas transfer

Your personal information may be transferred to recipients located in the European Union. Countries part of the European Union have data protection laws which protect personal information in a way which is at least substantially similar to the Australian Privacy Principles, and there will be mechanisms available to you to enforce protection of your personal information under that overseas law. In these circumstances, we do not require the overseas recipients to comply with the Australian Privacy Principles and we will not be liable for a breach of the Australian Privacy Principles if your personal information is mishandled.

Your personal information may also be transferred elsewhere overseas or stored overseas for a variety of reasons. It is not possible to identify each and every country to which your personal information may be sent. If your personal information is sent to a recipient in a country with data protection laws which are at least substantially similar to the Australian Privacy Principles, and where there are mechanisms available to you to enforce protection of your personal information under that overseas law, we will not be liable for a breach of the Australian Privacy Principles if your personal information is mishandled in that jurisdiction. If your personal information is transferred to a jurisdiction which does not have data protection laws as comprehensive as Australia's, we will take reasonable steps to secure a contractual commitment from the recipient to handle your information in accordance with the Australian Privacy Principles.

9 - GDPR (Only for customers from the European Union)

In some circumstances, the European Union General Data Protection Regulation (GDPR) provides additional protection to individuals located in Europe. If you are a customer from the European Union, the following provisions apply to the processing of your personal data:

  • (a) Personal Data Collection and Processing: We may collect and process your personal data, which may include but is not limited to, your name, email address, and usage data. This processing is necessary for the performance of a contract with you or for our legitimate interests in providing and improving our services.
  • (b) Lawful Basis for Processing: Our lawful basis for processing your personal data may include consent when required or our legitimate interests in managing and operating our business effectively including providing customer support and improving our services.
  • (c) Data Storage and Security: We encrypt all personal data using strong encryption methods. Access to personal information is restricted to authenticated customers and authorized personnel only. We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk.
  • (d) Data Retention: We retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.
  • (e) Your Rights: Under the GDPR, you have the right to access, rectify, erase, restrict processing of, and port your personal data. You also have the right to withdraw your consent at any time where applicable.
  • (f) International Data Transfers: If we transfer your personal data outside the European Union, we ensure that appropriate safeguards are in place to protect your data, such as Standard Contractual Clauses approved by the European Commission.
  • (g) Contact Us: If you have any questions or concerns about our processing of your personal data or wish to exercise your rights under the GDPR, please contact us using the contact details provided below.

10 - How to contact us about privacy

If you have any queries, or if you seek access to your personal information, or if you have a complaint about our privacy practices, you can contact us on: info@poyenics.com.au.