1. INFORMATION WE COLLECT
The personal information we collect falls into four categories: contact details, click trails, activity history, and publishable content.
- Contact details are collected as supplied by you from time to time. We do not personally store usable credit card information. Where a record is required, we entrust credit cards to our payment gateway and store only the last few digits and expiry date of your credit card solely for purposes of identity confirmation and forewarning of expiry.
- Click trails record the paths taken by visitors through the website. This information is generally recorded against IP address, and may be possible to correlate by computer.
- Activity History consists of orders, enquiries, votes submitted via the website, or offline contact you have with us such as phone calls.
- Publishable content consists of comments or other submissions of content you would like us to publish on our website.
2. HOW WE COLLECT IT
Contact details and publishable content are collected when supplied by you either via the website or direct to us by other means. Click trails are recorded by our servers as each request reaches the website. This includes but is not limited to:
- The type of browser you are using
- The date and time of your visit
- Your IP address
- The address of the website that referred you to ours
- The addresses of pages accessed and any documents downloaded
Click trails can be correlated over time by the use of ‘cookies’ as outlined in section 6. In most cases click trail data is not directly individually identifiable.
Activity history is recorded whenever you undertake an activity such as submit an enquiry, make a comment, vote on an object, and may additionally be recorded by us when you contact us offline.
Our website uses Google Analytics, a service which transmits website traffic data to Google servers in the United States. Google Analytics does not identify individual users or associate your IP address with any other data held by Google. We use reports provided by Google Analytics to help us understand website traffic and webpage usage.
To improve the user experience of this website and help ensure that our content is relevant, we use Fullstory and Hotjar to provide anonymised information about how you use our site. This includes the pages you look at and how the mouse interacts with the page. More information can be found on the FullStory website – external and Hotjar website – external. You can opt out of Hotjar directly here. You can opt out of Fullstory here.
3. WHY WE COLLECT IT AND HOW WE USE IT
Publishable content is collected and republished where applicable in order to enable a two-way conversation in public between us and our visitors.
We collect your personal contact details and activity history:
- To respond to requests or queries you raise
- To confirm your identity
- To fulfil orders made by you
- To keep you up to date with news, special offers, and other marketing information you have opted-in to receive.
- To advertise our services and products to you through the Google Ads Display network and/or the Facebook Ads network, using remarketing. This may be facilitated using a Pixel (or related tool provided by the network) to anonymously connect our website to their platform, or via providing the network with an encrypted identifier.
We collect click trail data:
- To measure and monitor the performance of our website
- To estimate interest in our products and services
- To refine and update our website’s content
In the case that you pay for an order with your credit card, we do not store your credit card number on our servers, however it may be retained by our payment gateway provider in circumstances where this is required.
4. HOW WE DISCLOSE IT
We may disclose your personal information to third parties, and you consent to us disclosing your personal information to third parties, under the following circumstances:
- As part of a sale of all or part of our business
- When explicitly authorised to do so by yourself at the time you supply the information
- As required or authorised by any applicable law
- As required for processing of credit card payments by Internet Payment Gateways and Merchant Facilities.
- As part of any investigation by us into you or your activity on our website (including to your Internet Service Provider or network administrator)
- To lessen or prevent a serious threat to a person’s health or safety
5. PUBLISHABLE CONTENT
Content submitted by you for publication may be disclosed to all visitors of our website, and/or republished on other websites at our discretion.
If you provide personal information either of your own or of any third party as part of publishable content, you warrant that you have permission to publish said information and indemnify us against any consequences resulting from the publication of said information.
If you find your personal information published on our website without your consent, please contact us immediately as outlined in section 10.
Cookies are electronic tokens containing small amounts of information that are passed between a web browser and server. They are used to maintain session state between pages or to retain information between visits if you return to the website at a later time.
7. OPTING IN AND OUT
You may opt out from the correlation of passive activity data by turning off cookies in your browser. Please note however that disabling cookies may result in a reduction of available functionality on our site including but not limited to the loss of the ability to post comments and vote on content.
When you supply us with your email address you may be asked to opt in to receive marketing information by e-mail or other means.
You will be given the opportunity to opt out from receiving further communications from us in accordance with this policy each time we send you information for which you have opted in. This comes in the form of an ‘unsubscribe’ link, generally in the footer and/or header of each email.
If you receive any communication purporting to be connected with us or our products or services that you believe has been sent to you other than in accordance with this policy, or in breach of any law, please contact us immediately as outlined in section 10.
8. INFORMATION MANAGEMENT AND SECURITY
With the exclusion of information supplied for publication (as outlined in section 5), we will take all reasonable steps to ensure that the personal information we hold is not lost, misused, or inadvertently provided to unauthorised third parties, including by means of firewalls, password locking, truncation of credit card data, encryption of data in transit, and secured servers.
The security of your personal information is important to us. When you enter sensitive information (such as credit card numbers) on our website, we encrypt that information using secure socket layer technology (SSL). When Credit Card details are collected, we simply pass them on in order to be processed as required. We never permanently store complete Credit Card Details.
Shaw Wines uses Troly in partnership with Stripe’s Payment Gateway for its online credit card transactions. Troly in partnership with Stripe processes online credit card transactions for thousands of Australian merchants, providing a safe and secure means of collecting payments via the Internet. All online credit card transactions performed on this site using Troly in partnership with Stripe’s gateway are secured payments.
- Payments are fully automated with an immediate response.
- Your complete credit card number cannot be viewed by Shaw Wines or any outside party.
- All transactions are performed under 128 Bit SSL Certificate.
- All transaction data is encrypted for storage within Troly in partnership with Stripe’s bank-grade data centre, further protecting your credit card data.
- Troly in partnership with Stripe is an authorised third party processor for all the major Australian banks.
- Troly in partnership with Stripe at no time touches your funds; all monies are directly transferred from your credit card to the merchant account held by Shaw Wines.
You acknowledge that the security of communications sent by electronic means cannot be guaranteed. You provide information to us via the internet at your own risk. We cannot accept responsibility for misuse or loss of, or unauthorised access to, your personal information where the security of information is not wholly within our control.
You must ensure the security and confidentiality of any username and/or password used by yourself to access this website. You agree that you will be held responsible for all activities which occur under your username and password (including but not limited to publication of illegal or defamatory material or any other unlawful activity, or unauthorised charging of your credit card).
You agree that we are not responsible for the privacy or security practices of any third party and that the collection and use of your information by third parties may be subject to separate privacy and security policies.
If you suspect any misuse or loss of, or unauthorised access to, your personal information, please contact us immediately as outlined in section 10.
9. GAINING ACCESS TO YOUR INFORMATION
You have the right (excluding exceptions outlined in the Privacy Act) to seek access to and update or correct the personal information we hold about you. If you make an access request, we will ask you to verify your identity.
If you would like to seek access to personal information we hold about you, you can contact us as outlined in section 10.
10. HOW TO CONTACT US
If you have any questions or complaints about how we collect, use, disclose, manage or store your personal information, or would like to request access or changes to the information we hold, please contact us at [email protected]