Your Privacy Rights
Effective date: March 21, 2020
Olympia is a company by High Level Wellness. High Level Wellness Pty Ltd. ACN 629 425 476 (“High Level Wellness”, “us”, “we” or “our”) values your privacy, and we are committed to protecting your personal information.
Please note that:
all the information set out in this Policy may not apply to you. Below is an overview of the possible circumstances in which we could interact together. Our interactions with you will determine which of the following applies to you and your personal information.
WHAT PERSONAL INFORMATION DO WE COLLECT AND WHEN, AND WHY WE USE IT ABOUT YOU
The information we collect from you allows you to log into our Sites, use our Services and Applications, and register for and/or set up registration for you or your organization’s own customers for data management related projects and/or activities (collectively, “Memberships”).
We collect or receive personal information from you via our Sites, Applications and/or Services. For example, we receive personal information from you directly when you create an online account or register for Olympia Memberships, one of our other products or services. We may also collect personal information about you, for example, by using cookies to understand how you use our Sites and products.
We will only collect, use, and share your personal information where we are satisfied that we have an appropriate legal basis to do this. The chart below summarizes when we collect personal information, the types of personal information we collect, how we use the personal information and the legal basis for our use of such personal information.
HOW WE SHARE PERSONAL INFORMATION WITHIN OLYMPIA AND WITH OUR SERVICE PROVIDERS, REGULATORS, AND OTHER THIRD PARTIES
We may share your personal information in the manner and for the purposes described below:
With other Olympia entities where such disclosure is necessary to provide you with our Services or to manage our business. We may also share your personal information with other Olympia entities to improve the services we offer or help us to create new ones and to personalize the Services and offers you receive and or marketing, profiling and analytics as set out further in EXPLAINING MORE ABOUT DIRECT MARKETING section below; and for the purposes set out in this Policy.
With third parties who help manage our business and deliver services, for example, IT service providers who help manage our IT and back-office systems or administer our Sites and Applications. These third parties have agreed to confidentiality restrictions and have agreed to use any personal information we share with them, or which they collect on our behalf, solely for the purpose of providing the contracted service to us.
We may disclose information to third parties (with consent if required by law) such as promotional partners and others with whom we have marketing or other relationships. For further details, refer to EXPLAINING MORE ABOUT DIRECT MARKETING section below.
With government organizations and agencies, law enforcement and regulators, to comply with all applicable laws, regulations and rules, and requests of law enforcement, regulatory and other governmental agencies; in response to legal process.
Banks and payment providers to authorize and complete card payments.
We may share in aggregate, statistical form, non-personal information regarding the visitors to our Sites, traffic patterns, and website usage with our partners, affiliates or advertisers.
If, in future, we are acquired by or merged with another company, if substantially all of our assets are transferred to another company, or as part of a bankruptcy proceeding, we may disclose/transfer the information we have collected from you to the acquiring company.
HOW WE PROTECT AND STORE PERSONAL INFORMATION
We have implemented and maintain appropriate technical and organisational security measures, policies and procedures designed to reduce the risk of accidental destruction, or loss, or unauthorized disclosure or access to such information appropriate to the nature of the information concerned, including:
(where appropriate) password protection, encryption, and use of secure communication transmission software (known as "secure socket layering" or "SSL") to protect our Sites;
placing confidentiality requirements on our employees and service providers;
destroying or permanently anonymising personal information if it is no longer needed for the purposes for which it was collected; and
following strict security procedures in the storage and disclosure of your personal information to prevent unauthorized access to it. Whilst we take appropriate technical and organisational measures to safeguard your personal information, no transmission over the Internet can ever be guaranteed to be secure. Therefore, we cannot guarantee the security of any personal information that you transfer over the Internet to us and any such transmission is at your own risk.
As the security of personal information depends in part on the security of the computer you use to communicate with us and the security you use to protect usernames and passwords, you should take steps to protect against unauthorized access to your password, computer, and web-enabled devices, among other things, by signing off after using a shared computer, inserting a password on your web-enabled device, choosing a password that nobody else knows or can easily guess, keeping your password private, and periodically changing your password. You should never share your log-in information with others. We are not responsible for any lost, stolen or compromised passwords, or for any activity on your account via unauthorized password activity.
Storing your personal information
We will store your personal information for as long as is reasonably necessary for the purposes for which it was collected, as explained in this Policy. Where your information is no longer needed, we will ensure that it is disposed of in a secure manner. In some circumstances, we may store your personal information for longer periods of time, for instance where we are required to do so in accordance with legal, regulatory, tax, accounting requirements.
In specific circumstances we may store your personal information for longer periods of time so that we have an accurate record of your dealings with us in the Membership of any complaints or challenges, or if we reasonably believe there is a prospect of litigation relating to your personal information or dealings.
EXPLAINING MORE ABOUT DIRECT MARKETING
How we use personal information you keep you up to date with our Services
We may use personal information to let you know about our Services that we believe will be of interest to you. We may contact you by email, post, or telephone or through other communications channels that we think you may find helpful. In all cases, we will respect your preferences for how you would like us to manage marketing activities with you.
We also work with carefully selected third parties, such as promotional partners and others with whom we have marketing or other relationships. At all times, in accordance with your marketing preferences, these third parties may contact you by email, SMS/text, social media or through other communications channels to tell you about products and services that they believe would be of interest to you.
How you can manage your marketing preferences
To protect privacy rights and to ensure you have control over how we manage marketing with you:
We will take steps to limit direct marketing to a reasonable and proportionate level and only send you communications which we believe may be of interest or relevance to you;
At any time you can update or correct your personal profile, or change your preferences for the way in which you would like us to communicate with you, including how you receive details of latest offers from us;
If you have an online account with us, the easiest way to make updates to your marketing preferences and/or change your personal details is to log onto your account. You can also click the “unsubscribe” link that you find on any online newsletters you receive or contact customer support group/cohort at firstname.lastname@example.org.
You can ask us to stop direct marketing at any time – you can ask us to stop sending email marketing by following the unsubscribe link you will find on all the email marketing messages we send you. Alternatively, you can contact us at email@example.com. Please specify whether you would like us to stop all forms of marketing or just a particular type (e.g. email);
You can change the way your browser manages cookies, which may be used to deliver online advertising, by following the settings on your browser.
We recommend you routinely review the privacy notices and preference settings that are available to you on any social media platforms as well as your preferences in your account with us. Further, if (in accordance with your marketing preferences) you receive marketing from the third parties referred to above, we recommend you review any relevant third party's privacy notice for how they use your personal information.
Be aware that if you unsubscribe from our marketing communications we may be unable to notify you of tailored services or offer to meet your needs. If you unsubscribe from marketing communications from us, you will still receive operational and service messages from us regarding your Memberships and/or registrations.
Olympia regularly reviews its policies, procedures, and practices regarding personal information and this Policy.
The primary point of contact for all issues arising from this Policy is our Data Protection Officer. Our Data Protection Officer can be contacted in the following ways:
If you have any questions, concerns, or complaints regarding our compliance with this Policy, the information we hold about you or if you wish to exercise your rights, we encourage you to first contact us. We will investigate and attempt to resolve complaints and disputes and make every reasonable effort to honour your wish to exercise your rights as quickly as possible and in any Membership, within the timescales provided by data protection laws.
To contact your data protection supervisory authority
You have a right to lodge a complaint with your local data protection supervisory authority (i.e. your place of habitual residence, place of work or place of alleged infringement) at any time. We ask that you please attempt to resolve any issues with us before your local supervisory authority.