PRIVACY AND SECURITY POLICY
Offtrack has been working with the community for over 6 years and we understand the importance of providing secure credit card transactions, whether online or in store. We are committed to this, utilising the latest technology we give you a 100% guarantee that your details are respected and safe.
How do we do this?
– Credit Card Numbers are processed securely using a 256-bit AES data encryption method.
– We employ Secure Socket Layer (SSL) protocols to ensure information provided over the internet is transmitted securely.
– All Cardholder information is stored and processed in accordance with the Payment Card Industry Data Security Standard (PCI DSS).
1. Privacy is Important
We recognise that privacy of personal information is important to individuals and as such, we take website security very seriously and are committed to safeguarding your personal information. We conduct various physical, electronic, administrative and managerial security procedures in order to protect personal information from loss and misuse, and from unauthorised access, modification, disclosure and interference.
We are bound by the Privacy Act 1988 (‘Act’). The compliance with the applicable privacy principles as set out within the Act are as follows:
2. Personal Information
Personal information is information which relates to a living individual who can be identified from that information, or from that information and other information in a person’s possession, including any expression of opinion, whether true or not, and whether recorded in material form or not, about an identified or reasonably identified individual, and any indication of intention in respect of an individual.
3. Kinds of Personal Information
We may collect all or some of the following information relating to you:
(a) Information you give us – You may give us information about you by filling in forms on our site www.offtrack.com.au (‘our site’) or by corresponding with us by phone, e-mail or otherwise. This includes information you provide when you use our site, subscribe to our newsletter, search for a product, other social media functions on our site, enter a competition, promotion or survey, and when you report a problem with our site. The information you give us may include your name, address, e-mail address and phone number, financial and credit card information, personal description or details and photograph.
(b) Information we collect about you – With regard to each of your visits to our site we may automatically collect the following information:
(i) Technical information, including the Internet protocol (IP) address used to connect your computer to the Internet, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform; and
(ii) Information about your visit, including the full Uniform Resource Locators (URL) clickstream to, through and from our site (including date and time); products you viewed or searched for; page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), and methods used to browse away from the page and any phone number used to call our customer service number.
(c) Information we receive from other sources – We may receive information about you if you use any of the other websites we operate or the other services we provide. We are also working closely with third parties (including, for example, business partners, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, search information providers, credit reference agencies) and may receive information about you from them.
In some circumstances, we may collect personal information from you which is regarded as sensitive information pursuant to the Act. Sensitive information includes types of personal information such as your racial or ethnic origin, religious beliefs or affiliations, criminal record and health information. We will only collect sensitive information when necessary in accordance with section 3.3 of the Australian Privacy Principles as set out within the Act about you with your consent and where reasonably necessary for, or directly related to, one or more of our functions or activities. Where you provide sensitive information to us, you consent to us using that sensitive information for the purpose for which it was collected.
4. Collection and Use of Personal Information
We are principally a retailer. As a successful and established retailer, we have built an enviable reputation as one of Australia’s best industry providers. Our extensive involvement in the industry with our work, sponsorship, consulting and e-commerce store, is well established and focused on customer service. Any personal information you provide to us will be used for business purposes only. We will only ask for and use personal information we reasonably need to conduct our business and communicate with you effectively in regards to your transaction. If you have received any promotional material and do not wish to receive it then, upon letting us know, we will no longer send it to you.
By providing us, or otherwise allowing us to collect, your personal information, you consent to us using and disclosing your personal information for the purposes for which it was collected, and for related or ancillary purposes. We use information held about you in the following ways:
(a) Information you give to us – We will use this information:
(i) to carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us;
(ii) to provide you with information about other goods and services we offer that are similar to those that you have already purchased or enquired about;
(iii) to provide you, or permit selected third parties to provide you, with information about goods or services we feel may interest you. If you are an existing customer, we will only contact you by electronic means (e-mail or SMS) with information about goods and services similar to those which were the subject of a previous sale or negotiations of a sale to you. If you are a new customer, and where we permit selected third parties to use your data, we (or they) will contact you by electronic means only if you have consented to this. If you do not want us to use your data in this way, or to pass your details on to third parties for marketing purposes, please tick the relevant box situated on the form on which we collect your data;
(iv) to notify you about changes to our service; and
(v) to ensure that content from our site is presented in the most effective manner for you and for your computer.
(b) Information we collect about you – We will use this information:
(i) to administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes;
(ii) to improve our site to ensure that content is presented in the most effective manner for you and for your computer;
(iii) to allow you to participate in interactive features of our service, when you choose to do so;
(iv) as part of our efforts to keep our site safe and secure;
(v) to measure or understand the effectiveness of advertising we serve to you and others, and to deliver relevant advertising to you;
(vi) to make suggestions and recommendations to you and other users of our site about goods or services that may interest you or them;
(vii) identification of fraud or error;
(viii) internal accounting and administration; and
(ix) other purposes permitted or required by law (e.g. to prevent a threat to life, health or safety).
(c) Information we receive from other sources – We may combine this information with information you give to us and information we collect about you. We may us this information and the combined information for the purposes set out above (depending on the types of information we receive).
We are only allowed to store your personal information for as long as necessary having regard to the purpose for which it was collected or a related or ancillary purpose. We may therefore delete your personal information after a reasonable period of time and, if you have not used our services for some time, you may have to re-enter or re-supply your personal information to us.
5. Disclosure of Personal Information
We may share your personal information with any member of our group, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 46 of the Corporations Act 2001 (Cth) We may also share your information with selected third parties including:
(a) Business partners, suppliers and sub-contractors for the performance of any contract we enter into with them or you.
(b) Advertisers and advertising networks that require the data to select and serve relevant adverts to you and others. We do not disclose information about identifiable individuals to our advertisers, but we may provide them with aggregate information about our users (for example, we may inform them that 500 men aged under 30 have clicked on their advertisement on any given day). We may also use such aggregate information to help advertisers reach the kind of audience they want to target (for example, women in SW1). We may make use of the personal data we have collected from you to enable us to comply with our advertisers’ wishes by displaying their advertisement to that target audience.
(c) Analytics and search engine providers that assist us in the improvement and optimisation of our site.
We may disclose your personal information to third parties:
(a) In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets;
(b) If Offtrack Pty Ltd, or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets;
(c) If we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our Website Terms and Conditions and other agreements; or to protect the rights, property, or safety of Offtrack Pty Ltd, our customers, or others. This includes exchanging information with other companies, organisations and government department for the purposes of fraud protection and credit risk reduction; and
(d) where we suspect that unlawful activity has been or may be engaged in and the personal information is a necessary part of our investigation or reporting of the matter
Other than the above, we will not disclose your personal information without your consent unless we reasonably believe that disclosure is necessary to lessen or prevent a threat to life, health or safety or for certain action to be undertaken by an enforcement body (e.g. prevention, detection, investigation, prosecution or punishment of criminal offences), disclosure is authorised or required by law or disclosure is otherwise permitted by applicable privacy laws.
When you provide, or otherwise allow us to collect, your personal information, you consent to your personal information being disclosed to certain overseas recipients, as set out below under ‘Where we store your data’. Where we disclose your personal information to an overseas recipient, you agree that we will not be required to ensure the recipient’s compliance with Australian privacy laws or otherwise be liable or accountable for how the recipient handles your personal information. If you have any objections to your personal information being disclosed to an overseas recipient, please let us know.
6. Storage of Personal Information
All information you provide to us is stored on our secure servers. Any payment transactions will be encrypted using SSL technology.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access.
Offtrack Pty Ltd regularly reviews security and encryption technologies and will strive to protect your personal information as fully as we protect our own confidential information.
7. Your Rights
You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by unchecking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at firstname.lastname@example.org
8. Access to Personal Information
In accordance with privacy laws, we give you access to your personal information we hold so you can correct misinformation. You may, at any time, log in to our system and add, modify or remove your mailing list subscription. Subject to any exceptions set out in applicable privacy laws, we invite you to access any personal information we may hold about you. Where personal information we hold about you is not accurate, complete, up-to-date or relevant, you may ask us to correct that personal information, and we will respond to your request within a reasonable time. We reserve the right to confirm the identity of the person seeking access or correction to personal information before complying with such a request. If we deny access or correction, we will provide you with the reason for such denial. If you wish to access or seek correction of any personal information we hold about you, please contact us.
You are legally obliged to always provide accurate information and you agree to update it whenever necessary. You also agree that, in the absence of any update, we can assume that the information submitted to us is correct.
You can also choose not to provide us with some of the information we request, however as a result we may not be able to complete your arrangements.
Subscribers can opt out of receiving further information from us at any time by following the ‘unsubscribe’ link on our email correspondence.
Please note that in order for us to provide you with optimum service, we use ‘cookies’ on our website. A cookie is a text-only string of information that a website transfers to the cookie file of the browser on your computer’s hard disk so that the website can remember who you are. Cookies will typically contain the name of the domain from which the cookie has come, the “lifetime” of the cookie, and a value, usually a randomly generated unique number.
Two types of cookies are used on our site – session cookies, which are temporary cookies that remain in the cookie file of your browser until you leave the site, and persistent cookies, which remain in the cookie file of your browser for much longer (though how long will depend on the lifetime of the specific cookie).
Cookies allow us to obtain information regarding users of our site which essentially helps us to provide you with a better user experience and tailor our services to your individual needs. We may collect information such as your IP address, online activity, web browser details and online activity. We will not however collect or store any of your passwords or other highly sensitive data.
Category 1: Strictly Necessary Cookies
These cookies are essential in order to enable you to move around the website and use its features, such as accessing secure areas of the website. Without these cookies certain services you have asked for cannot be provided.
Category 2: Analytical / Performance Cookies
These cookies collect information about how visitors use a website, for instance which pages visitors go to most often, and if they get error messages from web pages. These cookies don’t collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. It is only used to improve how a website works.
Category 3: Functionality Cookies
These cookies are used to recognise you when you return to our site. This enables us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of language or region).
By using our site, you agree that we can place these types of cookies on your device.
To find out more information about cookies, please visit www.allaboutcookies.org .
10. External Links
Our website contains links to third party or external sites which are not directly related to Offtrack and owned by third parties. It is our goal to link only to reputable and relevant sites to our industry. Please be aware that Offtrack does not monitor and is in no way responsible for the content or privacy practices of any such third party sites. This Policy covers websites owned and controlled by us only. Links to other websites and any information collected by these sites are not covered by this privacy statement.
To ensure that we carry out your instructions accurately, to help improve our service and in the interest of security, we may monitor and/or record: (1) your telephone calls; and (2) customer activities on our site. All recordings are and shall remain our sole property.
12. Updates and Changes
As our privacy statement may change due to developments in the law we encourage you to re-read this from time to time so you are aware of any changes in how we gather and use your personal information. We reserve the right to change our Policy at any time and for any reason. Any changes to this Policy will be either posted on our website, brochure and/or made available on request.
FREQUENTLY ASKED QUESTIONS
How secure is my transaction?
Our online store supplies you with a secure session within our shopping ‘checkout’ process. All credit card numbers are encrypted when the order is placed using state of the art 256 bit SSL encryption and we do not have access to these details. Your credit card numbers, personal information and order information are only decrypted after they reach our order processing computers. This information is not held in clear text on any website or server. You will notice a padlock icon on of your browser when you enter through to the ‘checkout’. This indicates that all information entered in the session is secure.
How safe are my credit card details?
We do not view your credit card details at any time. When making payment in our checkout your credit card payment is automatically processed via a secure payment gateway processor. We do not have access to your credit card details at any stage. SecurePay uses state of the art official Bank Secure Socket Layer (SSL) encryption standard and deposits our payment into our bank account without viewing your card details.
What credit cards can I use on your site?
The following cards can be used at Offtrack: Visa, MasterCard and American Express.
Do I need to be a member to shop/order online?
You don’t need to be a member to shop online on our website. Once you order with us, if you elect to join our mailing list, you will be able to receive up-to-date information with the latest additions and specials that we offer, as well as other benefits including, a quick checkout process, promotions and special discounts.
Do I need a credit card?
No. The following options are available:
• International buyers can only pay credit card or paypal
• We also accept PAYPAL payments.
All prices in our online store include GST and show RRP and our standard or sale price also. 10% GST is payable on Australian orders only and will be removed for international purchases.
Do you convert my total into other currencies?
No. We will bill your credit card in Australian dollars and your card company will convert the charges for you. Your credit card provider will calculate the actual amount.
We reserve the right:
To cancel any order, at which time, we will notify this action by e-mail or phone, using the e-mail address or number/s provided. We will refund the monies paid using the original method received. All orders are subject to availability of stock.
To take reasonable steps to verify that the order and credit details are bona fide.