David Gregory trading as Small Business Websites (A.B.N. 879 262 55 180) (we, us, our, or Small Business Websites) recognises and values the protection of your personal information.
We are aware of our obligations under domestic and international laws and we will ensure that we fulfil our obligations under the applicable laws.
We also recognise that you may have concerns about our collection of your personal information via our website, which is located at
Lawful basis for processing your information
We will only collect and process personal information about you where we have lawful basis to do so. Lawful basis includes consent (where you have given consent), contract (where processing is necessary for the performance of a contract with you) and legitimate interests
(including security threats or frauds, compliance with applicable laws, and enabling us to administer our business).
Should you withdraw or decline your consent, please contact our Privacy Officer at firstname.lastname@example.org as soon as possible. If you retract your consent, you acknowledge and agree that failure to provide certain types of personal information may not give you access to the full functionality of the Website.
Information we collect from you
From time to time, we may ask you to supply personal information such as your name, address, profession or occupation, telephone number or e-mail address and Skype handle. You may also supply us with your personal information if you register for any paid services and if you use the contact form on our Website. However, will not, under any circumstances,
request or collect any information from you that may disclose your: political, religious or philosophical beliefs or affiliations; health and sexuality; racial or ethnic origin; or criminal convictions.
Occasionally, we may conduct surveys or market research and in doing so, we may seek other information from you. This will provide us with information that allows us to improve the type and quality of services offered to you, and the manner in which those services are offered to you.
We may also request personal information from you in order to supply you with our paid services, including your billing or residential address (for GST purposes if you are an Australian resident).
Personal information via the Websites
Advertising and Analytics
Our Website uses Google Analytics, a service which transmits Website traffic data to Google servers located at: https://www.google.com/about/datacenters/inside/locations/index.html.
Occasionally, we may run competitions or offer additional benefits to you and we may ask you to provide us with your personal details for these purposes. It is completely up to you if you wish to provide us with this information. However, if you choose not to, we may not be able to contact you or give you access to the additional benefits.
Of course, you may opt out of these additional communications at any time by contacting us via the form located here.
Use and disclosure of your personal information
Your personal information will be used for the following primary purposes: to ensure the proper functioning of the Website and the Small Business Websites Business; and to provide any services to you; to assist us with our marketing, planning, product development and research requirements. We will not use or disclose personal information that could be used to identify an individual member in any circumstances except: to ensure the proper functioning of the Website and the Small Business Websites business; to provide any services to you; to communicate promotional offers and special events to you; where the law requires us, or authorises us to do so; or where you have given express consent to us for an agreed purpose.
We will not sell, distribute, licence, disclose, share or pass your personal information onto any third parties, other than those who are contracted to us to keep the information confidential whether subject to a statute or a scheme which imposes similar restrictions to the National Privacy Principles contained in the Privacy Act 1988 (Cth) regarding the handling of personal information.
Sharing of your personal information
We may occasionally hire service providers to provide services on our behalf, including but not limited to handling customer support enquiries, processing transactions or updating the Website. Those service providers will be permitted to obtain only the personal information they need to deliver the service. We will only disclose personal information to an unrelated third party with your consent. Apart from such circumstances, we may disclose personal information in special situations where we have reason to believe that doing so is necessary to identify, contact or bring legal action against anyone damaging, injuring or interfering (intentionally or unintentionally) with our rights or property, other Website users or anyone else who could be harmed by such activities.
We may also disclose personal information as required by law.
In the event that we sell or buy businesses or their assets, or engage in transfers, acquisitions, mergers, restructurings, changes of control and other similar transactions, customer information is generally one of the transferable business assets. Thus, your personal information may be subject to such a transfer. In the unlikely event of insolvency, personal information may be transferred to a trustee or debtor in possession and then to a subsequent purchaser. If you voluntarily provide information in discussion forums, webinars, or other publicly accessible areas of the Website, the information can be viewed and therefore used by others. We advise users not to disclose contact information that they do not wish to have publicly available. We are not responsible for personal information you choose to submit publicly.
Security of personal information No information transmitted over the Internet can be guaranteed to be completely secure. Although we will endeavour to protect your personal information as best as possible, we cannot guarantee the security of any information exchanged between us. The transmission and exchange of information is carried out at your own risk. You must do what you reasonably can to ensure the security of your personal information. It is your obligation that you protect yourself against unauthorised access to your password and to your computer. Please log out of the Website when you have finished using a shared computer. Be wary of including sensitive information in your emails to us as they are not necessarily secure against interception. We will not ask for passwords in an email and you should assume that if you get such a request, it must be fraudulent.
We have processes in place to ensure the security of your personal information. We have physical, electronic, and managerial procedures to help safeguard and prevent unauthorised access, maintain data security, and correctly use your information. We do not store your credit card information and instead submit credit card information directly to the payment gateway for immediate processing.
Note that no information transmitted over the Internet can be guaranteed to be completely secure. However, we will endeavour to protect your personal information as best as possible but we cannot guarantee the security of any information that you transmit to us, or receive from us. The transmission and exchange of information is carried out at your own risk.
We have obligations under the Privacy Act 1988 (Cth) to notify you if you are affected by an eligible data breach. We will take all reasonable precautions to take remedial action to prevent such an event. However, as we cannot guarantee that remedial action will be sufficient to prevent all instances of a breach, we will take steps to notify you of an eligible data breach as soon as practicable, or no later than 72 hours (where feasible) for EU citizens, and provide recommendations as to what steps you should take to mitigate any serious loss or damage. Your choices and obligations Accuracy and quality of personal information
We will take all steps reasonably necessary to ensure that all information requested from you is kept accurate, up to date and complete. Access to your personal information Australian Privacy Principle 12 of the Privacy Act 1988 (Cth) allows you to get access to, and correct, the personal information we hold about you in certain circumstances. If you would like to obtain such access, please contact our Privacy Officer at
prejudice those negotiations; prejudice enforcement related activities conducted by, or on behalf of, an enforcement body; reveal evaluative information generated within the Small Business Websites business in connection with a commercially sensitive decision-making process. We will also refuse access where the personal information relates to existing or anticipated legal proceedings, and the information would not be accessible by the process of discovery in those proceedings. Further, we will refuse access where your request is frivolous or vexatious, and where we reasonably believe that: giving access would pose a serious threat to the life, health or safety of any individual, or to public health or public safety; unlawful activity, or misconduct of a serious nature, is being or may be engaged in against Small Business Websites and giving access would be likely to prejudice the taking of appropriate action in relation to that matter. If we refuse to give you access we will provide you with reasons for our refusal, unless doing so would be unreasonable in the circumstances. We will also take reasonable steps to give you access in a way that meets your needs without giving rise to the reasons of our refusal. Further, we will provide details of how you may make a complaint about our decision.
Correction of your personal information
The accuracy of the personal information we have requested from you is important to us. Should you suspect, or become aware of, that personal information we hold as a result of having requested it from you is inaccurate, out of date, incomplete or misleading, please contact our Privacy Officer at email@example.com. We will deal with all requests for correction of personal information as quickly as possible, but no later than 30 calendar days from the date of your request (unless any complexities arise). Requests relating to a large amount of information, or information which is not currently in use, may require further time before a response can be given. If we refuse to change the personal information as you request, we will provide you with reasons for our refusal, unless doing so would be unreasonable in the circumstances. We will also provide details of how you may make a complaint about our decision. Further, in case of our refusal, you may request that we take reasonable steps to associate, with the relevant information, a statement that you view it as inaccurate, out of date, incomplete or misleading. In the case we have corrected personal information about you, you may request that we take reasonable steps to give notice of the correction to any third party to which we have disclosed the inaccurate, out of date, incomplete or misleading personal information.
Removal of your personal information
EU citizens are entitled to the right to erasure of personal information in certain circumstances, including but not limited to where the information is no longer necessary for the purpose for which it was collected, or where the EU citizen withdraws their consent and there is no other legal ground for processing their personal information. Please contact our Privacy Officer at firstname.lastname@example.org to discuss your request to remove
your personal information. EU citizens acknowledge and agree that Small Business Websites may exercise any of the exceptions to the right of erasure, specifically in cases where data processing is necessary to exercise the right of freedom of expression and information. Disposal of personal information no longer required We retain information for as long as required, allowed or we believe it useful, but do not undertake retention obligations. We may dispose of information in our discretion without notice, subject to applicable law that specifically requires the handling or retention of information. You must keep your own, separate back-up records.
Transfer out of Australia
The Website is currently hosted in Australia by Crucial Paradigm Pty Ltd. However, we may choose to set up more servers in countries other than Australia in the future and we may transfer all data on the Website (including all personal information) to our hosting service providers and data centres who may be located overseas, as selected by Small Business Websites in its sole discretion. You hereby expressly and voluntarily grant your informed consent to such transfers.
Unsubscribing from our e-mail database
Please send us an e-mail to email@example.com with “UNSUBSCRIBE” typed into the subject line of the e-mail if you wish to unsubscribe from our e-mail database. Alternatively, you may click the “UNSUBSCRIBE” link included in each e-mail sent to you.
Commissioner’s website http://www.oaic.gov.au for further information about privacy in general.