In all cases, we will treat your personal information with no less protection than that provided for by the Australian Privacy Principles set out under the Privacy Amendment (Enhancing Privacy Protection) Act 2012 (Cth) and any other privacy laws that are in force in Australia.
We collect information in two ways:
We may also collect information about you from our website, but this information will only identify who you are if you provide us with your details. for example, if you provide us with your contact details.
When you visit our website, our web server collects the following types of information for statistical purposes:
No attempt is made to identify individual users from this information.
Before we disclose your personal information to an overseas recipient, such as a supplier
We take steps as are reasonable in the circumstances to ensure that the overseas recipient does not breach the Australian Privacy Principles in relation to your personal information.
When you register to become an Oh My Lunch member, in order to use our service, you are required to provide us with your full legal name, full street address and telephone number. You must also provide an email address and password.
Once you are a registered member, you can quickly access our online ordering system using your email address and password. We will store this information for you on our servers. Every time you use our service, we collect information about the caterers and suppliers you select and the orders you place. We may collect additional information about how you use our website and service.
If you contact us by letter, phone, fax or email, we will collect your sender information and may collect the other information you voluntarily disclose to us.
We store your personal information to communicate additional offers you opt in to receive from us. We may use the information:
You may choose to opt-out of receiving any such offers at any time if you so choose.
We store the information you provide to us and the information we collect electronically in our computer databases. Access to our computer servers is controlled by firewalls and security gatekeepers.
We use the personal information about you stored in our member database in various ways. First, the next time you use our service and enter your email address and password, we will call up your information out of our database to make processing your order faster and easier.
Our staff may also have access to your personal information for the purpose of investigating, evaluating and or responding to an Eligible Data Breach.
We do not sell your personal information, or any information that can be identified to you personally, to any third party. We do aggregate information about how our service is used (without specific identification to any particular user or member) to be able to improve our service and make it more responsive to members’ preferences. We also make such aggregate information (without identification to any specific individual), available to our catering affiliates and other relevant affiliates in order to obtain information about products, services, offers and notices, which we believe will be useful and informative to our website users and Oh My Lunch members.
We may also disclose personal information to any person or authority where we are required to by law.
Most browsers will allow you to turn off cookies. If you want to know how to do this, please look at the menu on your browser, or look at the instructions on www.allaboutcookies.org. Please note however, that turning off cookies will restrict your use of our website.
Online advertising we use
We use third party vendor remarketing tracking cookies, including the Google Adwords tracking cookie. This allows us to display relevant ads tailored to you based on your prior visits to our website. THIS COOKIE DOES NOT IN ANYWAY IDENTIFY YOU OR GIVE ACCESS TO YOUR COMPUTER.
The cookie allows us to show you ads relating to that page visited. Google AdWords Remarketing allows us to tailor our marketing to better suit your needs and only display ads that are relevant to you.
We try to ensure that all personal information about you that we collect, use or disclose is accurate, complete and up-to-date.
If you want to obtain access to any personal information and data that we hold about you, or believe any of your personal information that we hold is inaccurate, incomplete or it is not necessary to hold it, you can email us at firstname.lastname@example.org and we will use reasonable efforts to provide it and, if required, correct it.
Upon your request, we will provide you with access to your unique account-related information. In your request, please provide us with your current specific contact information so that we can accurately check our records.
You may at any time, request that we delete your personal information from our database by emailing us at email@example.com. If you need us to delete, correct or amend this data, we will do so within 30 days.
We are committed to ensuring the security of the information we hold about you. We take all reasonable steps to ensure that the information we hold about you is protected from misuse, interference and loss, and from unauthorised access, modification or disclosure. If you have opted out of receiving information from us, we will take reasonable steps to destroy the information and/or ensure that the information is de-identified.
We maintain our servers in a highly secure server environment with 24/7 monitoring, surveillance and support to prevent unauthorized access and data security. Advanced security measures including firewalls, security guards and surveillance are taken to ensure the continued service and protection of our services from natural disasters, intruders and disruptive events.
If you use the Internet to communicate with us, you should be aware of the risks in transmitting information over the Internet. We do not have control over information while in transit over the Internet and we cannot guarantee its security. Any personal information that we no longer require is destroyed. An exception to this may be where records are retained to comply with legal requirements.
Your information is password protected. In order to maintain this protection, we caution you not to provide your password to anyone. We do not give your password to anyone. We recommend that, if you share your computer with other people, you close your browser window when your session is completed. Signing off will protect your information if you share a computer with someone else or if you are using a computer in a public place like a library.
We have procedures in place to ensure that an eligible data breach is identified and dealt with as required by the Privacy Act Notifiable Data Breach scheme. An “Eligible Data Breach” occurs where personal information is lost in circumstances where access to or unauthorised disclosure of the information is likely to occur and a reasonable person would conclude that the access or disclosure would be likely to result in serious harm to any of the individuals to whom the information relates.
When contacting us, please provide us as much detail as possible in relation to your complaint.
We will take any privacy complaint seriously and any complaint will be assessed by an appropriate person with the aim of resolving any issue in a timely and efficient manner. We request that you cooperate with us during this process and provide us with any relevant information that we may need.
If you are not satisfied with the outcome of our assessment of your complaint, you may wish to contact the Office of the Australian Information Commissioner.