AUSTRALIA CANNABIS AGENCY LTD
PRIVACY POLICY
Effective date: July 1, 2023
Last updated: July 7, 2023
| The purpose of this Privacy Policy is to inform the visitor and of our website https://cannabis.org.au/, as well as registered members of ACA as to the information we collect, what we do with this information, and how your information is protected. This Privacy Policy will outline our information administration practises in relation to the information we acquire at Australia Cannabis Agency Ltd (ACA) and related services. At all times, ACA strives to uphold the privacy of individuals and abides by the Australian Privacy Principles set out in the Privacy Act 1988 (Commonwealth). | |
| Privacy Policy Consent | By visiting our website and/or registering as a member of ACA, you consent to the Privacy Policy and our information administration practices. If you disagree with or are not comfortable with any aspect of our Privacy Policy, you should immediately cease the use of our website or being a member of ACA. |
| Changes to the Privacy Policy | We reserve the right to alter and/or modify this Privacy Policy at any time. Please review this policy periodically in case of any changes. If any significant or substantive Privacy Policy amendments are made, we will notify you by publishing a notice on the website or by email. Accordingly, whenever you access our website, you should check the date of this Privacy Policy and review any changes since the last version. |
| Who Does the Privacy Policy Apply To? | This Privacy Policy applies to users who use or access our website and registered user of ACA. |
| What Personal Information Do We Collect? | The information that we may collect includes, but is not limited to: Contact Information: information which you provide when corresponding with us by phone or email or social media such as your name, address, email address, phone number, social media handles. Membership Information: information which you provide for the purpose of registration of membership including your name and username, contact details (business or personal), job title, office location, and any other information related to your membership. Identification Information: Full name, date of birth, age, nationality, signature, gender, phone number, home address, email, utility bills, driver’s license details, national identity card details, photograph identification cards. Financial Information: credit or debit card detail and bank account information used to register or renew your membership. Personal Information: Health, religious beliefs or affiliations, philosophical beliefs, criminal record, ethnic origin. Technical Information: Internet Protocol (IP) address used to connect your computer or device to the internet, browser type and version, time zone setting, operating system and platform; Information about your visit: including pages of our website that you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information, and any phone number or email address used to contact our support, and your location information. |
| Why Do We Collect This Information? | To Create a Better Experience for Our MembersThe collection of data will allow us update and improve our website that will better meet our members’ needs. To Protect Our Members The collection of transaction information will allow us to identify any suspicious activity that may lead to fraud or loss of funds. This may include enhancing security, combating spam and malware devices, and identifying and combating botting programs. Devoid of your personal information, it will be difficult for us to ensure the security of our service. To Comply with Regulatory Requirements The services offered by us may be subject to local and international regulations which require us to collect your personal information. Information collected may be used to maintain compliance with Know Your Customer as well as any other regulations that are legislated in the future. To Enforce our Terms and Conditions It is important for us to regulate its services and its customers relating to the prevention and mitigation any potentially prohibited activities, enforcing our agreements with third parties, and violations of our terms and conditions. If we are unable to process user information for these reasons, the consequence is the termination of your membership as we cannot perform our services in accordance with our terms. Maintain your Registration as a Member This will allow you to access your account safely and securely whenever and wherever you are. We also use your data to notify you about changes to our membership service, respond to your questions and provide information related to our membership services. Ensure Quality Control We store user information for quality control and staff training, to ensure we provide users with accurate information. We also use your information to administer our website and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes. Marketing Activities We may send you marketing or promotional offers to inform you of events hosted by us or our partners or third parties, to deliver targeted marketing, and to provide you with promotional offers based on your communication preferences. We use information relating to your usage of our website and contact information to provide a better marketing experience, as well as to measure or understand the effectiveness of advertising we serve to you. |
| Who Will We Share Your Information With? | Information that we collect may or may not be used or disclosed: To persons the member has expressly authorised or consented; To our associated partners, suppliers, and sub-contractors, which include, but are not limited to, professional advisors, organisations, and licensing authority for the performance of obligations arising from your membership, or any other contract we enter into with them or to provide you with the information and membership services that you request from us; For the purposes of complying with legal obligations or requirements; In response to any enquiries where necessary; and All other matters, services or engagements to the maximum extent permitted by law. |
| How Is Your Information Protected? | We consider our user privacy to be of great importance. That is why we have implemented multiple security measures to ensure that client data is secure, free from unauthorised access, alteration, disclosure, and destruction. For example, we implement the following security measures: Security procedures within our office(s); IT security procedures including password protection, site monitoring, firewalls; and Mandatory confidentiality guidelines for all staff within the business. However, despite the measures we have in place, data protection is never completely secure. Whilst we cannot guarantee the security of your personal information, we will never sell or rent your personal information to third parties without your opt-in consent. |
| Do we use cookies? | Cookies are small files which a website uses to identify you when you come back to the site and to store details about your use of the site. Cookies are not malicious programs that access or damage your computer. Most web browsers automatically accept cookies, but you can choose to reject cookies by changing your browser settings. However, this may prevent you from taking full advantage of our websites. ACA and our authorised third parties, may use cookies, and/or other tools to store and sometimes track information, such as analysing website traffic to help us provide a better website visitor experience. We may also collect certain information such as browser type, operating system, IP address, etc. This information is used in an aggregated manner to analyse how people use our site, such that we can improve our service. In addition, cookies may be used to serve relevant ads to website visitors through third party services. These ads may appear on this website or other websites you visit. |
| Obtaining Information Through Third Party Sources | We will occasionally obtain information about you through third party. Information will only be obtained as required permitted by applicable law. Examples of this include public databases and social media platforms. |
| Automatically Collected Data | We receive and store certain types of data whenever you interact with our website and services. Data collected automatically includes any category listed under personal usage information. |
| Why We Share Personal Information with Other Parties | We will never sell or rent your personal information. We will only share your information in the following circumstances: We share your information with third party identity verification services to prevent fraud. We share this information to confirm your identity with relevant public records to prevent fraud. These third-party services will store your information; however, they will only use this information for purposes of identity verification. We may share your information with affiliated service providers. These affiliated services providers may include debt collection service agents, marketing firms, and technology services. All affiliated service providers are contracted to solely use this information for purposes that affiliate with us. We will share your information with the licensing agents or authority if required. We may share your information with law enforcement officials or other entities when required to do so under applicable law. We may share your information with law enforcement, officials, or other third parties when we are compelled to do so by a subpoena, court order, or similar legal procedure, or when we believe in good faith that the disclosure of personal information is necessary to prevent physical harm or financial loss, to report suspected illegal activity or to investigate violations of our Terms and Conditions or any other applicable policies. |
| How We Protect and Store Personal Information | We may hold sensitive information in our facilities or service providers located worldwide. We protect your personal information by maintaining physical, electronic, and procedural safeguards in compliance with the applicable laws and regulations. We cannot guarantee that loss, misuse, unauthorised acquisition, or alteration of your data will not occur. Please note that the client plays a critical role in ensuring their own personal information. Furthermore, we cannot ensure or warrant the security or confidentiality of information you transmit to us or receive from us by Internet or wireless connection, including email, phone, or SMS, since we have no way of protecting that information once it leaves and until it reaches us. If you have reason to believe that your data is no longer secure, please contact us at the email address, mailing address or telephone number listed at the end of this Privacy Policy. |
| Personal Information Rights | You have a right to access, correct, object, and delete personal information. You have a right of access to the personal information that we hold about you under Australian data protection legislation, and to some related information. You can also require any inaccurate personal information to be corrected or deleted. You can object to our use of your personal information at any time and you may have the right to object to our processing of some or all your personal information (and require them to be deleted) in some other circumstances. If you wish to exercise any of these rights, please contact us as set out below. |
| How You Can Access or Change Personal Information | You are entitled to review, correct, or amend your personal information, or to delete that information where it is inaccurate. You may do this by contacting us at info@cannabis.org.au. If your account is closed or terminated, we will keep your account information in our database for at least seven years for regulatory purposes. This ensures that those who are attempting to avoid fraud cannot achieve this by simply closing or terminating their account. When your account is closed or terminated, your information will not be used by us for any further purposes, including being shared to third parties. |
| General Data Protection Regulations (GDPR) | The GDPR apply to organisations who process data in the EU as well as organisations that offer goods or services to or monitors the behaviour of the people inside the EU. The GDPR applies to all information that can directly or indirectly influence an individual. We have prepared ourselves for the General Data Protection Regulations by providing information as to when our data is deleted, have provided a transparent overview of our use of the personal information it has collected, and detailed how you can exercise your privacy rights. European Union Residents have the following rights: You will have the right to withdraw your consent to process your personal information. You have a right to request that we provide you with a copy of your personal information held by us. This information will be provided without undue delay subject to some fee associated with gathering of the information (as permitted by law), unless such provision adversely affects the rights and freedoms of others. You have the right to request us to update any of your personal information that you believe incorrect or inaccurate. Right to Erasure You have the right to request erasure of your personal information that: is no longer necessary in relation to the purposes for which it was collected or otherwise processed; was collected in relation to processing that you previously consented, but later withdraw such consent; or was collected in relation to processing activities to which you object, and there are no overriding legitimate grounds for our processing. Right to Data Portability If we process your personal information based on an agreement with you or based on your consent, or the processing is carried out by automated means, you may request to receive your personal information in a structured, commonly used and machine-readable format, and to have us transfer your personal information directly to another “controller”, where technically feasible, unless exercise of this right adversely affects the rights and freedoms of others. A “controller” Is a natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of your personal information. Right to Restriction of or Processing You have the right to restrict or object to us processing your personal information where one of the following applies: You contest the accuracy of your personal information that we processed. In such instances, we will restrict processing during the period necessary for us to verify the accuracy of your personal information. The processing is unlawful, and you oppose the erasure of your personal information and request the restriction of its use instead. We no longer need your personal information for the purposes of the processing, but it is required by you to establish, exercise or defence of legal claims. You have objected to processing, pending the verification. Restricted Personal Information shall only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest. We will inform you if the restriction is lifted. Notification of Erasure, Rectification and Restriction We will communicate any rectification or erasure of your personal information or restriction of processing to each recipient to whom your personal information has been disclosed, unless this proves impossible or involves disproportionate effort. We will inform you about those recipients if you request this information. Right to Object to Processing Where the processing of your personal information is based on consent, contract or legitimate interests you may restrict or object, at any time, to the processing of your personal information as permitted by applicable law. We can continue to process your personal information if it is necessary for the defence of legal claims, or for any other exceptions permitted by applicable law. Automated individual decision-making and profiling You have the right not to be subject to a decision based solely on automated processing of your personal information, including profiling, which produces legal or similarly significant effects on you, save for the exceptions applicable under relevant data protection laws. If you believe we have infringed your rights, we kindly request that you contact prior to lodging a complaint with the relevant authorities so that we may attempt to resolve the dispute. Please contact us at info@cannabis.org.au. |
| CONTACT US | If you have an enquiry regarding our Privacy Policy surrounding personal information, you can contact us at info@cannabis.org.au. |