This Privacy Policy explains how Global Peptides (we, us, our) collects, uses, stores, discloses and protects personal information in connection with our website globalpetides.com.au, our products and services, and our communications. We are bound by the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). By using our site or providing personal information to us you accept the practices described in this Policy.
Scope
- This Policy applies to all personal information collected by Global Peptides in Australia, including via our website, phone, email, SMS, or in person.
- It does not apply to de-identified or aggregated data that cannot identify an individual.
Personal information we collect We may collect personal information reasonably necessary for our functions and services, including:
- Identity and contact details: name, postal address, email, phone number, delivery address.
- Account and transaction information: order history, products purchased, payment details (we do not store full credit card details), billing address, refunds and returns history.
- Communications: customer service correspondence, enquiries, complaints, marketing consents.
- Technical and usage data: IP address, device identifiers, browser type, referrer URL, pages visited, cookies and analytics data.
- SMS/Mobile: mobile number and SMS opt-in/out status for transactional messages and marketing (originator opt-in data).
- Any other information you voluntarily provide (e.g. medical details where you choose to disclose them for a permitted purpose).
How we collect personal information
- Directly from you when you place orders, create an account, subscribe to communications, contact us, or participate in surveys.
- Automatically when you use our website (cookies, analytics).
- From third parties where you have consented or where permitted by law (payment processors, identity verification services, delivery partners, marketing providers).
- We do not knowingly collect personal information from children under 16. If we learn we have collected information from a child without parental consent we will take steps to delete it.
Purposes of collection and legal basis We collect and use personal information for purposes including:
- Fulfilling orders, payment processing, delivery and returns.
- Account creation, authentication and administration.
- Customer service, support and dispute resolution.
- Marketing (where you have consented), promotions and surveys.
- Fraud detection, risk management and legal compliance.
- Improving and personalising our website, services and product offerings.
- Complying with legal and regulatory obligations. We rely on consent, contractual necessity, legitimate interests and legal obligations as the lawful bases for processing where applicable under Australian law.
Disclosure to third parties We may disclose personal information to:
- Service providers who assist with payment processing, hosting, IT services, order fulfilment, delivery (e.g. Australia Post and courier partners), analytics, email/SMS delivery and marketing — including providers overseas.
- Professional advisers (legal, accounting) and auditors.
- Law enforcement, government agencies or regulators when required by law.
- Successors in the event of a merger, acquisition or sale of our business (subject to confidentiality and protections).
- We do not sell your personal information to third parties.
SMS/text message opt-in data
Text message originator opt-in data will not be shared with third parties except for our SMS/telecommunications providers and aggregators strictly for the purpose of delivering messages and managing opt-in/opt-out status.
Overseas disclosures
- Some service providers we use may be located overseas (e.g. hosting, analytics, payment gateways). Where we transfer personal information overseas we will:
- take reasonable steps to ensure that the recipient protects information in a manner consistent with the APPs; and/or
- rely on contractual protections, standard contractual clauses or other appropriate safeguards.
- You can request details of countries where your personal information may be sent by contacting us (see Contact).
Cookies, analytics and tracking
- We use cookies and similar technologies to operate the website, remember preferences, secure the site, analyse usage and improve user experience.
- Third-party analytics and advertising services (if used) may collect information about visits and activity across sites. You can manage cookie preferences via our cookie banner and your browser settings.
- Cookie-free options are limited: disabling cookies may affect functionality such as shopping cart and login.
Marketing and direct communications
- We will only send marketing communications where you have consented or where permitted by law. You may opt out at any time by:
- following the unsubscribe link in emails;
- replying STOP to SMS messages; or
- contacting us via the details below.
- We will respect your communication preferences and keep marketing to a reasonable frequency.
Security
We use industry-standard technical and organisational measures to protect personal information from misuse, interference, loss, unauthorised access, modification or disclosure. These include encryption (SSL/TLS), secure servers, access controls and staff training.
While we strive to protect data, no internet or electronic storage is completely secure. We cannot guarantee absolute security.
Data retention
- We retain personal information for as long as required for the purposes for which it was collected, to meet legal, tax and accounting obligations, to resolve disputes, and to enforce our agreements.
- When no longer required we will securely destroy or de-identify the information.
Access and correction
- You have the right to request access to personal information we hold about you and to request correction of inaccurate information.
- Requests should be made in writing to our Privacy Officer (see Contact). We will respond within a reasonable period and in accordance with the Privacy Act. We may charge a reasonable fee for searches and provision of copies, if permitted by law.
Complaints and data breaches
- If you have a privacy complaint, contact our Privacy Officer so we can investigate and try to resolve it promptly.
- If you remain dissatisfied you may contact the Office of the Australian Information Commissioner (OAIC).
- In the event of an eligible data breach we will comply with the Notifiable Data Breaches scheme and notify affected individuals and the OAIC as required.
Automated decision-making
We may use automated tools for fraud detection, order verification and marketing personalisation. Where an automated decision has a legal or significant effect on you, you can contact us to request review.
Third-party links and services
Our website may contain links to other sites. This Policy does not apply to those sites; we encourage you to read their privacy policies before providing personal information.
Special category or sensitive information
We generally do not collect sensitive information (e.g. health data, racial/ethnic origin) unless you voluntarily provide it and we have a lawful reason to collect it. If collected, we will only use it for the purpose it was provided and with your consent unless otherwise required by law.
Children
Our services are not intended for children under 16. We do not knowingly collect personal information from minors. If we become aware we have done so, we will delete it.
Changes to this Policy
We may update this Policy from time to time. The “Last updated” date at the end reflects the current version. Material changes will be notified on our website or by direct communication where appropriate.
Contact us / Privacy Officer
- For questions, access/correction requests, complaints or more information about this Policy, contact:
- Privacy Officer — Global Peptides
- Email: privacy@globalpetides.com.au or support@globalpetides.com.au
- We aim to acknowledge and respond to privacy enquiries within 5 business days.
If you are not satisfied with our response you may contact the Office of the Australian Information Commissioner: www.oaic.gov.au