This policy sets out how and why Pittella Pty Ltd (we, us, or our) collect, use, hold and disclose your personal information (which we call information).
However, this policy does not apply to any information that is not ‘personal information’ as defined in the Privacy Act 1988 (Cth) (Privacy Act) or ‘personal data’ as defined in the European Union General Data Protection Regulations (GDPR), despite us using the term ‘information’ in this policy. Also, any provisions int his policy that deal with GDPR do not apply unless we are bound by the GDPR in respect of your personal data.
We are committed to being transparent about our management of your information and take all reasonable steps to ensure our practices and procedures relating to our activities comply with any applicable requirements in the Privacy Act and GDPR, including complying with this policy.
We do so by striving to adhere to the following principles:
• your information will be collected, stored, used and disclosed in accordance with all applicable privacy laws;
• your information will generally only be used where necessary for us to deliver our products or services or perform other reasonably necessary business functions and activities.
We will not use or disclose your information for purposes unrelated to our business’ services and activities, unless we first obtain your consent or where doing so would not breach applicable privacy laws.
By engaging with our business or by providing your information to us, you consent to our collection, storage, use and disclosure of your information, in accordance with this policy.
Your information is important to us as we may require it in order to conduct our business and provide our products and services to you. We refer to our business activities (including the supply of our products and our ancillary services) as our Products in this policy.
In order to conduct our business and provide our Products most effectively, we will be required to rely on the collection of information that is provided to us. Some of the reasons for why such information may be required include the following:
• to process your orders for our Products, including accepting your orders, arranging for you to create an account with us (whether via our website or otherwise), providing quotes for potential orders, arranging for the delivery of Products (if agreed), liaising with you (and your builders, architects and other advisers) in respect of our Products or any defects in our Products and any similar matters;
• to make our website available to customers to facilitate a customer-friendly platform whereby we can showcase our Products, in which case we will collect information regarding your interaction with our website so we can improve it and to handle enquiries, orders and complaints placed via our website;
• to add value to our services especially when we are dealing with you (or your builders, architects and other advisers) and provide assistance with the selection of our Products, desired finishes and the like;
• to continually enhance and improve our services to our customers and our Product offering, as well as allowing us to notify our customers and those we deal with regarding new Products that are available where we consider they may be interested in those new Products; and
• to comply with all applicable laws and regulations in fulfilling our obligations to our customers and other businesses and persons we deal with.
We refer to the above matters and the other purposes for which we may collect and handle your information as our Activities in this policy. Our Activities also include any functions or purposes that we may specify to you at the time of requesting the information, as well as any other functions or purposes for which you provide us the relevant information.
We may also need information to perform functions that are incidental to, or are otherwise reasonably necessary for us to, operate our business, conduct our Activities or provide our Products.
In order to achieve the above, we rely on you to provide us with accurate information to enable us to provide you with continually improving Products and to conduct our Advertisers.
The types of information we may collect, hold, use or disclose will depend on your interactions with us. Examples of the types of information we collect are set out below.
Information you provide to us directly: we may collect and hold information you provide to us directly. For example, such information may include:
• Contact or demographic information: names (such as a customer’s name who provides their details when purchasing our Products), delivery or correspondence addresses (such as postal or email addresses), phone numbers, dates of birth, nationality, languages and, if you contact us via social media, then we may record your social media account;
• Payment information: bank accounts details, credit or debit card details (such as for customers who provide their credit card details via the website or when Customers intend on creating an account with us), payment history details and associated transaction details; and
• Product information: information regarding a project that we are supplying Products in relation to, such as contact or payment details of any builders, architects or other advisers engaged on behalf of an end customer of our Products, details of the location where our Products may be installed, any specifications provided to us when we consider what Products may be appropriate for a particular job etc.
Sensitive information you provide: We will generally not collect ‘sensitive information’ (as defined in the Privacy Act) from you, unless you provide that information to us directly.
Information from third parties: We may collect information about you from third parties, such as where a builder, architect or adviser provides us with their customer’s details or where us or our insurers are investigating a claim in respect of our Products.
Information we create using your information: We may develop information using your information. For example, where you make a complaint, we may develop and keep a record of the complaint which may contain your information. We may develop information in the form of internal quality assurance reports, evaluative reports regarding our sales target and customer satisfaction data or record of interactions, file notes and/or any recorded phone conversations with you that may be kept for quality assurance purposes.
Information we collect automatically: We may collect information about you automatically when you visit our websites, such as your IP address and device type. Some of this information may be collected using cookies and similar tracking technologies.
Public information: We may collect information from publicly available sources such as ASIC records, credit history details (provided we have your consent to obtain the relevant credit report).
Information we request
Our general practice is to collect information directly from you, as and when required, such as when you complete our forms (such as online forms to create an account, a physical ‘Account application’ form, where you place an order online by filing out your information) and when you contact us expressing a desire to purchase our Products or conduct business with us.
Ordinarily, we are most likely to collect information from you through our website and order/check out pages. We are also to collect information from you during your discussions with us either via, email (i.e. when you email us with your queries), telephone (i.e. when you might call us with your queries), web queries (i.e. when you interact with our website), through online forms, contracts, and/or social media networking platforms (such as Instagram and Facebook).
You have the option not to provide any information that we request. Depending upon what information you do not wish to provide, we may not be able to deal with you or your requests further on a particular matter. For instance, if you make a complaint but refuse to provide your contact information, then we may not be able to process or escalate your complaint. Where you provide us with information on request, we do so on the understanding that you consent to our collection because you have this option to refuse to provide that information.
You may have the option not to identify yourself or identify yourself by a pseudonym. However, this is not generally practical for us as we need to know who you are in order to contact and liaise with you and to process your orders, to ensure that you are authorised to provide credit card information to us and in order to best provide you our Products. For example, if you are a builder or an architect needing our Products to build an apartment building, we will need to know who you are so that we know who we are entering into a contract with, so we can contact you to clarify any information that may have been provided and so that we can take orders on your behalf. We still need your legal name when you create an account with us, otherwise we may not know who to contact in the event of a dispute, we may not know who our customer is in respect of any warranty claims and we will not know who to charge for the Products.
Where we collect information about you from someone other than you, this is generally because it would be unreasonable or impracticable for us to do so.
Information we do not request
Sometimes you may voluntarily provide us with information that we have not requested. If this happens, we may use and disclose the information in order to determine whether we could have collected the information had we requested it. If we consider that we could not have collected the information, then we may either destroy or de-identify that information as soon as reasonably practical where required by law.
Your information may be stored in hard copy, electronically or both. We do not adopt or use any identifiers that a government agency may have assigned to you.
Electronic information may be stored on our computer systems and networks and on our customer relationship management platforms, our accounting platforms and our email platforms. Our digital systems are protected by mechanisms which may include passwords, firewalls, antivirus software, scheduled password changes, internal access limitation processes and internal monitoring, depending on the relevant system.
Where we store your information, we take reasonable steps to ensure it is protected from misuse, interference, loss or unauthorised access, modification or disclosure. However, we cannot guarantee that this will never occur. If a serious data breach occurs, and we believe your information has been compromised, we will assess the breach as soon as we become aware of it and take all reasonable and necessary steps as prescribed under Australian privacy laws (or under GDPR to the extent it applies).
We also take reasonable steps to destroy or permanently de-identify information that we no longer need for any purpose required by law.