3. Collection of Personal Information
3.1 How we collect Personal Information
We collect Personal Information in the ordinary course of our business, which is the provision of goods and services associated with educational events, packages, website content, strategies, workshops and memberships which assist you in growing your business online and offline using social media and event management. Personal Information is collected when you:
(a) contact or correspond with us via email, telephone or via our website;
(b) register to become a member of the MAFIA Academy;
(c) sign up to one of our workshops, events or packages;
(d) join our social media channels;
(e) subscribe to our newsletters or complete surveys and online forms;
(f) purchase or enquire about our goods and services;
(g) seek support in relation to our goods and services; or
(h) make customer service related enquiries. Information will only be collected directly from you unless you authorise another person to provide the information.
3.2 What Personal Information is collected?
The types of Personal Information we collect includes your name, address, telephone number, email, details about your business, payment information, IP address, photographs or video footage of you while attending our events, device identification, your social media details and any additional information you provide to us.
4. How Empowering Events uses Personal Information
4.1 Why we collect Personal Information
We collect your Personal Information for the primary purpose of providing our goods and services to you. We may also use your Personal Information for secondary purposes closely related to the primary purpose, in circumstances where you would reasonably expect such use or disclosure.
4.2 Photography and video footage
Some of our events are recorded for the benefit of members who cannot attend on premises. When we undertake these recordings, you may appear in that footage. We may also live stream and take photographs at our events and you may appear on some of those streams or photographs.
Video footage and photographs may appear on our website, in our M.A.F.I.A. members area, on our social media channels and in other advertisements.
4.3 Direct marketing
Where you provide us with consent to do so (e.g. if you have subscribed to our email lists or have indicated that you are interested in receiving offers or information from us), we send you marketing communications by email about products and services that we feel may be of interest to you.
We (or an appointed third party) may also conduct surveys or market research and may seek other information from you on a periodic basis. These surveys will provide us with information that allows improvement in the type, quality and the manner in which our goods and services are offered to you.
You can opt-out of such communications if you would prefer not to receive them in the future by using the “unsubscribe” facility provided in the communication itself.
5. Cookies and browser analytics
5.1 Cookies, pixels and logs
When you visit our website or engage with us through social media, certain information is collected. This is generally anonymous information and it does not reveal your identity. However, if you are logged into your account some of this information could be associated with you.
The following is the type of information which is collected:
(a) your IP address or proxy server IP address;
(c) the domain name and web pages you access;
(d) the name of your internet service provider may be captured depending on the configuration of your connection;
(e) the date, time and duration of your visit to the website;
(f) the number of times you access our site within any month;
(g) the operating system of your computer or mobile device; and
(h) the technical capabilities of your web browser.
By modifying your browser preferences, you have the choice to accept all cookies, to be notified when a cookie is set, or to reject all cookies. If you choose to reject cookies some parts of our website may not work properly.
5.2 Use of Google Analytics and Tag Manager
The information collected by Google about your use of the website will be transmitted to and stored by Google on servers in the United States.
Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf.
6. Data retention and security
6.1 Security mechanisms we employ
Generally, we store your Personal Information using secure servers protected from unauthorised access, modification and disclosure. However, like most businesses we hold some information on our staff’s computers (such as emails from you) and where necessary as hard copy files (such as printed invoices).
Personal Information that we store or transmit is protected by security and access controls, including username and password authentication, two-factor authentication, and data encryption (such as SSL) where appropriate.
In our dealings with third party service providers, we take care to work with subcontractors and service providers who we believe maintain an acceptable standard of data security compliance.
6.2 How long we keep your Personal Information
We retain your Personal Information for as long as is necessary to provide the goods and services to you, as required for our internal business operations, and to comply with our legal obligations.
If we hold Personal Information about you, and we do not need that information for any purpose, we will take reasonable steps to destroy or de-identify that information, in accordance with the Australian Privacy Principles (APP) and the European Union General Data Protection Regulation (GDPR), unless we are prevented from doing so by law.
Under Australian law, financial records, such as those relating to financial transactions, must be retained for 7 years after the transactions associated with those records are completed.
7. Disclosure of your Personal Information
7.1 Who we share your Personal Information with?
Your Personal Information may be disclosed to:
(a) our employees, a related company and our professional advisers (lawyers, accountants, financial advisers etc.);
(b) regulators and government authorities in connection with our compliance procedures and obligations, including law enforcement agencies to assist in the investigation and prevention of criminal activities;
(c) a third party, in order to enforce or defend our rights, or to address financial or reputational risks;
(d) a rights holder in relation to an allegation of intellectual property infringement;
(e) third party contractors, suppliers and service providers with whom we have a business association, including:
(i) delivery and transportation providers;
(ii) payment gateway providers, such as Discover Global Network, PayPal Holdings Inc. and Stripe Inc.;
(iii) event management platforms, such as Meetup;
(iv) administration service providers;
(v) marketing service providers; and
(vi) information technology service providers including cloud application providers. We will not disclose your Personal Information other than in accordance with this Policy without your consent.
7.2 Offshore transfers
We may disclose your Personal Information to third party contractors, service providers and suppliers with whom we have a business association who operate in the United States and the Philippines.
While we do not otherwise actively disclose your Personal Information to overseas entities, our engagement of service providers, such as those who operate cloud services, may have international data centres and disaster recovery sites. Consequently, these providers may have access to your information offshore. We rely solely on reputable organisations for such cloud services.
7.3 Virtual assistants
Where you engage us to facilitate your engagement of a virtual assistant, we pass on certain Personal Information to our offshore providers. We only pass on information when you request us to engage a virtual assistant on your behalf.
8. Anonymity and use of Pseudonyms
If you contact us with a general enquiry, we may interact with you anonymously or through the use of pseudonyms. However, you are required to provide true and accurate details when requesting the supply of goods or provision of services. You agree you will provide accurate information if we require it.
9. Access to Personal Information and corrections
We endeavour to only hold Personal Information that is accurate, complete and up-to-date. You have the right to make a request to access Personal Information which we hold about you and to request corrections of any errors in that data. To make an access or correction request, contact us using the contact details provided at the end of this Policy.
If you have an account with us, you can access some of the Personal Information that we collect about you. By logging into your account, you can update or correct certain information.
In order to protect your Personal Information, when you contact us, we may require identification from you before releasing the requested information or making the correction.
10. Additional rights for EU residents and citizens
For the purposes of the GDPR, we are a ‘data controller’ of Personal Information. If you’re a citizen or resident of the European Economic Area, the following rights apply to you.
You are entitled to ask us to port your Personal Information (i.e. to transfer in a structured, commonly used and machine-readable format, to you), to erase it, or restrict its processing. You also have rights to object to some processing that is based on our legitimate interests, such as profiling that we perform for the purposes of direct marketing, and, where we have asked for your consent to process your data, to withdraw this consent.
These rights are limited in some situations – for example, we can demonstrate that we have a legal requirement to process your Personal Information. In some instances, this means that we may retain some data even if you withdraw your consent.
Where we require your Personal Information to comply with legal or contractual obligations, then provision of such data is mandatory and if you do not provide it then we will not be able to manage our contractual relationship with you, or to meet obligations placed on us. In those cases, you must provide us with your Personal Information, otherwise the provision of requested Personal Information is optional.
If you have unresolved concerns, you also have the right to complain to data protection authorities. The relevant data protection authority will be the data protection authority in the country:
(a) of your habitual residence;
(b) of your place of work; or
(c) in which you consider the alleged infringement has occurred.
11. Privacy complaints and concerns
Your privacy is important to us. If you have a complaint or concern about our handling of your Personal Information, we ask that you first contact our privacy officer whose contact details are listed below.
12. Contacting Empowering Events
If you have any questions about our privacy practices, wish to make a complaint or have questions regarding the way in which we have been managing your Personal Information, please contact our privacy officer:
Email: [email protected]
Telephone: +61 455 994 423
Post: 1/7 Miller St, Murrarie QLD 4172
13. Variations to this Policy
We will need to change this policy from time to time in order to make sure it stays up to date with the latest legal requirements and any changes to our privacy management practices.
When we do change the policy, we’ll make sure to notify you about such changes, where required. A copy of the latest version of this policy will always be available on this page.