PRIVACY POLICY
Last Updated: 23rd July 2025
1. Introduction
PaperKrane Pty Ltd ("we," "us," "our") respects your privacy and is committed to protecting your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you visit our website, make purchases, or interact with our services.
Our Details:
- Business Name: PaperKrane Pty Ltd
- ABN: 71 613 421 168
- Address: Parcel Locker 10044 92439, 175 Watton Street, Werribee, Victoria, 3030, AUSTRALIA
- Email: contact@paperkrane.com.au
2. What Personal Information We Collect
2.1 Information You Provide
We collect personal information you voluntarily provide, including:
Account Information:
- Name, email address, phone number
- Postal address and billing address
- Date of birth (if required for age verification)
- Account preferences and communication settings
Purchase Information:
- Order history and transaction details
- Payment information (processed securely through third-party providers)
- Shipping and delivery preferences
- Product reviews and ratings
Communication Information:
- Customer service inquiries and correspondence
- Survey responses and feedback
- Marketing preferences and subscriptions
2.2 Information We Collect Automatically
Website Usage Information:
- IP address and device information
- Browser type and version
- Pages visited and time spent on our website
- Referring website and search terms
- Date and time of visits
Transaction Information:
- Purchase amounts and payment methods used
- BNPL service interactions (Afterpay, Klarna, etc.)
- Shipping tracking and delivery confirmation
2.3 Information from Third Parties
We may receive information from:
- Payment processors (credit card companies, PayPal, digital wallets)
- BNPL service providers (Afterpay, Klarna, Zip)
- Social media platforms (if you connect your accounts)
- Marketing partners and analytics providers
- Fraud prevention services
3. Cookies and Similar Technologies
3.1 What Are Cookies
Cookies are small text files stored on your device when you visit our website. We use cookies and similar technologies to enhance your experience and analyze website usage.
3.2 Types of Cookies We Use
Essential Cookies:
- Shopping cart functionality
- User authentication and security
- Payment processing
- Load balancing and website performance
Analytics Cookies:
- Google Analytics (website traffic and user behavior)
- Conversion tracking and performance measurement
- A/B testing and website optimization
Marketing Cookies:
- Advertising personalization
- Social media integration
- Email marketing tracking
- Retargeting and remarketing campaigns
Preference Cookies:
- Language and currency settings
- User interface preferences
- Wishlist and product comparisons
3.3 Third-Party Cookies
Our website may include cookies from:
- Google (Analytics, Ads, reCAPTCHA)
- Facebook/Meta (Pixel tracking)
- Payment providers (Stripe, PayPal)
- BNPL services (Afterpay, Klarna)
- Customer service platforms (Zendesk, Intercom)
3.4 Managing Cookies
You can control cookies through:
- Browser settings (block, delete, or manage cookies)
- Our cookie consent banner
- Opt-out tools provided by advertising networks
- Device settings for mobile applications
Note: Disabling essential cookies may affect website functionality.
4. How We Use Your Personal Information
We use your personal information for the following purposes under the Australian Privacy Principles:
4.1 Primary Purposes
Order Processing and Fulfillment:
- Processing payments and transactions
- Shipping and delivery coordination
- Customer service and support
- Returns and refund processing
Account Management:
- Creating and maintaining user accounts
- Authentication and security
- Preference management
- Order history and tracking
4.2 Secondary Purposes
Marketing and Communications:
- Email newsletters and promotional offers
- Product recommendations and personalization
- Customer surveys and feedback requests
- Social media engagement
Business Operations:
- Website analytics and optimization
- Fraud prevention and security
- Legal compliance and record keeping
- Business planning and improvement
Research and Development:
- Product development and testing
- Market research and analysis
- Customer behavior insights
- Service enhancement
5. How We Share Your Personal Information
5.1 Service Providers
We share information with trusted third parties who help us operate our business:
Payment Processors:
- Credit card companies and banks
- PayPal, Apple Pay, Google Pay, Shop Pay
- BNPL providers (Afterpay, Klarna, Zip)
Logistics Partners:
- Shipping carriers (Australia Post, courier services)
- Fulfillment centers and warehouses
- International shipping partners
Technology Providers:
- Website hosting and cloud storage
- Email marketing platforms
- Customer service tools
- Analytics and tracking services
5.2 Legal Requirements
We may disclose information when required by:
- Australian law or court orders
- Government agencies and regulators
- Law enforcement investigations
- Protection of our legal rights and safety
5.3 Consent-Based Sharing
With your explicit consent, we may share information for:
- Joint marketing campaigns
- Third-party integrations
- Social media features
- Customer referral programs
6. International Data Transfers
6.1 Overseas Recipients
Your personal information may be transferred to countries including:
- United States (cloud storage, analytics, payment processing)
- European Union (customer service, marketing tools)
- New Zealand (regional operations)
- Other countries as applicable
6.2 Cross-Border Transfer Protections
When transferring data internationally, we ensure protection through:
- Contractual safeguards and data processing agreements
- Adequacy determinations under Australian law
- International certification schemes
- Binding corporate rules where applicable
6.3 Third-Party International Transfers
Our service providers may transfer data internationally. We require them to:
- Comply with Australian privacy standards
- Implement appropriate security measures
- Provide equivalent privacy protections
- Notify us of any data breaches
7. Data Security
7.1 Security Measures
We implement reasonable security measures including:
- SSL/TLS encryption for data transmission
- Secure payment processing (PCI DSS compliance)
- Access controls and authentication systems
- Regular security audits and monitoring
- Employee privacy training and confidentiality agreements
7.2 Data Breach Response
In the event of a data breach, we will:
- Assess the risk and take immediate action
- Notify the Office of the Australian Information Commissioner if required
- Inform affected individuals when there's likely risk of serious harm
- Implement remedial measures to prevent future breaches
7.3 Data Retention
We retain personal information for as long as necessary to:
- Fulfill the purposes for which it was collected
- Comply with legal and regulatory requirements
- Resolve disputes and enforce agreements
- Meet business and operational needs
Retention Periods:
- Account information: While account is active plus 7 years
- Transaction records: 7 years for tax and accounting purposes
- Marketing data: Until you unsubscribe or opt-out
- Website analytics: 26 months (Google Analytics default)
8. Your Privacy Rights
Under Australian privacy law, you have the right to:
8.1 Access Your Information
- Request copies of personal information we hold about you
- Obtain details about how we use and disclose your information
- Receive information in a commonly used format
8.2 Correct Your Information
- Update incorrect or outdated personal information
- Complete incomplete records
- Request correction of misleading information
8.3 Opt-Out and Unsubscribe
- Unsubscribe from marketing communications
- Opt-out of data collection for certain purposes
- Withdraw consent where it's the basis for processing
8.4 Complaint Process
- Lodge complaints about our privacy practices
- Request investigation of privacy concerns
- Escalate to the Office of the Australian Information Commissioner
8.5 Account Deletion
- Request deletion of your account and associated data
- Subject to legal retention requirements
- Some information may be retained for legitimate business purposes
9. Children's Privacy
9.1 Age Restrictions
Our services are intended for users aged 18 and above. We do not knowingly:
- Collect personal information from children under 18
- Market products or services to minors
- Process payments from underage users
9.2 Parental Consent
If you are under 18:
- You must have parental or guardian consent to use our services
- Parents/guardians are responsible for monitoring usage
- We may verify age and parental consent
9.3 Children's Data Protection
If we become aware we have collected information from a child under 18 without consent, we will:
- Delete the information promptly
- Terminate any associated accounts
- Notify parents/guardians if possible
10. Marketing and Communications
10.1 Marketing Consent
We will only send marketing communications if you have:
- Opted in during account creation or checkout
- Provided explicit consent for marketing
- Not opted out of receiving communications
10.2 Communication Types
- Email newsletters and product updates
- SMS notifications (with separate consent)
- Push notifications through mobile apps
- Personalized offers and recommendations
10.3 Unsubscribe Options
You can opt-out by:
- Clicking unsubscribe links in emails
- Updating preferences in your account
- Contacting our customer service team
- Replying "STOP" to SMS messages
11. Third-Party Websites and Services
11.1 External Links
Our website may contain links to third-party websites. We are not responsible for:
- Privacy practices of external websites
- Content or services provided by third parties
- Data collection by linked websites
11.2 Social Media Integration
Social media features may collect information about your usage. Please review the privacy policies of:
- Facebook/Instagram
- YouTube
- Other integrated platforms
11.3 Payment Service Privacy
Payment processors have their own privacy policies:
- Shopify Consumer Privacy Policy (incl. Shop Pay)
-
PayPal Privacy Statement
- Apple Pay Privacy Policy
- Afterpay Privacy Policy
-
Google Pay Privacy Notice
12. Updates to This Privacy Policy
12.1 Policy Changes
We may update this Privacy Policy to reflect:
- Changes in our business practices
- New legal requirements
- Technology updates
- Customer feedback
12.2 Notification of Changes
We will notify you of material changes through:
- Email notifications to registered users
- Prominent website notices
- Updated effective date on this policy
- Account dashboard notifications
12.3 Continued Use
Your continued use of our services after policy updates constitutes acceptance of the changes.
13. Contact Us
13.1 Privacy Inquiries
For privacy-related questions, concerns, or requests:
Privacy Officer:
- Email: contact@paperkrane.com.au
- Mail: Privacy Officer, PaperKrane Pty Ltd, Parcel Locker 10044 92439, 175 Watton Street, Werribee, Victoria, 3030, AUSTRALIA
13.2 Response Times
We will respond to privacy requests within:
- 30 days for general inquiries
- 30 days for access requests
- 30 days for correction requests
- 5 business days for urgent matters
13.3 Complaints Process
If you believe we have breached your privacy:
- Contact our Privacy Officer first
- We will investigate and respond within 30 days
- If unsatisfied, you may contact the Office of the Australian Information Commissioner (OAIC)
OAIC Contact Details:
- Website: www.oaic.gov.au
- Phone: 1300 363 992
- Email: enquiries@oaic.gov.au
14. Definitions
Personal Information: Information or opinion about an identified individual, or an individual who is reasonably identifiable.
Sensitive Information: A subset of personal information requiring special protection, including health information, racial/ethnic origin, political opinions, religious beliefs, sexual orientation, criminal records, and biometric information.
Australian Privacy Principles (APPs): The 13 principles in the Privacy Act 1988 that regulate the handling of personal information.
This Privacy Policy was last updated on 23rd July 2025. We encourage you to review this policy regularly to stay informed about how we protect your privacy.