PRIVACY POLICY

Last Updated: 23rd July 2025

1. Introduction

PaperKrane Pty Ltd ("we," "us," "our") respects your privacy and is committed to protecting your personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you visit our website, make purchases, or interact with our services.

Our Details:

  • Business Name: PaperKrane Pty Ltd
  • ABN: 71 613 421 168
  • Address: Parcel Locker 10044 92439, 175 Watton Street, Werribee, Victoria, 3030, AUSTRALIA
  • Email: contact@paperkrane.com.au

2. What Personal Information We Collect

2.1 Information You Provide

We collect personal information you voluntarily provide, including:

Account Information:

  • Name, email address, phone number
  • Postal address and billing address
  • Date of birth (if required for age verification)
  • Account preferences and communication settings

Purchase Information:

  • Order history and transaction details
  • Payment information (processed securely through third-party providers)
  • Shipping and delivery preferences
  • Product reviews and ratings

Communication Information:

  • Customer service inquiries and correspondence
  • Survey responses and feedback
  • Marketing preferences and subscriptions

2.2 Information We Collect Automatically

Website Usage Information:

  • IP address and device information
  • Browser type and version
  • Pages visited and time spent on our website
  • Referring website and search terms
  • Date and time of visits

Transaction Information:

  • Purchase amounts and payment methods used
  • BNPL service interactions (Afterpay, Klarna, etc.)
  • Shipping tracking and delivery confirmation

2.3 Information from Third Parties

We may receive information from:

  • Payment processors (credit card companies, PayPal, digital wallets)
  • BNPL service providers (Afterpay, Klarna, Zip)
  • Social media platforms (if you connect your accounts)
  • Marketing partners and analytics providers
  • Fraud prevention services

3. Cookies and Similar Technologies

3.1 What Are Cookies

Cookies are small text files stored on your device when you visit our website. We use cookies and similar technologies to enhance your experience and analyze website usage.

3.2 Types of Cookies We Use

Essential Cookies:

  • Shopping cart functionality
  • User authentication and security
  • Payment processing
  • Load balancing and website performance

Analytics Cookies:

  • Google Analytics (website traffic and user behavior)
  • Conversion tracking and performance measurement
  • A/B testing and website optimization

Marketing Cookies:

  • Advertising personalization
  • Social media integration
  • Email marketing tracking
  • Retargeting and remarketing campaigns

Preference Cookies:

  • Language and currency settings
  • User interface preferences
  • Wishlist and product comparisons

3.3 Third-Party Cookies

Our website may include cookies from:

  • Google (Analytics, Ads, reCAPTCHA)
  • Facebook/Meta (Pixel tracking)
  • Payment providers (Stripe, PayPal)
  • BNPL services (Afterpay, Klarna)
  • Customer service platforms (Zendesk, Intercom)

3.4 Managing Cookies

You can control cookies through:

  • Browser settings (block, delete, or manage cookies)
  • Our cookie consent banner
  • Opt-out tools provided by advertising networks
  • Device settings for mobile applications

Note: Disabling essential cookies may affect website functionality.

4. How We Use Your Personal Information

We use your personal information for the following purposes under the Australian Privacy Principles:

4.1 Primary Purposes

Order Processing and Fulfillment:

  • Processing payments and transactions
  • Shipping and delivery coordination
  • Customer service and support
  • Returns and refund processing

Account Management:

  • Creating and maintaining user accounts
  • Authentication and security
  • Preference management
  • Order history and tracking

4.2 Secondary Purposes

Marketing and Communications:

  • Email newsletters and promotional offers
  • Product recommendations and personalization
  • Customer surveys and feedback requests
  • Social media engagement

Business Operations:

  • Website analytics and optimization
  • Fraud prevention and security
  • Legal compliance and record keeping
  • Business planning and improvement

Research and Development:

  • Product development and testing
  • Market research and analysis
  • Customer behavior insights
  • Service enhancement

5. How We Share Your Personal Information

5.1 Service Providers

We share information with trusted third parties who help us operate our business:

Payment Processors:

  • Credit card companies and banks
  • PayPal, Apple Pay, Google Pay, Shop Pay
  • BNPL providers (Afterpay, Klarna, Zip)

Logistics Partners:

  • Shipping carriers (Australia Post, courier services)
  • Fulfillment centers and warehouses
  • International shipping partners

Technology Providers:

  • Website hosting and cloud storage
  • Email marketing platforms
  • Customer service tools
  • Analytics and tracking services

5.2 Legal Requirements

We may disclose information when required by:

  • Australian law or court orders
  • Government agencies and regulators
  • Law enforcement investigations
  • Protection of our legal rights and safety

5.3 Consent-Based Sharing

With your explicit consent, we may share information for:

  • Joint marketing campaigns
  • Third-party integrations
  • Social media features
  • Customer referral programs

6. International Data Transfers

6.1 Overseas Recipients

Your personal information may be transferred to countries including:

  • United States (cloud storage, analytics, payment processing)
  • European Union (customer service, marketing tools)
  • New Zealand (regional operations)
  • Other countries as applicable

6.2 Cross-Border Transfer Protections

When transferring data internationally, we ensure protection through:

  • Contractual safeguards and data processing agreements
  • Adequacy determinations under Australian law
  • International certification schemes
  • Binding corporate rules where applicable

6.3 Third-Party International Transfers

Our service providers may transfer data internationally. We require them to:

  • Comply with Australian privacy standards
  • Implement appropriate security measures
  • Provide equivalent privacy protections
  • Notify us of any data breaches

7. Data Security

7.1 Security Measures

We implement reasonable security measures including:

  • SSL/TLS encryption for data transmission
  • Secure payment processing (PCI DSS compliance)
  • Access controls and authentication systems
  • Regular security audits and monitoring
  • Employee privacy training and confidentiality agreements

7.2 Data Breach Response

In the event of a data breach, we will:

  • Assess the risk and take immediate action
  • Notify the Office of the Australian Information Commissioner if required
  • Inform affected individuals when there's likely risk of serious harm
  • Implement remedial measures to prevent future breaches

7.3 Data Retention

We retain personal information for as long as necessary to:

  • Fulfill the purposes for which it was collected
  • Comply with legal and regulatory requirements
  • Resolve disputes and enforce agreements
  • Meet business and operational needs

Retention Periods:

  • Account information: While account is active plus 7 years
  • Transaction records: 7 years for tax and accounting purposes
  • Marketing data: Until you unsubscribe or opt-out
  • Website analytics: 26 months (Google Analytics default)

8. Your Privacy Rights

Under Australian privacy law, you have the right to:

8.1 Access Your Information

  • Request copies of personal information we hold about you
  • Obtain details about how we use and disclose your information
  • Receive information in a commonly used format

8.2 Correct Your Information

  • Update incorrect or outdated personal information
  • Complete incomplete records
  • Request correction of misleading information

8.3 Opt-Out and Unsubscribe

  • Unsubscribe from marketing communications
  • Opt-out of data collection for certain purposes
  • Withdraw consent where it's the basis for processing

8.4 Complaint Process

  • Lodge complaints about our privacy practices
  • Request investigation of privacy concerns
  • Escalate to the Office of the Australian Information Commissioner

8.5 Account Deletion

  • Request deletion of your account and associated data
  • Subject to legal retention requirements
  • Some information may be retained for legitimate business purposes

9. Children's Privacy

9.1 Age Restrictions

Our services are intended for users aged 18 and above. We do not knowingly:

  • Collect personal information from children under 18
  • Market products or services to minors
  • Process payments from underage users

9.2 Parental Consent

If you are under 18:

  • You must have parental or guardian consent to use our services
  • Parents/guardians are responsible for monitoring usage
  • We may verify age and parental consent

9.3 Children's Data Protection

If we become aware we have collected information from a child under 18 without consent, we will:

  • Delete the information promptly
  • Terminate any associated accounts
  • Notify parents/guardians if possible

10. Marketing and Communications

10.1 Marketing Consent

We will only send marketing communications if you have:

  • Opted in during account creation or checkout
  • Provided explicit consent for marketing
  • Not opted out of receiving communications

10.2 Communication Types

  • Email newsletters and product updates
  • SMS notifications (with separate consent)
  • Push notifications through mobile apps
  • Personalized offers and recommendations

10.3 Unsubscribe Options

You can opt-out by:

  • Clicking unsubscribe links in emails
  • Updating preferences in your account
  • Contacting our customer service team
  • Replying "STOP" to SMS messages

11. Third-Party Websites and Services

11.1 External Links

Our website may contain links to third-party websites. We are not responsible for:

  • Privacy practices of external websites
  • Content or services provided by third parties
  • Data collection by linked websites

11.2 Social Media Integration

Social media features may collect information about your usage. Please review the privacy policies of:

  • Facebook/Instagram
  • Twitter
  • YouTube
  • Other integrated platforms

11.3 Payment Service Privacy

Payment processors have their own privacy policies:

12. Updates to This Privacy Policy

12.1 Policy Changes

We may update this Privacy Policy to reflect:

  • Changes in our business practices
  • New legal requirements
  • Technology updates
  • Customer feedback

12.2 Notification of Changes

We will notify you of material changes through:

  • Email notifications to registered users
  • Prominent website notices
  • Updated effective date on this policy
  • Account dashboard notifications

12.3 Continued Use

Your continued use of our services after policy updates constitutes acceptance of the changes.

13. Contact Us

13.1 Privacy Inquiries

For privacy-related questions, concerns, or requests:

Privacy Officer:

  • Email: contact@paperkrane.com.au
  • Mail: Privacy Officer, PaperKrane Pty Ltd, Parcel Locker 10044 92439, 175 Watton Street, Werribee, Victoria, 3030, AUSTRALIA

13.2 Response Times

We will respond to privacy requests within:

  • 30 days for general inquiries
  • 30 days for access requests
  • 30 days for correction requests
  • 5 business days for urgent matters

13.3 Complaints Process

If you believe we have breached your privacy:

  1. Contact our Privacy Officer first
  2. We will investigate and respond within 30 days
  3. If unsatisfied, you may contact the Office of the Australian Information Commissioner (OAIC)

OAIC Contact Details:

  • Website: www.oaic.gov.au
  • Phone: 1300 363 992
  • Email: enquiries@oaic.gov.au

14. Definitions

Personal Information: Information or opinion about an identified individual, or an individual who is reasonably identifiable.

Sensitive Information: A subset of personal information requiring special protection, including health information, racial/ethnic origin, political opinions, religious beliefs, sexual orientation, criminal records, and biometric information.

Australian Privacy Principles (APPs): The 13 principles in the Privacy Act 1988 that regulate the handling of personal information.


This Privacy Policy was last updated on 23rd July 2025. We encourage you to review this policy regularly to stay informed about how we protect your privacy.