Privacy Policy
Last Updated: January 15, 2025
Introduction and Scope
koralynthesia (ABN 15 123 456 789) respects your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, and disclose your personal information when you visit our website at koralynthesia.com, use our services, or interact with us in any capacity.
This policy applies to all personal information collected by koralynthesia through our website, email communications, phone conversations, in-person meetings, and any other interactions you may have with our business mentorship and financial education services.
We are bound by the Australian Privacy Principles contained in the Privacy Act 1988 (Cth) and other applicable Australian privacy laws. This policy outlines our practices regarding the collection, use, and protection of your personal information in accordance with these legal requirements.
Information We Collect
Personal Information
We may collect various types of personal information depending on how you interact with our services. This includes information you provide directly to us and information we collect automatically through your use of our website and services.
- Contact details including your name, email address, phone number, and postal address
- Professional information such as job title, company name, industry, and business interests
- Educational background and professional qualifications relevant to our mentorship programs
- Financial information necessary for processing payments and providing relevant mentorship services
- Communication preferences and marketing consent status
- Feedback, reviews, and testimonials you provide about our services
Technical Information
When you visit our website, we automatically collect certain technical information to help us understand how our site is being used and to improve user experience.
- IP address and approximate geographic location
- Browser type, version, and operating system
- Pages visited, time spent on pages, and navigation paths
- Referring websites and search terms used to find our site
- Device information including screen size and connection type
Sensitive Information
We generally do not collect sensitive information as defined under the Privacy Act. However, in some circumstances related to our mentorship services, we may collect information about your financial situation or business challenges. We will always seek your explicit consent before collecting any sensitive information and will handle it with the highest level of security and confidentiality.
How We Collect Information
We collect personal information through various channels and methods, always ensuring transparency about what information we're collecting and why.
Direct Collection
- Contact forms and enquiry submissions on our website
- Email communications and phone conversations with our team
- Event registrations and workshop attendance
- Service applications and onboarding processes
- Feedback surveys and testimonial requests
- In-person meetings and networking events
Indirect Collection
In some cases, we may collect information about you from third parties, but only with your consent or where legally permitted. This may include referrals from existing clients, information from professional networks, or publicly available business information that helps us provide relevant services.
We will always inform you when we collect information indirectly and provide you with the opportunity to opt out of further collection or use of your information.
How We Use Your Information
We use your personal information for legitimate business purposes related to providing our mentorship and financial education services. Our use of your information is always lawful, fair, and transparent.
| Purpose | Legal Basis | Information Used |
|---|---|---|
| Service delivery and client management | Contract performance | Contact details, professional information, service preferences |
| Payment processing and billing | Contract performance | Financial information, contact details, service records |
| Marketing and communication | Consent or legitimate interest | Contact details, communication preferences, service history |
| Website improvement and analytics | Legitimate interest | Technical information, usage patterns |
Marketing Communications
We may use your contact information to send you marketing communications about our services, industry insights, and upcoming events. We will always provide clear opt-out options and respect your communication preferences. You can withdraw consent for marketing communications at any time without affecting other aspects of our service relationship.
Information Sharing and Disclosure
We do not sell, trade, or rent your personal information to third parties for their marketing purposes. We may share your information in specific circumstances as outlined below, always ensuring appropriate safeguards are in place.
Service Providers
We work with trusted service providers who help us deliver our services effectively. These providers may have access to your personal information solely for the purpose of performing services on our behalf. All service providers are bound by confidentiality agreements and are required to handle your information in accordance with this Privacy Policy.
- Payment processors for secure transaction handling
- Email service providers for communication delivery
- Analytics services for website performance monitoring
- Cloud storage providers for secure data backup
- Professional advisors including legal and accounting services
Legal Requirements
We may disclose your personal information if required by law, court order, or government regulation. We may also disclose information to protect our rights, property, or safety, or that of our clients or the public, but only to the extent necessary and in accordance with applicable laws.
Business Transfers
In the event of a merger, acquisition, or sale of business assets, personal information may be transferred as part of the transaction. We will notify affected individuals and ensure the receiving party agrees to handle personal information in accordance with this Privacy Policy or an equivalent standard of protection.
Data Security and Protection
We implement comprehensive security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. Our security practices include both technical and organizational measures designed to ensure the confidentiality, integrity, and availability of your information.
Technical Safeguards
- SSL/TLS encryption for data transmission over the internet
- Encrypted storage systems for sensitive information
- Regular security updates and system monitoring
- Firewall protection and intrusion detection systems
- Secure backup procedures and disaster recovery protocols
Organizational Measures
- Staff training on privacy and security best practices
- Access controls limiting information access to authorized personnel only
- Regular security assessments and policy reviews
- Incident response procedures for potential security breaches
- Confidentiality agreements for all staff and contractors
While we implement robust security measures, no system is completely secure. We encourage you to take steps to protect your own information, such as using strong passwords and keeping your contact information up to date.
Data Retention and Deletion
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Our retention periods are based on the nature of the information and the legal requirements applicable to our business.
Retention Periods
- Client service information: Retained for 7 years after service completion for tax and business records
- Financial transaction records: Retained for 7 years as required by Australian tax law
- Marketing communications data: Retained until consent is withdrawn or 3 years of inactivity
- Website analytics data: Typically retained for 26 months or as configured in analytics tools
- Email communications: Retained for business continuity purposes, typically 3-5 years
Secure Deletion
When personal information is no longer required, we securely delete or anonymize it using industry-standard methods. This includes secure deletion of digital files and destruction of physical records containing personal information. We maintain logs of deletion activities for audit purposes while ensuring the information itself cannot be recovered.
Your Rights and Choices
Under Australian privacy law, you have several rights regarding your personal information. We are committed to facilitating the exercise of these rights and will respond to your requests promptly and transparently.
Access and Correction
You have the right to request access to the personal information we hold about you and to request correction of any inaccurate, incomplete, or out-of-date information. We will provide access to your information unless there are legal grounds for withholding it, such as where it would unreasonably affect another person's privacy.
Withdrawal of Consent
Where we rely on your consent to process personal information, you can withdraw that consent at any time. This includes consent for marketing communications, optional data collection, and certain service features. Withdrawing consent will not affect the lawfulness of processing based on consent before its withdrawal.
Data Portability
You may request that we provide your personal information in a structured, commonly used, and machine-readable format where technically feasible. This right applies to information you have provided to us with your consent or under a contract with us.
Complaints Process
If you believe we have mishandled your personal information, you can lodge a complaint with us using the contact details provided below. We will investigate your complaint promptly and work with you to resolve any issues. If you are not satisfied with our response, you can lodge a complaint with the Office of the Australian Information Commissioner.
International Data Transfers
Some of our service providers and business partners are located outside Australia. When we transfer personal information overseas, we ensure appropriate safeguards are in place to protect your information in accordance with Australian privacy law.
Countries and Safeguards
Personal information may be transferred to the following countries for specific business purposes:
- United States: For cloud storage and email services with privacy shield or adequacy protections
- Singapore: For payment processing services with contractual data protection clauses
- European Union: For analytics services under GDPR adequacy decisions
All international transfers are governed by contractual arrangements that require the receiving party to handle personal information in accordance with standards equivalent to Australian privacy law. We regularly review these arrangements to ensure ongoing protection of your information.
Cookies and Website Technologies
Our website uses cookies and similar technologies to enhance your browsing experience, analyze website traffic, and deliver personalized content. We believe in giving you control over these technologies and your data.
Types of Cookies
- Essential cookies: Required for basic website functionality and security
- Analytics cookies: Help us understand how visitors use our website
- Marketing cookies: Used to deliver relevant advertisements and measure campaign effectiveness
- Preference cookies: Remember your settings and preferences for future visits
Managing Cookies
You can control cookie settings through your browser preferences or our cookie management tool. Please note that disabling certain cookies may affect website functionality and your user experience. We provide clear information about the impact of different cookie choices to help you make informed decisions.
Updates to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal requirements. When we make significant changes, we will notify you through prominent notices on our website, email communications, or other appropriate channels.
Minor changes may be made without specific notification, but the updated policy will always be available on our website with the revision date clearly indicated. We encourage you to review this policy periodically to stay informed about how we are protecting your personal information.
Continued use of our services after policy updates constitutes acceptance of the revised terms, unless the changes require additional consent under applicable privacy laws.
Contact Information
If you have questions about this Privacy Policy, wish to exercise your privacy rights, or need to report a privacy concern, please contact us using the details below. We aim to respond to all privacy-related inquiries within 30 days.
For complaints that cannot be resolved directly with us, you may contact the Office of the Australian Information Commissioner at www.oaic.gov.au or by calling 1300 363 992.