INTRODUCTION
Toni and Guy Australia Pty Ltd (ACN 069 284 457) trading as Toni&Guy (referred to as “we“, “us” or “Toni&Guy”) values your privacy and is dedicated to safeguarding your personal information. This Policy outlines our practices for managing your personal information and explains your rights regarding privacy, as well as your protections under the law.
After reviewing this policy, if you have any questions, want more information, or would like to make a complaint, please contact us using our contact information at the end of this policy.
SCOPE OF THIS PRIVACY POLICY
This Policy details how we collect, handle, process and store your Personal Information (as defined under the Privacy Act 1988 (Cth) (Privacy Act).
As a franchised network, Toni&Guy salons are operated by either our group companies or independent franchise owners. In the course of providing services to you, we might share your information within our group or with our franchisees, especially if it helps us serve you better. Additionally, we may share details with them to offer local promotions or deals that could be of interest to you. These franchisees are permitted to process your personal information as described in this policy. However, it is important to be aware that our franchisees might have their own practices regarding data collection and usage that this policy does not cover.
COLLECTION OF PERSONAL INFORMATION
In this Privacy Policy, “Personal Information” refers to any information that can uniquely identify an individual. We collect and use Personal Information to uniquely identify and interact with our customers.
We collect your Personal Information when you:
- visit and/or make a purchase from our website,
- visit our social media accounts,
- visit Zenoti and register with our partner booking system,
- signup to the Toni&Guy newsletter
- download and use the Toni&Guy mobile app
(collectively referred to as our Online Platforms), and
- Communicate directly with Toni&Guy either in person, online, on the phone or in store;
- visit one of our salons including accessing our services, or buying our products in store
(collectively, our Services).
Below outlines the types of Personal Information we may collect:
- Personal Identification Information: We collect essential personal details including, but not limited to, an individual’s name, location, date of birth, and nationality. This information assists us in uniquely identifying each customer to tailor our services accordingly, process payments, arrange shipping, provide invoices and/or order confirmations, communicate with you, assess orders for potential risk or fraud, and, with your consent, supply information or advertising about our products or services.
- Contact Information: For seamless communication, we gather contact details such as email addresses, telephone, usernames on third-party platforms, as well as residential, business, and postal addresses. This enables us to maintain effective communication channels with our clients for updates, inquiries, and service enhancements.
- Financial Information: Understanding the necessity of secure and efficient transactions, we collect financial data including credit reports, bank details, and credit card information pertinent to transactions made with us. This information is crucial for facilitating purchases, processing payments, and offering personalised service options in alignment with our clients’ preferences and financial history.
WHY WE COLLECT PERSONAL INFORMATION
We collect your personal information:
- to provide our Services;
- to enable you to use our Website or social media platforms;
- to communicate with you, including about our Services, products and offers which might interest you;
- to process payments by or to you in connection with our Services;
- to create accounts, tax invoices or receipts;
- to provide your personal information to third parties for the supply of the Services;
- to consider and respond to complaints made by you.
We may disclose additional purposes for collection of your personal information in collection statements at the point of collection.
SHARING PERSONAL INFORMATION
We share your Personal Information with service providers to facilitate our services and fulfill our contracts with you. For instance:
- Service Providers: To facilitate our online store and other service functionalities, we partner with platforms such as Shopify and Zenoti.
- Compliance with Laws: Your Personal Information may be disclosed if required to comply with applicable laws, legal processes such as subpoenas or search warrants, or to protect our rights and interests.
- Research and Surveys: With your consent, your Personal Information might be shared with third-party researchers conducting studies or surveys on behalf of our company. Such activities are strictly for purposes that align with our service improvements and client understanding.
BEHAVIOURAL ADVERTISING
We will use your Personal Information to offer targeted advertisements or marketing communications we believe may interest you. For example:
- Analytics and Advertising Services: Tools like Google Analytics help us understand how our clients interact with our site. You can learn more about Google’s Privacy Practices and opt-out of Google Analytics here and here, respectively.
- Ad Partner Sharing: We share insights about your interactions with our site, your purchases, and your engagement with our advertisements on other websites with our advertising partners. This may involve the use of cookies or similar technologies, with your consent where required by your location.
For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at https://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt out of targeted advertising by following these links:
FACEBOOK – https://www.facebook.com/settings/?tab=ads
GOOGLE – https://www.google.com/settings/ads/anonymous
BING- https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads]
You can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: https://optout.aboutads.info/.
COOKIES NECESSARY FOR STORE FUNCTIONALITY
We may use temporary (session) cookies or permanent cookies when you access our Online Platforms and/or Services. This allows us to recognise your browser and track the web pages you have visited. You can switch off cookies by adjusting the settings on your web browser.
You can manage and control cookies in various ways. Note that removing or blocking cookies may affect your user experience, and certain parts of our website may become less accessible. Most browsers accept cookies by default, but you can choose to accept or reject them through your browser controls, typically found in the “Tools” or “Preferences” menu. For detailed instructions on modifying your browser settings or blocking, managing, or filtering cookies, consult your browser’s help file or visit websites like www.allaboutcookies.org.
Please be aware that blocking cookies may not completely prevent us from sharing information with third parties, such as our advertising partners. To exercise your rights or opt out of specific information uses by these parties, follow the instructions in the
“Behavioural Advertising” section above.
USING YOUR INFORMATION FOR SURVEYS OR RESEARCH
When we provide Personal Information to third parties for surveys and research, they are limited to using or disclosing your Personal Information solely for the purposes for which we engaged them. They are held to the same standards of legal compliance regarding your information as we are.
If you wish to restrict the use or disclosure of your Personal Information to third parties conducting research or surveys for us, or if you want to access, amend, or remove Personal Information we hold about you, please contact us at support@toniandguy.com.au.
DO NOT TRACK
Please note that as there is no consistent industry understanding of how to respond to “Do Not Track” signals, we do not alter our data collection and usage practices when such a signal is detected from your browser.
RIGHT TO BE FORGOTTEN
You may place a request with us to be forgotten, and we will erase your Personal Information from our records. Any request must be made in writing using the contact information provided under the heading ‘Contact Us’. On request, we will endeavour to delete your Personal Information in compliance with all applicable legal obligations promptly, unless we are legally obliged to retain it.
Should you choose to exercise your right to be forgotten and request the removal of your Personal Information from our records, you will no longer
Please be aware that by requesting the deletion of your Personal Information, you acknowledge that you will no longer be able to access or use our Services, including making bookings through our Online Platform. This is due to the essential nature of your Personal Information in the provision of our services.
RETENTION
When you place an order through the Site, we will retain your Personal Information for our records unless you request its deletion as de-identified information.
We may use your Personal Information in de-identified form (de-identification being a process by which a collection of data or information is altered to remove or obscure personal identifiers and personal information) to assist us in running our business. We may also provide, including by way of sale, de-identified information in aggregated form, to third parties with whom we have commercial relationships.
When your Personal Information is included in de-identified, aggregated data, it is not possible to identify you or anything about you from that data.
GDR
If you ordinarily reside in the European Economic Area (EEA) accessing our website or social media platforms or receive our Services in Australia; or, you are accessing our Online Platforms or receiving our Services from within the European Union, then in addition to our obligations under the Privacy Act, we are required to comply with the GDPR with respect to your Personal Information.
Any reference to Personal Information in this Privacy Policy is also a reference to Personal Data (as defined under the GDPR).
We take the security and privacy of your Personal Information seriously and has prepared this privacy policy and taken measures to collect, process and hold all Personal Information in compliance with both the Privacy Act and GDPR regardless of the user. Therefore, no additional terms for GDPR users are required.
CHANGES
We may periodically update this Privacy Policy to reflect changes in our practices, operational requirements, or legal and regulatory obligations. We will post the changes on our website. It is your obligation to refer back to this Privacy Policy to review any amendments.
COMPLAINTS AND DISPUTES
If an individual needs to contact us or has a complaint about our handling of their Personal Information, they should address their communication in writing to the details below:
Attention: Privacy Officer
Toni&Guy
Suite 105
183 Oxford Street
Bondi Junction, NSW, 2022
support@toniandguy.com.au
If we have a dispute regarding an individual’s Personal Information, we both must first attempt to resolve the issue directly between us.
If we become aware of any unauthorised access to an individual’s Personal Information, we will inform them and any supervisory authority as required, at the earliest practical opportunity once we have established what was accessed and how it was accessed.
CONTACT
We have appointed a privacy officer who is responsible for handling inquiries concerning this privacy policy. For more information regarding our privacy practices, inquiries, or complaints, please contact our privacy officer via email or through mail using the details provided below:
Mail:
Attention: Privacy Officer
Toni&Guy
Suite 105
183 Oxford Street
Bondi Junction, NSW, 2022
Email: support@toniandguy.com.au
*Last updated: March 2024*
If you are not satisfied with our response to your complaint, you have the right to lodge a complaint with the relevant data protection authority. You can contact your local data protection authority or our supervisory authority here: www.oaic.gov.au.