Privacy Statement 

Who we are and how you can contact us

We are Illustrated Eats and are based in QLD, Australia. We are committed to providing quality services to you and this policy outlines our ongoing obligations to you in respect of how we manage your data.

We have adopted the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth) (the Privacy Act). The NPPs govern the way in which we collect, use, disclose, store, secure and dispose of your data.

A copy of the Australian Privacy Principles may be obtained from the website of The Office of the Australian Information Commissioner at https://www.oaic.gov.au/.

If you have any privacy-related questions you can connect via the contact form on our website.

Our commitment to your privacy

Whether you're a customer, a subscriber, or simply visiting our site, this Privacy Policy is here to protect and guide you.

Our responsibilities

As the providers of the products and services on this site, we decide how and why your data is handled. We never sell or rent your information to third parties. Protecting your privacy is a priority for us, and we want you to clearly understand what information we collect and how we use it.

Your responsibilities

Please take the time to read this Privacy Policy along with our Website Terms & Conditions here. If you share any third-party data with us, you confirm that you have the authority to allow us to process that information in line with this Privacy Policy.

When and how we collect data

We begin collecting data as soon as you visit our Site. Sometimes you provide this information directly—such as by filling out a form or creating an account—and other times, it’s collected automatically. We may also collect data when you:

  • Purchase a gift card to use on our Site

  • Buy an online course, webinar, program, or service

  • Interact with us through social media

  • Complete sign-up forms, landing pages, send us direct messages via social media, or email us at any of our listed addresses

  • Take part in events, promotions, giveaways, or respond to customer surveys

  • Accept cookies and other tracking technologies while using any device to engage with us

  • Voluntarily provide your information to us for any other reason

Types of data we may collect

We may collect the following types of information:

  • Contact details such as your name, address, and email

  • Financial information like bank details when making a purchase

  • Your business name (where applicable)

  • Basic information about your business and its history (when relevant)

  • Details about the products or services you purchase from us

  • Information about your experience with our Site, products, and services

  • Details about your circumstances or other information related to the services or products we provide

  • Attendance information for any seminars, webinars, podcasts, or other events we host

  • Technical data that identifies you (such as your IP address, login details, browser type, time zone, browser plug-ins, geolocation, operating system and version)—this data is not linked to your personal information

  • Data about how you interact with our Site (including URL clicks, product and service views, time spent on pages, and other actions)

Use and disclosure of your data

We only use your data where we have a legal basis to do so and for specific purposes.

We may use your data for:

  • Operating and maintaining our Site

  • Providing you with products, information, and services

  • Offering customer support

  • Tracking your purchase history

  • Detecting and preventing fraud

  • Improving our Site and its features

  • Enhancing your experience on our Site

  • Conducting market research, such as seeking feedback on our products and services

  • Informing you about events, products, services, or opportunities that may interest you

  • Marketing communications (with your consent)

  • Monitoring compliance with our Website Terms and Conditions

We may also disclose your data:

  • As required by law and in accordance with our legal obligations

  • With your consent

  • Within our business and to trusted internal teams

  • To send you marketing materials (only with your consent)

  • To facilitate your participation in promotions and giveaways, including announcing winners and sharing names online or via social media

  • To trusted third parties who help us deliver our products and services

Choosing not to provide personal data

You are not required to provide us with personal data. However, if you choose not to, we may be unable to offer you our products or services. You will still be able to access and browse our Site.

Turning off cookies

Our Site uses cookies and similar technologies to support functionality. You can disable cookies at any time through your browser settings. You may also delete stored cookies this way. Please note that turning off cookies may affect the performance of certain features on our Site, but you can still browse most pages without them.

Marketing

Before collecting any personal data for marketing purposes, we will always inform you of how it will be used and whether any third parties are involved. We will seek your consent, which you can withdraw at any time.
You can opt out of receiving marketing communications by:

  • Completing the "Contact Us" form on our contact page, or

  • Unsubscribing directly through the link provided in our marketing emails.

Your rights

You have the right to access and manage your personal data. You can exercise your rights at any time by contacting us through the "Contact Us" page on our Site.

Accessing information we hold about you

If you request access to the information we hold about you, we will provide it within 30 days, unless doing so would negatively impact the rights and freedoms of others (such as their confidentiality or intellectual property rights). If we are unable to fulfill your request, we will explain why.

Inaccurate information

If you believe any information we hold about you is inaccurate or outdated, you can contact us to request a correction.

The right to be forgotten

You have the right to request that we erase your personal data. Upon your request, we will delete all information we hold about you, except for any data we are legally required to retain.

Making a complaint

If you have concerns or complaints about how we handle your data, please reach out to us via our “Contact Us” page.
If you are not satisfied with our response, you may escalate your complaint to the Office of the Australian Information Commissioner.

Data security

We understand that our customers trust us with their personal information. While we cannot guarantee the complete security of data transmitted to or from us, we are committed to safeguarding your data. We implement reasonable and appropriate physical, electronic, and procedural measures to help protect it. These measures include:

  • Password protection for account access

  • Storing data with trusted third-party providers that meet robust security standards

  • Limiting access to personal information to authorized personnel only

  • Partnering with PCI DSS-compliant payment processors

  • We do not store your payment details

Data Storage Locations

Our service providers are based in Australia. If we transfer personal data outside of Australia, we ensure that your privacy rights are protected by working with service providers that maintain similar or equivalent security measures for data protection.

Data Retention Period

We retain your data only for as long as necessary, which will vary depending on your interactions with us. For example, if you make a purchase, we will keep a record of the transaction for the time required for invoicing and tax purposes. Once we no longer need your data, we will either permanently delete it or anonymize it if it is no longer required.

Third Parties Who May Access Your Data

We may share your data with third parties in the following situations:

  • With other companies within our group, as necessary to operate our website

  • With our suppliers and service providers, such as payment processors

  • With our professional and legal advisors

  • With third parties involved in fraud prevention and detection

  • With law enforcement or government authorities, as required

  • With third parties who help us provide our products and services, including:

    • Payment processors like Stripe, PayPal, Xero, and Shopify, who may process payments for purchases made on our site

    • Social media and analytics platforms such as Facebook, Instagram, and Google Ads, for creating custom audiences and developing targeting criteria

    • Other third-party services like Leadpages, LeadQuizzes, Teachable, Zoom, ActiveCampaign, and Flodesk for processing and storing data that helps us keep you informed about course details, logins, marketing material, offers, promotions, newsletters, blogs, and video training

  • When we have your consent or when permitted by law

Payment Security

All real-time credit card authorizations are handled by secure third-party payment gateways, which are protected with the highest levels of security. The following measures are taken to safeguard your data:

  • Payments are fully automated, with an immediate response

  • Your full credit card number is never visible to us or any third parties

  • All transaction data is encrypted and stored securely in our third-party gateway provider's bank-grade data center

  • Our third-party gateway provider is an authorized processor for major Australian banks

  • At no point does our third-party provider touch your funds; payments are directly transferred from your credit card to our merchant account

We work with highly respected third-party payment providers to ensure the security and reliability of our online payment systems. While we take every step to protect your personal information, no security system is foolproof, and we cannot guarantee that your data will remain secure in all circumstances.

The Payment Card Industry Data Security Standard (PCI DSS) is a security standard for organizations that handle branded credit cards from major card networks like Visa, Mastercard, American Express, and Discover. The PCI DSS is managed by the PCI Security Standards Council and helps ensure the secure handling of credit card information on our site and by our service providers.

Age of Consent

By using this site, you confirm that you are at least the legal age of majority in your State or Territory. Our site is not intended for use by individuals under the age of majority, and we do not knowingly collect data from them.

Governing law

This Privacy Policy and your use of this Site is governed in all respects by the laws of Australia.

Policy Updates

Please make sure to check in on our Privacy Policy as we may update this Privacy Policy from time to time in order to reflect changes to our practices or for other operational, legal or regulatory reasons.