detail-cloud

Privacy policy

Privacy commitment

Digital Garden values your trust and are committed to safeguarding your personal information. This privacy policy explains how we collect, use, protect, and manage your data in accordance with Australian laws, including the Privacy Act 1988 (Cth), the NSW Privacy and Personal Information Protection Act 1998, and global privacy standards such as the General Data Protection Regulation (GDPR).

This policy is designed for transparency, ensuring you are informed of your rights and how your personal data is handled.

What we collect and why

We may collect a range of information, including:

  • Personal details: such as your name, email address, phone number, and job title, which are necessary for communication and service delivery.
  • Device and interaction data: such as your IP address, browser type, pages viewed, and interactions with our website. This helps us improve your experience and optimise our digital tools.
  • Business-related information: including the services you require and your preferences for engagement with Digital Garden.

We only collect data directly from you or your authorised representatives through channels such as online forms, email correspondence, or phone conversations. We limit the information collected to what is essential for our legitimate business needs or to meet legal obligations.

How we use your information

Digital Garden uses the information we collect for:

  • Service delivery: ensuring we can effectively provide our services, manage client relationships, and communicate important updates.
  • Improving operations: analysing interactions with our website and services to refine our processes, content, and user experience.
  • Compliance: meeting legal and regulatory requirements, including tax and reporting obligations.
  • Security: monitoring for suspicious activities, protecting against fraud, and maintaining the integrity of our systems.

Your data will never be sold to third parties. Information is only used for purposes directly related to Digital Garden's activities and as consented to by you.

 

Sharing and disclosing personal information

We may share your personal information under specific circumstances:

  • Third-party service providers: such as hosting services, IT support, or analytics platforms. We ensure that all providers adhere to stringent data protection agreements.
  • Legal requirements: when disclosure is required to comply with legal obligations or court orders.
  • Business protection: if necessary to investigate breaches of our terms, prevent fraud, or protect the rights of Digital Garden and its clients.

Before sharing data, we assess the security and privacy measures of any third-party provider and ensure they align with Australian law and GDPR standards.

Data retention and disposal

We retain personal information only for as long as it is necessary to fulfil the purposes outlined in this policy or as required by law. Specifically:

  • Client data is stored for the duration of the project and any required warranty or support period.
  • Marketing data is reviewed periodically to ensure it remains relevant and accurate.
  • Outdated or unnecessary data is securely destroyed or anonymised using recognised techniques, such as digital sanitisation tools or shredding of physical records.

Our processes ensure compliance with Australian data retention regulations and GDPR principles.

Protecting your information

We implement multiple layers of security to protect your data, including:

Encryption

All sensitive information is encrypted during transmission and storage, using up-to-date encryption standards such as TLS for secure connections and AES for at-rest data.

Access controls

Access to personal data is restricted to authorised personnel who require it for their roles. Multi-factor authentication and strong password policies ensure additional protection.

Device and IT security

Agency devices are configured with endpoint protection tools and monitored for compliance with our acceptable use policy, which prohibits the installation of unauthorised applications.

Incident management

In the unlikely event of a breach, our incident response plan is immediately activated. We notify affected individuals promptly, in accordance with the Notifiable Data Breaches (NDB) scheme, and report the incident to the relevant regulatory authorities.

Building security and physical access

Digital Garden takes physical security seriously:

  • Office premises are secured with access-controlled doors, monitored alarm systems, and locked storage facilities for confidential documents.
  • Visitor access is restricted and logged to maintain oversight of external parties entering our workspace.
  • Physical assets such as laptops and servers are tagged, tracked, and stored in secure environments when not in use.

Ensuring compliance and accountability

We are committed to upholding all legal obligations, including:

  • Complying with Australian privacy laws, GDPR for clients or users in the EU, and any additional local data protection regulations.
  • Conducting periodic reviews of our data handling practices to ensure compliance with emerging standards.
  • Training all team members to understand their responsibilities and the importance of maintaining privacy and confidentiality.

Your rights and choices

As a data subject, you have the right to:

  • Access and correct your data: You can request details of the personal information we hold about you and correct inaccuracies.
  • Withdraw consent: You may opt out of specific types of data processing, such as marketing communications.
  • Request deletion: Subject to legal requirements, you can request the deletion of personal information we no longer need.

If you have concerns about your data, you can contact us at privacy@digitalgarden.com.au or lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

Business continuity and disaster recovery

To ensure uninterrupted service, Digital Garden maintains:

  • Daily data backups: securely encrypted and stored offsite for quick restoration in case of data loss.
  • Redundancy systems: including cloud infrastructure that allows rapid failover to minimise downtime.
  • Testing and simulations: conducted regularly to validate the effectiveness of our disaster recovery and business continuity plans.

Policy updates

We may review and update this privacy policy to reflect changes in legislation, technological advancements, or operational needs. The most recent version of the policy will always be accessible on our website.

Contact us

For any questions or concerns regarding your personal data or this privacy policy, please contact us:

Digital Garden
Emailprivacy@digitalgarden.com.au 
Mail: Digital Garden: 604, 6A Glen Street, Milsons Point NSW 2061

We'd love to work with you.
Say Hello