Privacy Policy

1. Introduction and Data Controller

Strongpurifybone, operating at 82 Reserve Rd, Artarmon NSW 2064, Australia, is the data controller responsible for the processing of personal data collected through the website strongpurifybone.world and associated communication channels. We are committed to protecting your privacy and handling your personal information in accordance with the General Data Protection Regulation (GDPR), the Australian Privacy Act 1988, and other applicable international data protection legislation.

By accessing our website, submitting a contact form, enrolling in a program, or otherwise interacting with our services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with the practices described herein, please refrain from using our website and services.

For privacy-related enquiries, you may contact us at hello@strongpurifybone.world or by phone at +61 2 9439 6322. Written correspondence may be sent to our registered address listed above.

2. Categories of Personal Data We Collect

We collect personal data only to the extent necessary for the purposes outlined in this policy. The categories of data we may collect include the following:

2.1 Identity and Contact Data

When you submit our contact form or communicate with us directly, we may collect your full name, email address, telephone number, organisation name, job title, and the content of your message or enquiry. This information is provided voluntarily by you.

2.2 Technical and Usage Data

When you visit our website, we may automatically collect technical information including your IP address, browser type and version, operating system, device type, referring URL, pages visited, time spent on pages, and interaction patterns. This data is collected through cookies and similar technologies, subject to your cookie consent preferences.

2.3 Program and Transaction Data

If you enrol in one of our programs or purchase educational products, we may collect billing information, program preferences, participation records, and communication history related to your enrolment. Payment processing may be handled by third-party payment providers who maintain their own privacy policies.

2.4 Cookie and Consent Data

We store your cookie consent preferences locally on your device, including whether you have accepted, rejected, or customised analytics and marketing cookie categories. This data is necessary to honour your choices on subsequent visits.

3. Legal Basis for Processing

Under the GDPR, we process personal data based on one or more of the following legal grounds:

• Consent: When you submit a contact form with the GDPR consent checkbox, subscribe to communications, or accept non-essential cookies, we process your data based on your explicit consent. You may withdraw consent at any time without affecting the lawfulness of processing prior to withdrawal.
• Contractual Necessity: When you enrol in a program or purchase a product, we process data necessary to fulfil our contractual obligations, including delivering educational materials and coordinating program activities.
• Legitimate Interests: We may process certain technical and usage data based on our legitimate interest in maintaining website security, improving user experience, and understanding how visitors interact with our informational content. We balance these interests against your rights and freedoms.
• Legal Obligation: We may process and retain certain data where required by applicable law, regulatory authority, or court order.

4. Purposes of Data Processing

We use collected personal data for the following specific purposes:

• Responding to enquiries submitted through our contact form, email, or telephone
• Delivering workplace initiative programs, consulting sessions, and educational products
• Managing program enrolments, scheduling, and participant communications
• Processing payments and issuing invoices where applicable
• Improving website functionality, content relevance, and user experience
• Analysing anonymised usage patterns to optimise informational resources
• Complying with legal obligations and responding to lawful requests from authorities
• Protecting against fraud, unauthorised access, and security threats
• Sending informational updates about programs and resources where you have opted in

We do not use personal data for automated decision-making or profiling that produces legal or similarly significant effects on individuals.

5. Data Sharing and Third Parties

We do not sell, rent, or trade your personal data to third parties for their marketing purposes. We may share personal data with the following categories of recipients only when necessary:

• Service Providers: Trusted third-party vendors who assist with website hosting, email delivery, payment processing, analytics, and technical support. These providers process data on our behalf under contractual data processing agreements that require appropriate security measures.
• Professional Advisors: Legal, accounting, or compliance consultants who require access to data for advisory purposes bound by confidentiality obligations.
• Regulatory Authorities: Government bodies or law enforcement agencies when disclosure is required by law or necessary to protect our legal rights.

Where data is transferred outside the European Economic Area or Australia, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission or equivalent mechanisms recognised under applicable law.

6. Data Retention Periods

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, unless a longer retention period is required or permitted by law. Our standard retention periods are as follows:

• Contact Enquiry Data: Retained for twenty-four months from the date of last communication, after which it is securely deleted unless an ongoing business relationship exists.
• Program Enrolment Data: Retained for the duration of the program plus thirty-six months thereafter for reference and compliance purposes.
• Technical and Analytics Data: Anonymised or pseudonymised usage data is retained for up to twenty-six months. Raw IP addresses associated with analytics are not stored beyond the active session unless required for security investigations.
• Cookie Consent Records: Stored locally on your device until you clear browser storage or withdraw consent.
• Financial Records: Retained for seven years in accordance with Australian tax and accounting requirements.

Upon expiry of the applicable retention period, personal data is securely deleted or irreversibly anonymised.

7. Security Measures

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, destruction, and accidental loss. These measures include:

• HTTPS encryption for all data transmitted between your browser and our servers
• Access controls limiting personal data access to authorised personnel on a need-to-know basis
• Regular security assessments and vulnerability monitoring of our website infrastructure
• Secure storage systems with encryption at rest for sensitive data categories
• Employee training on data protection principles and incident response procedures
• Incident response protocols for detecting, reporting, and mitigating data breaches within statutory timeframes

While we take reasonable precautions, no method of electronic transmission or storage is completely secure. We encourage you to use strong passwords and exercise caution when sharing personal information online.

8. Your Rights Under GDPR and Applicable Law

Depending on your location and applicable legislation, you may have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you.
• Right to Rectification: Request correction of inaccurate or incomplete personal data.
• Right to Erasure: Request deletion of your personal data where there is no compelling reason for continued processing.
• Right to Restrict Processing: Request limitation of processing under certain circumstances.
• Right to Data Portability: Receive your personal data in a structured, commonly used, machine-readable format.
• Right to Object: Object to processing based on legitimate interests or for direct marketing purposes.
• Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent, without affecting prior lawful processing.
• Right to Lodge a Complaint: File a complaint with a supervisory authority, such as the Office of the Australian Information Commissioner (OAIC) or your local data protection authority in the European Union.

To exercise any of these rights, contact us at hello@strongpurifybone.world with sufficient detail to verify your identity. We will respond within thirty days, or sooner where required by law. We may request additional information to confirm your identity before processing certain requests.

9. Children's Privacy

Our website and services are directed at organisational decision-makers and workplace professionals. We do not knowingly collect personal data from individuals under the age of sixteen. If we become aware that we have collected data from a child without appropriate parental consent, we will take steps to delete that information promptly.

10. Links to External Websites

Our website may contain links to third-party websites for reference purposes. We are not responsible for the privacy practices or content of external sites. We encourage you to review the privacy policies of any third-party websites you visit.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. Material changes will be indicated by updating the effective date at the top of this page. We encourage you to review this policy regularly. Continued use of our website after changes constitutes acceptance of the updated policy.

12. Contact Information

For questions, concerns, or requests related to this Privacy Policy or our data processing practices, please contact:

Strongpurifybone
82 Reserve Rd, Artarmon NSW 2064, Australia
Email: hello@strongpurifybone.world
Phone: +61 2 9439 6322