Privacy Policy

Last updated:

This Privacy Policy describes how Flushnature ("we", "us", or "our") collects, uses, stores, and protects your personal information when you visit our website at flushnature.world. We are committed to protecting your privacy in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs), and, where applicable, the General Data Protection Regulation (GDPR) for visitors from the European Economic Area.

1. Who We Are

The entity responsible for your personal information is:

Flushnature
Wooramel Station NorthWest Coastal Hwy, Carnarvon WA 6701, Australia
Email: managers@flushnature.world
Phone: +61 499 425 888

2. Personal Information We Collect

We may collect the following categories of personal information:

• Contact information: name and email address provided through our contact form.
• Communication data: the content of messages you send us via the contact form.
• Technical data: IP address, browser type, operating system, referring URL, pages visited, and time spent on pages.
• Cookie data: preferences and consent choices stored through cookies and localStorage. See our Cookie Policy for details.

We collect personal information that is reasonably necessary for our functions and activities. We do not collect sensitive information (as defined in the Privacy Act) unless you voluntarily provide it in a message and we reasonably require it to respond to your enquiry.

3. How We Collect Personal Information

We collect personal information:

• directly from you when you submit our contact form or otherwise communicate with us;
• automatically through cookies and similar technologies when you browse our website (with your consent where required); and
• from our hosting and analytics service providers, where applicable.

4. Collection Notice (APP 5)

At or before the time we collect your personal information, or as soon as practicable afterwards, we inform you of:

• our identity and contact details (see Section 1);
• the purposes for which we collect the information;
• the main consequences if you do not provide the information (for example, we may be unable to respond to your enquiry);
• whether we are likely to disclose the information to overseas recipients; and
• how you may access and seek correction of your information or make a complaint.

When you submit our contact form, the consent checkbox confirms that you have read this Privacy Policy and agree to our collection and use of your information to respond to your enquiry.

5. Purposes of Use and Disclosure

We use and disclose personal information for the following purposes:

• Responding to enquiries — to reply to messages submitted through our contact form.
• Website functionality and security — to operate, maintain, and protect our website.
• Analytics — to understand how visitors use our website and improve its content and structure, only where you have given consent.
• Marketing communications — only where you have expressly opted in, and in compliance with the Spam Act 2003 (Cth). Every marketing message will include a functional unsubscribe facility.
• Legal compliance — where required or authorised by Australian law, including responding to lawful requests from regulators or courts.

We do not use or disclose personal information for a secondary purpose unless you consent or an exception under the APPs applies.

6. Data Retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected:

• Contact form submissions: up to 24 months from the date of your last communication with us.
• Technical and analytics data: up to 26 months.
• Cookie consent preferences: stored in your browser until you clear localStorage or withdraw consent.

After the retention period expires, data is securely deleted or anonymised.

7. Disclosure to Third Parties and Overseas Recipients

We do not sell your personal information. We may disclose information to trusted service providers who assist us in operating our website, such as hosting providers and analytics services. These providers may be located outside Australia. Before disclosing personal information overseas, we take reasonable steps to ensure the recipient complies with the APPs or is bound by a substantially similar privacy regime, unless an APP 8 exception applies.

Where personal information is transferred outside Australia or the European Economic Area, we implement appropriate safeguards, such as contractual protections, to protect your information in line with applicable law.

8. Notifiable Data Breaches

We comply with the Notifiable Data Breaches (NDB) scheme under Part IIIC of the Privacy Act 1988. If we reasonably believe an eligible data breach has occurred that is likely to result in serious harm to individuals, we will:

• assess the breach as soon as practicable;
• notify affected individuals as soon as practicable with recommended steps to limit harm; and
• notify the Office of the Australian Information Commissioner (OAIC) where required.

9. Your Rights

Under the Privacy Act and APPs, you may:

• Request access (APP 12) to the personal information we hold about you, subject to exceptions permitted by law.
• Request correction (APP 13) of inaccurate, out-of-date, incomplete, irrelevant, or misleading information.
• Opt out of direct marketing at any time by using the unsubscribe link in a message or contacting us directly.
• Withdraw consent for optional processing (such as analytics cookies), without affecting the lawfulness of prior processing.
• Make a complaint about how we handle your personal information.

If you are located in the European Economic Area, you may also have additional rights under the GDPR, including erasure, restriction, data portability, and objection to certain processing.

To exercise your rights, contact us at managers@flushnature.world. We will respond within a reasonable period, generally within 30 days.

10. Data Security

We implement reasonable technical and organisational measures to protect your personal information against unauthorised access, alteration, disclosure, or destruction, in accordance with APP 11. These measures include HTTPS encryption, access controls, and periodic review of our security practices.

11. Children's Privacy

Our website is not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us and we will take steps to delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically. Material changes will be communicated where required by law.

13. Complaints

If you have a concern about how we handle your personal information, please contact us first so we can try to resolve the issue. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au/privacy/privacy-complaints or by calling 1300 363 992.

Visitors from the European Economic Area may also lodge a complaint with their local data protection authority.