GDPR
Digital Oratory, located at 35 Glebe Street, Glebe, NSW 2037, Australia (“We”, “Us”, or “Our”), is committed to protecting your privacy and handling your data in an open and transparent manner. This GDPR Policy explains how we handle the personal information of individuals in the European Union (EU) and the United States (USA) in compliance with the General Data Protection Regulation (GDPR) and applicable data protection laws.
1. Data Collection and Use
We collect personal data about you when you purchase goods or services from us, use our website (digitaloratory.org), or interact with us. This data may include your name, address, email address, IP address, and payment details. We use this information to process your orders, manage your account, communicate with you, and for internal reporting purposes.
2. Legal Basis for Processing
We process your personal data based on the following legal bases:
- Contractual Necessity: Processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
- Legitimate Interests: We may process your data when it is reasonably necessary to achieve our legitimate business interests.
- Consent: Where you have given us consent to process your personal data for specific purposes.
- Legal Obligations: Processing is necessary for compliance with a legal obligation to which we are subject.
3. Data Sharing and Transfer
We may share your personal data with third parties for the purposes outlined in this policy. This includes service providers who assist us with our business operations, in compliance with our instructions and applicable laws. We ensure that any data transfers outside the EU and the USA are protected by appropriate safeguards as required by GDPR.
4. Data Subject Rights
Under the GDPR, you have several rights in relation to your personal data, including:
- The right to access your personal data
- The right to rectification if your personal data is inaccurate or incomplete
- The right to erasure (“right to be forgotten”) in certain circumstances
- The right to restrict processing of your personal data in certain circumstances
- The right to data portability, allowing you to obtain and reuse your personal data for your own purposes across different services
- The right to object to processing of your personal data in certain circumstances
5. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised or unlawful processing and against accidental loss, destruction, or damage.
6. Data Retention
We retain your personal data only for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.
7. Changes to This Policy
We may update this GDPR Policy from time to time. We will notify you of any changes by posting the new policy on our website and updating the effective date.
8. Contacting Us
If you have any questions about this GDPR Policy or our privacy practices, please contact us at policy@digitaloratory.org.