At Conversion, accessible from www.conversion.com.au, one of our main priorities is the privacy of our visitors. This Privacy Policy document contains types of information that is collected and recorded by Conversion and how we use it.

If you have additional questions or require more information about our Privacy Policy, do not hesitate to contact us.

This Privacy Policy applies only to our online activities and is valid for visitors to our website with regards to the information that they shared and/or collect in Conversion. This policy is not applicable to any information collected offline or via channels other than this website.

By using our website, you hereby consent to our Privacy Policy and agree to its terms.

The personal information that you are asked to provide, and the reasons why you are asked to provide it, will be made clear to you at the point we ask you to provide your personal information.

If you contact us directly, we may receive additional information about you such as your name, email address, phone number, the contents of the message and/or attachments you may send us, and any other information you may choose to provide.

When you register for an Account, we may ask for your contact information, including items such as name, date of birth, address, email address, and telephone number.

We use the information we collect in various ways, including:

• to conduct our business – to provide and maintain our service, including monitoring the usage of the app
• to provide you with information relating to our products for the purpose of the campaign
• to improve and optimise our services and platform
• to manage your account. The data you provide gives you access to different functionalities of the service that are available to you as a registered user
• to contact you via email, phone, SMS, or other equivalent forms of electronic communication including push notifications regarding updates or informative communication in relation to the product
• for our internal administrative, research, planning, marketing and product development purchases
• complying with legal obligation

While using our app, in order to provide these features, we may collect, with your permission:

• information regarding your location – the purpose of location is to ensure you are at the correct location
• camera access – the purpose of the camera access is so Conversion is able to view your display and set up
• pictures and other information from your device’s camera and photo library – the purpose of access to pictures/device camera or photo library is for  you to upload any expenses that may occur during your session

We use this information to provide features of our service. This information may be uploaded to the Company’s servers and/or service provider’s service, or it may simply be stored on your device.

We will only retain records of your personal information until your resignation. Once you resign and follow the correct procedures, your information will be removed and/or deleted from our systems.

Conversion follows a standard procedure of using log files. These files log visitors when they visit websites. All hosting companies do this and a part of hosting services’ analytics. The information collected by log files include internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date and time stamp, referring/exit pages, and possibly the number of clicks. These are not linked to any information that is personally identifiable. The purpose of the information is for analysing trends, administering the site, tracking users’ movement on the website, and gathering demographic information.

Like any other website, Conversion uses ‘cookies’. These cookies are used to store information including visitors’ preferences, and the pages on the website that the visitor accessed or visited. The information is used to optimize the users’ experience by customizing our web page content based on visitors’ browser type and/or other information.

For more general information on cookies, please read “What Are Cookies”.

You may consult this list to find the Privacy Policy for each of the advertising partners of Conversion.

Third-party ad servers or ad networks uses technologies like cookies, JavaScript, or Web Beacons that are used in their respective advertisements and links that appear on The Live Hive, which are sent directly to users’ browser. They automatically receive your IP address when this occurs. These technologies are used to measure the effectiveness of their advertising campaigns and/or to personalize the advertising content that you see on websites that you visit.

Note that Conversion has no access to or control over these cookies that are used by third-party advertisers.

Conversion’s Privacy Policy does not apply to other advertisers or websites. Thus, we are advising you to consult the respective Privacy Policies of these third-party ad servers for more detailed information. It may include their practices and instructions about how to opt-out of certain options.

You can choose to disable cookies through your individual browser options. To know more detailed information about cookie management with specific web browsers, it can be found at the browsers’ respective websites.

The security of your personal data is important to us, but remember that no method of transmission over the internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

You can choose to disable cookies through your individual browser options. To know more detailed information about cookie management with specific web browsers, it can be found at the browsers’ respective websites.

If you make a request, we have one month to respond to you. If you would like to exercise any of these rights, please contact us.

Another part of our priority is adding protection for children while using the internet. We encourage parents and guardians to observe, participate in, and/or monitor and guide their online activity.

Conversion does not knowingly collect any Personal Identifiable Information from children under the age of 13. If you think that your child provided this kind of information on our website, we strongly encourage you to contact us immediately and we will do our best efforts to promptly remove such information from our records.

Our service may contain links to other websites that are not operated by us. If you click on a third part link, you will be directed to that third party’s site. We strongly advise you to review the privacy policy of every site you visit.

We have no control over and assume no responsibility for the content, privacy policy or practices of any third party sites of services.

We may update our privacy policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page.

We will let you know via email/notice on our service, prior to the change becoming effective and updated the “Last updated” date at the top of this Private Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

If you consider a breach of the Privacy Act 1988 (Cth) as occurred, you may direct your query to our General Manager using the details below and we will attempt to resolve your complaint.

If you do not consider our response satisfactory, you may contact the Australian Privacy Commissioner at its website www.oaic.gov.au or call 1300 363 992.

If you have any questions about this Private Policy, you can contact us by:

• Email: letschat@thecg.com.au
• Phone Number: (02) 8314 4200
• Mail: Unit 4, 52 Queen Street, Beaconsfield, NSW, 2015
• Website: www.conversion.com.au
  

The Live Agency needs to gather and use certain information about individuals. These can include customers, suppliers, business contacts, employees and other people the organisation has a relationship with or may need to contact.

This policy describes how this personal data must be collected, handled and stored to meet Conversion’s data protection standards — and to comply with the law.

This data protection policy ensures Conversion:

• Complies with data protection law and follows good practice
• Protects the rights of staff, customers and partners
• Is open about how it stores and processes individuals’ data
• Protects itself from the risks of a data breach

The Data Protection Act 1998 describes how organisations — including Conversion — must collect, handle and store personal information. These rules apply regardless of whether data is stored electronically, on paper or on other materials. To comply with the law, personal information must be collected and used fairly, stored safely and not disclosed unlawfully.

The Data Protection Act is underpinned by eight important principles. These say that personal data must:

• Be processed fairly and lawfully
• Be obtained only for specific, lawful purposes
• Be adequate, relevant and not excessive
• Be accurate and kept up to date
• Not be held for any longer than necessary
• Processed in accordance with the rights of data subjects
• Be protected in appropriate ways
• Not be transferred outside Australia, unless that country or territory also ensures an adequate level of protection

This policy applies to:

• The head office of Conversion
• All staff of Conversion
• All contractors, suppliers and other people working on behalf of Conversion

It applies to all data that the company holds relating to identifiable individuals, even if that information technically falls outside of the Data Protection Act 1998. This can include:

• Names of individuals
• Postal addresses
• Email addresses
• Telephone numbers
• Plus any other information relating to individuals

This policy helps to protect Conversion from some very real data security risks, including:

• Breaches of confidentiality. For instance, information being given out inappropriately
• Failing to offer choice. For instance, all individuals should be free to choose how the company uses data relating to them
• Reputational damage. For instance, the company could suffer if hackers successfully gained access to sensitive data

Everyone who works for or with Conversion has some responsibility for ensuring data is collected, stored and handled appropriately. Each team that handles personal data must ensure that it is handled and processed in line with this policy and data protection principles. However, these people have key areas of responsibility:

1. The board of directors is ultimately responsible for ensuring that Conversion meets its legal obligations
2. The Partner, Tim Rozea, is responsible for:
   

• Keeping the board updated about data protection responsibilities, risks and issues.
• Reviewing all data protection procedures and related policies, in line with an agreed schedule
  
• Arranging data protection training and advice for the people covered by this policy
  
• Handling data protection questions from staff and anyone else covered by this policy. – Dealing with requests from individuals to see the data Conversion holds about them (also called ‘subject access requests’)
  
• Checking and approving any contracts or agreements with third parties that may handle the company’s sensitive data
  
• Ensuring all systems, services and equipment used for storing data meet acceptable security standards. – Performing regular checks and scans to ensure security hardware and software is functioning properly
  
• Evaluating any third-party services the company is considering using to store or process data. For instance, cloud computing services
  
• Approving any data protection statements attached to communications such as emails and letters
  
• Addressing any data protection queries from journalists or media outlets like newspapers
  
• Where necessary, working with other staff to ensure marketing initiatives abide by data protection principles
  

The only people able to access data covered by this policy should be those who need it for their work. Data should not be shared informally. When access to confidential information is required, employees can request it from their line managers.

• Conversion will provide training to all employees to help them understand their responsibilities when handling data
• Employees should keep all data secure, by taking sensible precautions and following the guidelines below
  
• In particular, strong passwords must be used and they should never be shared
  
• Personal data should not be disclosed to unauthorised people, either within the company or externally
  
• Data should be regularly reviewed and updated if it is found to be out of date. If no longer required, it should be deleted and disposed of
  
• Employees should request help from their line manager or the data protection officer if they are unsure about any aspect of data protection
  

Personal data is of no value to Conversion unless the business can make use of it. However, it is when personal data is accessed and used that it can be at the greatest risk of loss, corruption or theft:

• When working with personal data, employees should ensure the screens of their computers are always locked when left unattended.
• Personal data should not be shared informally. In particular, it should never be sent by email, as this form of communication is not secure.
  
• Data must be encrypted before being transferred electronically. The Director can explain how to send data to authorised external contacts.
  
• Personal data should never be transferred outside of the European Economic Area.
  
• Employees should not save copies of personal data to their own computers. Always access and update the central copy of any data.
  

The law requires Conversion to take reasonable steps to ensure data is kept accurate and up to date. The more important it is that the personal data is accurate, the greater the effort Conversion should put into ensuring its accuracy. It is the responsibility of all employees who work with data to take reasonable steps to ensure it is kept as accurate and up to date as possible.

• Data will be held in as few places as necessary. Staff should not create any unnecessary additional data sets
• Staff should take every opportunity to ensure data is updated. For instance, by confirming a customer’s details when they call
  
• Conversion will make it easy for data subjects to update the information Conversion holds about them. For instance, via the company website
  
• Data should be updated as inaccuracies are discovered. For instance, if a customer can no longer be reached on their stored telephone number, it should be removed from the database
  
• It is the marketing manager’s responsibility to ensure marketing databases are checked against industry suppression files every six months.
  

All individuals who are the subject of personal data held by Conversion are entitled to:

• Ask what information the company holds about them and why
• Ask how to gain access to it
  
• Be informed how to keep it up to date
  
• Be informed how the company is meeting its data protection obligations
  

If an individual contacts the company requesting this information, this is called a subject access request. Subject access requests from individuals should be made by email, addressed to the data controller at tim@thecg.com.au. The data controller can supply a standard request form, although individuals do not have to use this.

The data controller will aim to provide the relevant data within 14 days. The data controller will always verify the identity of anyone making a subject access request before handing over any information.

In certain circumstances, the Data Protection Act allows personal data to be disclosed to law enforcement agencies without the consent of the data subject. Under these circumstances, Conversion will disclose requested data. However, the data controller will ensure the request is legitimate, seeking assistance from the board and from the company’s legal advisers where necessary.

Conversion aims to ensure that individuals are aware that their data is being processed, and that they understand:

• How the data is being used
• How to exercise their rights
  

To these ends, the company has a privacy statement, setting out how data relating to individuals is used by the company.