Privacy,,
plainly stated.
The data we collect, what we do with it, and how to ask for it back. Written for humans, not lawyers — but compliant with the Privacy Act 1988 and the Australian Privacy Principles.
What we collect.
When you order, we need an email, delivery address and payment details — handled by our payment processor, never stored on our servers. When you visit, our analytics see anonymised browsing data: which pages, how long, on what device. When you sign up to our newsletter, we keep your email and what you've engaged with so we don't send you something you've already read.
That's the lot. We don't buy data, infer political views, or merge with offline records.
How we use it.
- To fulfil your order: dispatch, tracking, returns and the rare quality call-back.
- To improve the product: aggregate analytics tell us which pages confuse people, which products people compare, what we should write next.
- To talk to you: only if you've asked us to. Order updates are transactional; everything else is opt-in.
Who we share with.
A short, named list of processors, each on a data-processing agreement: Shopify (commerce), Stripe (payments), Australia Post and DHL (fulfilment), Klaviyo (email), Cloudflare (security & CDN), Plausible (privacy-first analytics). We don't sell or rent your data to anyone, ever. If we're ever legally compelled to disclose something, we'll tell you unless we're prevented from doing so.
Cookies & tracking.
We use essential cookies (cart, login, checkout) and one analytics cookie (Plausible — anonymous, no fingerprinting, no cross-site tracking). We don't load Facebook Pixel, Google Analytics or third-party advertising trackers on our site. You can clear cookies in your browser at any time without affecting your account.
Your rights.
Request a copy of everything we hold on you. Sent within 30 days.
Update or fix anything that's wrong.
Ask us to remove your record entirely.
Receive a structured export to take elsewhere.
Opt out of marketing in any email's footer or by replying STOP.
Escalate to OAIC.gov.au if we've fallen short.
Security.
All traffic is TLS 1.3 encrypted. Payment details never touch our infrastructure — they go directly from your browser to Stripe under PCI-DSS Level 1. Our admin systems require two-factor authentication. If we ever experience a breach affecting you, we'll notify you within 72 hours per Notifiable Data Breaches scheme requirements.
Contacting us.
For privacy questions, exercise of rights, or anything you'd rather discuss with a human:
privacy@jacksonmiles.com.au
Jackson Miles Pty Ltd · ABN 12 345 678 901
274 Brunswick St, Fitzroy VIC 3065