Privacy Policy

Who we are

This website is owned and administered by the Australian entity Climate Action Now Signs Incorporated (known as CANsign or CANsign Inc) Reg. No: INC2000974 ABN: 51 217 403 087

CANsign is an not for profit (or for purpose) organization and registered Australian charity under the Australian Charities and Not-for-profits Commission (ACNC) as the national regulator of charities.

Our website address is: https://cansign.org.au/ and you may contact us from the Contact Page.

What personal information we collect

How we collect it

The personal information we collect are contact details and publishable content.

• Contact Details are collected as supplied by you from time to time for the primary purpose of purchases and dispatch (postal) services. They usually include name, address and optionally email and phone number details and the associated order details.  We do not personally store usable credit card information. Where a record is required, we entrust credit cards to our payment gateway and store only the last few digits and expiry date of your credit card solely for purposes of identity confirmation and forewarning of expiry.
• Publishable content is currently limited to comments such as approved testimonials, and as such is content you would have agreed to publish on our website.
  • Should we change our systems to enable you to submit content to us for publication (including but not limited to comments or orders) you assign us a transferrable, perpetual rights to publish and/or commercially exploit said content without limitation. You also warrant in submitting such content that the content is owned or produced by yourself or you otherwise have permission to assign publication rights to us. Publication rights do not extend to fields specifically marked as private and not for publication, except in cases of clear violations of our terms of use.
  • Content submitted by you for publication may be disclosed to all visitors of our website, and/or republished on other websites at our discretion.
  • If you provide personal information either of your own or of any third party as part of publishable content, you warrant that you have permission to publish said information and indemnify us against any consequences resulting from the publication of said information.
  • If you find your personal information published on our website without your consent, please contact us immediately via our Contact Page.

Contact details and publishable content are collected when supplied by you either via the website or direct to us by other means.

Why we collect it

Publishable content is collected and republished where applicable to inform our visitors.

We collect your personal contact details:

• To respond to orders, requests for dispatches or queries you raise
• To fulfil order requests made by you such as purchases of products or requests relating to dispatch (postal) services
• CANsign will endeavour to ensure your data will be protected and only used for its intended purpose.

Warnings

General Internet Use Warning

This site does not provide facilities for the secure transmission of information across the Internet. Users should be aware that there are inherent risks transmitting information across the Internet.

Media warning

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

We do not share any of your personal data with external third parties. Data is only worked on and read by our trusted staff, support administrators and trusted partners being:

• appointed team members of the CANsign
• Select and trusted employees of the Climate Action Network of Australia 
• Website development and support staff of JCTWebWorks
• Website hosting service provider – Go Hosting 
• CANsign staff using Secure Google Drive services

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. Order data is retained for 3 years online and archived for a further 4 years. Data older than 7 years is deleted.  We retain data for a period so we can recognize and follow-up requests, orders or comments and build up a knowledge base.

Website administrators can also see and edit that information.

What rights you have over your data

If you data stored with us you have the right (excluding exceptions outlined in the Privacy Act) to seek access to and update or correct the personal information we hold about you, including any data you have provided to us. If you make an access request, we will ask you to verify your identity. We may charge a fee to cover the costs of meeting your request. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Spam or Robot detection service

Visitor data may be checked through an automated spam detection service.

What data breach procedures we have in place

We execute regular cyber security checks using internal software assessment and reporting tools via our IT support team at JCTWebWorks. Alerts are reported to CANsign executive on an as required basis.

A notifiable data breach will involve notification of the CANsign executive and in turn CANsign will inform owners of the data on the site in a timely manner should the breach warrant that advice.

CANsign will not make an attempt to identify casual users or visitors to the site and their associated browsing activities. However, in the unlikely event of an investigation, a law enforcement agency or other government agency may exercise its legal authority to inspect our Hosting Service Provider’s logs.