Privacy Policy

Last updated: August 2025

Flourish in Tasmania is committed to protecting your privacy. This Privacy Policy outlines how we collect, use, store and share your personal information, in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). It also includes specific details relevant to our website and email marketing practices. By using our website, services, or email subscription forms, you agree to the terms of this Privacy Policy.

1. Who We Are

Our website address is: http://flourishintasmania.com.au

We are a small business based in Tasmania, offering creative workshops and curated merchandise through our website and online store.

2. What Personal Data We Collect and Why

2.1 Orders and Workshop Bookings

When you purchase a product or book into a workshop, we collect personal details including:

  • Full name
  • Email address
  • Billing and shipping addresses
  • Phone number (if provided)
  • Order history
  • Payment information (processed securely via third-party gateways)

We use this data to fulfil your order, deliver services, and provide order confirmations or updates.

2.2 Comments

When visitors leave comments on our site:

  • We collect the data shown in the comment form
  • We also collect your IP address and browser user agent string for spam detection
  • An anonymised string (hash) from your email may be sent to the Gravatar service
  • If your comment is approved, your profile picture (if linked via Gravatar) is visible publicly

Gravatar’s privacy policy: https://automattic.com/privacy

2.3 Media Uploads

If you upload images to our site, we recommend removing embedded location data (EXIF GPS). Visitors to the site may be able to download and extract this information.

2.4 Contact Forms

When you use our contact forms, we collect the data you submit (e.g. name, email, and message content). We use this only to respond to your enquiry unless you give explicit permission for further contact.

2.5 Email Marketing (MailerLite)

If you opt into our mailing list, we collect your:

  • Name
  • Email address
  • Engagement activity (e.g. email opens, clicks)

We use MailerLite to send email newsletters, workshop updates, and occasional marketing offers. You can unsubscribe at any time using the link in our emails or by contacting us directly. MailerLite stores your data on secure servers in the EU and is GDPR-compliant. Privacy Policy: https://www.mailerlite.com/legal/privacy-policy

2.6 Cookies

We use cookies to enhance your browsing experience. You can disable cookies in your browser at any time.

Here’s how we use cookies:

  • Comment cookies: If you leave a comment, you can opt in to saving your name, email and website. These last for 1 year.
  • Login cookies: Temporary cookies are used to determine if your browser accepts cookies, and persistent cookies store login info and screen preferences.
  • Editor cookies: If you edit or publish a post, a cookie is stored to remember the post ID (expires after 1 day).
  • Analytics cookies: We may use Google Analytics and MailerLite tracking to understand site usage and email performance.
2.7 Embedded Content

Our pages may include embedded content (e.g. YouTube videos, Instagram posts, articles). These behave as if you visited the original site and may collect:

  • Your IP address
  • Your interaction with the content
  • Cookies and tracking data, particularly if you’re logged in to that third-party service

3. Who We Share Your Data With

We may share your information with:

  • MailerLite (email marketing)
  • Payment processors (e.g. Stripe)
  • Shipping and logistics providers
  • Trusted service partners for website hosting and analytics

All third parties are required to handle your data securely and in compliance with privacy laws. We do not sell, rent or trade your personal data.

4. How Long We Retain Your Data

  • Comments: Stored indefinitely to help recognise follow-up comments automatically.
  • User accounts (if applicable): Stored as long as the account is active.
  • Email subscribers: Stored until you unsubscribe.
  • Orders and contact forms: Stored for legal, administrative, and service history purposes.
  • 5. Your Rights

You have the right to:

  • Request access to your personal data
  • Request corrections or updates
  • Request that we delete your personal information
  • Opt out of email communications

To make a request, contact: hello@flourishintasmania.com.au
We may retain some data where legally required or where it relates to completed transactions.

6. Where We Send Your Data

  • Visitor comments may be checked through an automated spam detection service (e.g. Akismet).
  • Email data is processed and stored securely via MailerLite’s EU-based servers.

7. How We Protect Your Data

  • SSL encryption secures data transmitted through our website
  • Strong password policies are enforced for admin access
  • We only work with secure, compliant third-party platforms

8. Additional Information

8.1 Data Breach Procedures

In the event of a suspected or confirmed data breach, we will:

  • Investigate promptly
  • Notify affected individuals and the Office of the Australian Information Commissioner (if required)
  • Take corrective action to prevent future breaches

8.2 Third-Party Data

We may receive non-personal or anonymised data from services like Google Analytics and MailerLite.

8.3 Automated Decision-Making & Profiling

We do not use automated decision-making processes that produce legal effects or significantly affect individuals. We may use analytics to better tailor our marketing content.

8.4 Regulatory Disclosure Requirements

We comply with all legal requirements under the Privacy Act 1988 (Cth), and other applicable Australian consumer protection laws.

 

For questions about these Terms, your order, or our workshops, please email us at hello@flourishintasmania.com.au