Who we are
Our website address is: https://charterscene.com/
Introduction
This Consumer Data Policy outlines Charterscene (“we”, “our” or “the Company”) practices with respect to information collected from users who access our website at www.charterscene.com.au (“Site”), or otherwise share personal information with us (collectively: “Users”).
Grounds for data collection
Charterscene and our affiliates respect the privacy of our customers and guests and care deeply about privacy, security, and online safety. We are committed to safeguarding the privacy of our customers, guests and website users and adhere to the Australian Privacy Principles contained in the Australian Privacy Act 1988 and, where applicable, the European Economic Area (EEA) General Data Protection Regulation (GDPR).
Processing of your personal information (meaning, any information which may potentially allow your identification with reasonable means; hereinafter “Personal Information”) is necessary for the performance of our contractual obligations towards you and providing you with our services, to protect our legitimate interests and for compliance with legal and financial regulatory obligations to which we are subject.
When you use the Site, you consent to the collection, storage, use, disclosure and other uses of your Personal Information as described in this Privacy Policy.
We encourage our Users to carefully read the Privacy Policy and use it to make informed decisions.
What information we collect?
We collect two types of data and information from Users.
The first type of information is un-identified and non-identifiable information pertaining to a User(s), which may be made available or gathered via your use of the Site (“Non-personal Information”). We are not aware of the identity of a User from which the Non-personal Information was collected.
Non-personal Information which is being collected may include your aggregated usage information and technical information transmitted by your device, including certain software and hardware information (e.g. the type of browser and operating system your device uses, language preference, access time, etc.) in order to enhance the functionality of our Site. We may also collect information on your activity on the Site (e.g. pages viewed, online browsing, clicks, actions, etc.).
The second type of information Personal Information which is individually identifiable information, namely information that identifies an individual or may with reasonable effort identify an individual. Such information includes:
- Device Information: We collect Personal Information from your device. Such information includes geolocation data, IP address, unique identifiers (e.g. MAC address and UUID) and other information which relates to your activity through the Site.
- To provide our goods and services, to keep you informed about our goods and services and to enable compliance with applicable legislation we collect personal information including: –
- Contact and identity information (such as name, email address, mailing address, Australian Business Number (ABN) and phone numbers);
- Travel information – details of your flight, hotel and car bookings and other travel details, your preferences for seat selection or special meals, details about your participation in loyalty or awards programs and applicable membership numbers and other travel preferences.
- Payment information (including payment card numbers and associated identifiers, billing address, and bank account information). (Please note: we do not store or host credit card information – see Credit Card Data Security below); and
- Other information, such as information about what products you purchased, your interests, demographic information, photographs and videos. We may also ask for your age and gender.
- Usage Data We may also collect information on how our websites are accessed and used (“Usage Data”). This Usage Data may include information such as your computer’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
- Tracking Cookies Data. We may use cookies and similar tracking technologies to track the activity on our Service and we hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device. Other tracking technologies are also used such as beacons, tags and scripts to collect and track information and to improve and analyse our websites.
How do we receive information about you? We receive your Personal Information from various sources:
- When you voluntarily provide us your personal details in order to register on our Site;
- When you use or access our Site in connection with your use of our services;
- From third party providers, services and public registers (for example, traffic analytics vendors).
What information we collect?
We do not rent, sell, or share Users’ information with third parties except as described in this Privacy Policy.
We may use the information for the following:
- provide you with travel and event products and services;
- consider your request for a product or service;
- provide you with information about other products and services that may be of interest to you including information about our business partners’ products and services. Please see the section titled ‘MARKETING AND PRIVACY’ for further information;
- assist in arrangements and reservations with suppliers (such as caterers, airlines, tour operators, car hire operators, hotels and insurance providers) in relation to the provision of a product or service;
- collect and process payments, through us or a third party;
- perform all other administrative and operational tasks (including risk management, systems development and testing, staff training, and market or customer satisfaction research);
to facilitate your participation in loyalty programs; - analyse how our products and services (including any websites) are used;
- personalise the service or communication we provide to you, tailor your experience on our website or other websites to your interests and make more appropriate travel recommendations; and
- investigate, detect and protect us and other third parties against, negligence, breach of contract, fraud, theft and other illegal activities;
- contact you in relation to upgrading your use of our services, special offers (from us, or on behalf of third parties), with newsletters, surveys, and individual service audits. We may give extracts of our customer lists containing personal information to third party contractors to do this on our behalf. We will ensure that those contractors are bound to protect your personal information to the same standard that we are.
- identify the source of new customers;
- monitor and address complaints, other feedback, and to resolve disputes;
In addition to the different uses listed above, we may transfer or disclose Personal Information to our subsidiaries, affiliated companies and subcontractors.
In addition to the purposes listed in this Privacy Policy, we may share Personal Information with our trusted third party providers, who may be located in different jurisdictions across the world, for any of the following purposes:
- Hosting and operating our Site;
- suppliers of products or services which you have selected (such as caterers, cruise and tour operators, event coordinators, charter boat operators, airlines, tour operators, car and boat hire operators, hotels and insurance providers);
- third party travel service providers who assist in fulfilling the booking you have made;
- third parties when we contract out some of our activities, such as our mailing house. In these circumstances,
- government authorities in the event of an accident, disaster or emergency; and
- others where we are authorised or required by law to do so.
- Information technology and website providers and support organisations
- Website and cloud hosting services, translation services and mapping services.
- Providing you with our services, including providing a personalized display of our Site;
- Storing and processing such information on our behalf;
- Serving you with advertisements and assist us in evaluating the success of our advertising campaigns and help us retarget any of our users;
- Providing you with marketing offers and promotional materials related to our Site and services;
- Performing research, technical diagnostics or analytics;
We may also disclose information if we have good faith to believe that disclosure of such information is helpful or reasonably necessary to: (i) comply with any applicable law, regulation, legal process or governmental request; (ii) enforce our policies (including our Agreement), including investigations of potential violations thereof; (iii) investigate, detect, prevent, or take action regarding illegal activities or other wrongdoing, suspected fraud or security issues; (iv) to establish or exercise our rights to defend against legal claims; (v) prevent harm to the rights, property or safety of us, our users, yourself or any third party; or (vi) for the purpose of collaborating with law enforcement agencies and/or in case we find it necessary in order to enforce intellectual property or other legal rights.
User Rights
You may request to:
- Receive confirmation as to whether or not personal information concerning you is being processed, and access your stored personal information, together with supplementary information.
- Receive a copy of personal information you directly volunteer to us in a structured, commonly used and machine-readable format.
- Request rectification of your personal information that is in our control.
- Request erasure of your personal information.
- Object to the processing of personal information by us.
- Request to restrict processing of your personal information by us.
- Lodge a complaint with a supervisory authority.
However, please note that these rights are not absolute, and may be subject to our own legitimate interests and regulatory requirements.
Data protection rights under the General Data Protection Regulation (GDPR)
If you are a resident of the European Economic Area (EEA), you have certain data protection rights. Charterscene aims to take reasonable steps to allow you to correct, amend, delete or limit the use of your Personal Data.
If you wish to be informed about what Personal Data we hold about you and if you want it to be removed from our systems, please contact us.
In certain circumstances, you have the following data protection rights:
- The right to access, update or delete the information we have on you. Whenever made possible, you can access, update or request deletion of your Personal Data directly within your account settings section. If you are unable to perform these actions yourself, please contact us to assist you.
- The right of rectification. You have the right to have your information rectified if that information is inaccurate or incomplete.
- The right to object. You have the right to object to our processing of your Personal Data.
- The right of restriction. You have the right to request that we restrict the processing of your personal information.
- The right to data portability. You have the right to be provided with a copy of the information we have on you in a structured, machine-readable and commonly used format.
- The right to withdraw consent. You also have the right to withdraw your consent at any time where Charterscene relied on your consent to process your personal information.
Please note that we may ask you to verify your identity before responding to such requests.
You may have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).
If you wish to exercise any of the aforementioned rights, or receive more information, please contact our Data Protection Officer (“DPO”) using the details provided below:
Data Controller
Charterscene
PO Box 373,
Forestville, NSW, 2087
Australia
Retention
We will retain your personal information for as long as necessary to provide our services, and as necessary to comply with our legal obligations, resolve disputes, and enforce our policies. Retention periods will be determined taking into account the type of information that is collected and the purpose for which it is collected, bearing in mind the requirements applicable to the situation and the need to destroy outdated, unused information at the earliest reasonable time. Under applicable regulations, we will keep records containing client personal data, account opening documents, communications and anything else as required by applicable laws and regulations.
We may rectify, replenish or remove incomplete or inaccurate information, at any time and at our own discretion.
Cookies
We and our trusted partners use cookies and other technologies in our related services, including when you visit our Site or access our services.
A “cookie” is a small piece of information that a website assign to your device while you are viewing a website. Cookies are very helpful and can be used for various different purposes. These purposes include allowing you to navigate between pages efficiently, enable automatic activation of certain features, remembering your preferences and making the interaction between you and our Services quicker and easier. Cookies are also used to help ensure that the advertisements you see are relevant to you and your interests and to compile statistical data on your use of our Services.
The Site uses the following types of cookies:
a.’session cookies’ which are stored only temporarily during a browsing session in order to allow normal use of the system and are deleted from your device when the browser is closed;
b.’persistent cookies’ which are read only by the Site, saved on your computer for a fixed period and are not deleted when the browser is closed. Such cookies are used where we need to know who you are for repeat visits, for example to allow us to store your preferences for the next sign-in;
c.’third party cookies’ which are set by other online services who run content on the page you are viewing, for example by third party analytics companies who monitor and analyze our web access.
Cookies do not contain any information that personally identifies you, but Personal Information that we store about you may be linked, by us, to the information stored in and obtained from cookies. You may remove the cookies by following the instructions of your device preferences; however, if you choose to disable cookies, some features of our Site may not operate properly and your online experience may be limited.
We may also use a tool called “Google Analytics” to collect information about your use of the Site. Google Analytics collects information such as how often users access the Site, what pages they visit when they do so, etc. We use the information we get from Google Analytics only to improve our Site and services. Google Analytics collects the IP address assigned to you on the date you visit sites, rather than your name or other identifying information. We do not combine the information collected through the use of Google Analytics with personally identifiable information. Google’s ability to use and share information collected by Google Analytics about your visits to this Site is restricted by the Google Analytics Terms of Use and the Google Privacy Policy.
Third party collection of information
Our policy only addresses the use and disclosure of information we collect from you. To the extent you disclose your information to other parties or sites throughout the internet, different rules may apply to their use or disclosure of the information you disclose to them. Accordingly, we encourage you to read the terms and conditions and privacy policy of each third party that you choose to disclose information to.
This Privacy Policy does not apply to the practices of companies that we do not own or control, or to individuals whom we do not employ or manage, including any of the third parties which we may disclose information as set forth in this Privacy Policy.
How do we safeguard your information?
We take great care in implementing and maintaining the security of the Site and your information. To help prevent unauthorised access or disclosure, Charterscene and its processors and providers have implemented security features to protect your personal information from unauthorized access. These include but are not limited to, suitable physical, electronic and managerial procedures to safeguard and secure information and protect it from misuse, interference, loss and unauthorised access, modification and disclosure. Servers are maintained in a controlled, secured environment. Only staff who need to have access to your personal information necessary to perform their job function are authorized to access the database.
In addition, our employees and the contractors who provide services related to our information systems are obliged to respect the confidentiality of any personal information held by us. However, we will not be held responsible for events arising from unauthorized access to your personal information.
All transactions are secured by 128 bit SSL encryption. SSL technology encodes information as it is being sent over the Internet, helping to ensure that the information transmitted remains confidential. Servers are deployed to Amazon Web Services (AWS), which is a PCI DSS Level 1 compliant provider and provides a certified infrastructure for storing, processing, and transmitting credit card information. Although we take reasonable steps to safeguard information, we cannot be responsible for the acts of those who gain unauthorized access or abuse our Site, and we make no warranty, express, implied or otherwise, that we will prevent such access.
Credit Card Data Security
When purchasing from Charterscene, card details are transmitted using the Eway payment Application Program Interface (API) or through other secure payment gateways. Credit Card data is not stored or hosted by Charterscene and is encrypted before transmission to the gateway PCI DSS compliant environment. The private encryption key is retained by Eway so that only Eway is able to decrypt sensitive credit card data.
Advertisements
We may use a third-party advertising technology to serve advertisements when you access the Site. This technology uses your information with regards to your use of the Services to serve advertisements to you (e.g., by placing third-party cookies on your web browser).
You may opt-out of many third-party ad networks, including those operated by members of the Network Advertising Initiative (“NAI”) and the Digital Advertising Alliance (“DAA”). For more information about this practice by NAI and DAA members, and your choices regarding having this information used by these companies, including how to opt-out of third-party ad networks operated by NAI and DAA members, please visit their respective websites:http://optout.networkadvertising.org/#!/ and http://optout.aboutads.info/#!/.
Marketing
We may use your Personal Information, such as your name, email address, telephone number, etc. ourselves or by using our third party subcontractors for the purpose of providing you with promotional materials, concerning our services, which we believe may interest you.
Out of respect to your right to privacy we provide you within such marketing materials with means to decline receiving further marketing offers from us. If you unsubscribe we will remove your email address or telephone number from our marketing distribution lists.
Please note that even if you have unsubscribed from receiving marketing emails from us, we may send you other types of important e-mail communications without offering you the opportunity to opt out of receiving them. These may include customer service announcements or administrative notices.
Corporate transaction
We may share information in the event of a corporate transaction (e.g. sale of a substantial part of our business, merger, consolidation or asset sale). In the event of the above, the transferee or acquiring company will assume the rights and obligations as described in this Privacy Policy.
Minors
We understand the importance of protecting children’s privacy, especially in an online environment. The Site is not designed for or directed at children. Under no circumstances shall we allow use of our services by minors without prior consent or authorization by a parent or legal guardian. We do not knowingly collect Personal Information from minors. If a parent or guardian becomes aware that his or her child has provided us with Personal Information without their consent, he or she should contact us at admin@41.41.6.142.
Updates or amendments to this Privacy Policy
We reserve the right to periodically amend or revise the Privacy Policy; material changes will be effective immediately upon the display of the revised Privacy policy. The last revision will be reflected in the “Last modified” section. Your continued use of the Platform, following the notification of such amendments on our website, constitutes your acknowledgment and consent of such amendments to the Privacy Policy and your agreement to be bound by the terms of such amendments.
How to contact us
If you have any general questions about the Site or the information we collect about you and how we use it, you can contact us at
Data Controller
Charterscene
PO Box 373,
Forestville, NSW, 2087
Australia