Login

Cart

Your cart is empty

APA-NZPA Compliance

 

APA-NZPA COMPLIANCE

OUR COMMITMENT TO AUSTRALIAN & NEW ZEALAND PRIVACY

Lily Venus fully complies with the Australian Privacy Act 1988 (including the Australian Privacy Principles) and the New Zealand Privacy Act 2020. We are committed to protecting the privacy of our clients in Australia and New Zealand through transparent and accountable practices.

AUSTRALIAN PRIVACY PRINCIPLES (APPs)

We adhere to all 13 Australian Privacy Principles:

APP 1 - Open and Transparent Management
Our privacy practices are clearly documented and available to you. We maintain up-to-date policies about how we manage your personal information.

APP 2 - Anonymity and Pseudonymity
Where lawful and practicable, you may:

  • Browse our website anonymously
  • Use a pseudonym for inquiries
  • Shop without creating an account

APP 3 - Collection of Solicited Information
We only collect information that is reasonably necessary for:

  • Processing and delivering orders
  • Providing customer service
  • Meeting legal obligations
  • Improving our services

APP 4 - Unsolicited Information
If we receive information we didn't request:

  • We determine if we could have collected it
  • If not, we destroy or de-identify it
  • If yes, APPs 5-13 apply

APP 5 - Notification of Collection
When collecting your information, we notify you of:

  • Our identity and contact details
  • Collection purposes
  • Consequences of not providing information
  • Third parties we may disclose to
  • Our privacy policy location
  • How to access and correct information
  • Whether we disclose overseas

APP 6 - Use or Disclosure
We use and disclose information only:

  • For primary purposes you'd reasonably expect
  • For related secondary purposes with consent
  • As required by law
  • With your consent

APP 7 - Direct Marketing
We only use your information for marketing when:

  • You reasonably expect it
  • You've provided consent
  • We include opt-out in each communication
  • We honor opt-out requests promptly

APP 8 - Cross-Border Disclosure
Before disclosing information overseas:

  • We ensure recipients comply with APPs
  • Use contractual safeguards
  • Only disclose to permitted countries
  • Take reasonable steps to ensure protection

APP 9 - Government Identifiers
We do not:

  • Adopt government identifiers as our own
  • Use or disclose them except as required
  • Store them unless necessary

APP 10 - Quality of Information
We ensure your information is:

  • Accurate
  • Up-to-date
  • Complete
  • Relevant

APP 11 - Security
We protect your information from:

  • Misuse and interference
  • Loss and unauthorized access
  • Modification and disclosure Through encryption, access controls, and secure destruction

APP 12 - Access
You can request access to your information:

  • Free of charge (unless excessive)
  • Response within 30 days
  • Reasons provided if access denied
  • Alternative access methods offered

APP 13 - Correction
You can request corrections:

  • We respond within 30 days
  • If refused, we note your request
  • No charge for corrections
  • Third parties notified of corrections

NEW ZEALAND PRIVACY PRINCIPLES

We comply with all 13 Information Privacy Principles (IPPs):

IPP 1 - Purpose of Collection
Information collected only for lawful purposes necessary for our functions

IPP 2 - Source of Information
Collected directly from you unless authorized otherwise

IPP 3 - Collection Notice
You're informed of collection details at or before collection

IPP 4 - Manner of Collection
Collection is lawful, fair, and not unreasonably intrusive

IPP 5 - Storage and Security
Protected by reasonable safeguards against loss and unauthorized access

IPP 6 - Access to Information
You can access your information with limited exceptions

IPP 7 - Correction
You can request corrections to ensure accuracy

IPP 8 - Accuracy Check
We check accuracy before use

IPP 9 - Retention
Not kept longer than necessary

IPP 10 - Use Limits
Used only for purposes collected

IPP 11 - Disclosure Limits
Disclosed only for collection purposes or with consent

IPP 12 - Unique Identifiers
Not assigned unnecessarily

IPP 13 - Cross-Border Disclosure
Reasonable steps taken to protect information sent overseas

COLLECTION PRACTICES

What We Collect:

  • Name and contact details
  • Delivery addresses
  • Payment information (tokenized)
  • Order history
  • Preferences and sizes
  • Communication records

How We Collect:

  • Directly from you
  • Automatically via website
  • From third parties (with consent)

NOTIFIABLE DATA BREACHES

Australia (NDB Scheme): If a breach creates likely risk of serious harm:

  • We assess within 30 days
  • Notify affected individuals promptly
  • Report to OAIC
  • Provide recommendations

New Zealand: We voluntarily follow breach notification best practices:

  • Prompt assessment
  • Notification where appropriate
  • Mitigation steps
  • Prevention improvements

YOUR RIGHTS

Both Countries:

  • Access your information
  • Correct inaccuracies
  • Request deletion (subject to legal requirements)
  • Opt-out of marketing
  • Lodge complaints

How to Exercise Rights:

  1. Email: privacy@lilyvenus.com
  2. Phone: +39 348 8423854
  3. Online privacy portal
  4. Written request

Response Times:

  • Acknowledgment: 7 days
  • Full response: 30 days
  • Complex requests: May extend with notice

OVERSEAS TRANSFERS

Your information may be transferred to:

  • Italy (Adequate protection - GDPR)
  • Payment processors (Contractual safeguards)
  • Shipping partners (Limited data)

We ensure all transfers have appropriate protections.

MARKETING PREFERENCES

Opt-In Required For:

  • Email marketing
  • SMS marketing
  • Third-party offers

Easy Opt-Out:

  • Unsubscribe link in emails
  • Text STOP for SMS
  • Account preferences
  • Contact us directly

COOKIES AND TRACKING

We comply with both countries' requirements:

  • Clear cookie notices
  • Consent for analytics/marketing cookies
  • Detailed cookie information
  • Easy preference management

COMPLAINTS PROCESS

Internal Resolution:

  1. Contact Privacy Officer
  2. Investigation within 30 days
  3. Written response
  4. Escalation if needed

External Authorities:

Australia:
Office of the Australian Information Commissioner (OAIC)
GPO Box 5218
Sydney NSW 2001
Phone: 1300 363 992
enquiries@oaic.gov.au

New Zealand:
Office of the Privacy Commissioner
PO Box 10094
Wellington 6143
Phone: 0800 803 909
enquiries@privacy.org.nz

PRIVACY OFFICER CONTACT

Lily Venus Privacy Officer
privacy@lilyvenus.com
+39 348 8423854
Via Milano 46, 36100 Vicenza, Italy

Local Representatives: We can provide local contact options for urgent matters.

AGE RESTRICTIONS

  • Under 16: Parental consent required
  • Verification may be requested
  • Parents can access minor's information
  • Special protections for youth data

RECORD KEEPING

We maintain records of:

  • Privacy impact assessments
  • Consent records
  • Access requests
  • Breach assessments
  • Complaints and resolutions

TRANSPARENCY MEASURES

  • Clear privacy policy
  • Easy-to-find privacy information
  • Layered privacy notices
  • Regular updates communicated
  • Plain language used

EMPLOYEE PRIVACY

For Australian/NZ employees or contractors:

  • Employee records exemption applies
  • Specific notice provided
  • Limited use for employment purposes
  • Secure storage and access

HEALTH INFORMATION

If we collect health information (e.g., for custom fittings):

  • Express consent required
  • Enhanced security measures
  • Limited access
  • Prompt deletion when unnecessary

CREDIT INFORMATION

We do not collect or hold credit reports. Payment processing is handled by secure third parties.

QUESTIONS?

For privacy questions specific to Australia or New Zealand:

Email: privacy@lilyvenus.com
Phone: +39 348 8423854
Hours: Consider local time zones
Language: English
Response: 1-2 business days

We value your privacy and are committed to protecting your personal information across all jurisdictions.