FIKA by NABA

Privacy Policy

Effective Date: 8 April 2025

1. Introduction

Welcome to Fika Bakery! We are committed to protecting the privacy and security of our customers' and website visitors' personal information. This Privacy Policy outlines how Fika Bakery ("we", "us", or "our") collects, uses, discloses, and protects your personal information when you visit our website ([Your Website Address]), place an order, subscribe to our newsletter, or otherwise interact with us.

Fika Bakery operates as a home-based bakery business in Australia. We adhere to the Australian Privacy Principles (APPs) contained within the Privacy Act 1988 (Cth).

By using our website and services, you agree to the collection and use of information in accordance with this policy.

2. What Personal Information We Collect

We may collect the following types of personal information:

  • Identity Information: Name, contact details (email address, phone number, delivery address).
  • Order Information: Details of products you have ordered, order history, dietary requirements or preferences you voluntarily provide (please only provide what is necessary for your order).
  • Payment Information: While we typically use third-party payment processors (e.g., Stripe, PayPal, Square), we may indirectly collect transaction details necessary for order confirmation and record-keeping. We do not directly store your full credit card numbers. Payment processors handle this information according to their own privacy policies.
  • Communication Information: Records of your communications with us via email, contact forms, social media, or phone.
  • Website Usage Information (Technical Data): IP address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access our website. This is often collected automatically via cookies and similar technologies.
  • Marketing and Preferences Information: Your preferences in receiving marketing communications from us (e.g., newsletter sign-ups) and your communication preferences.

3. How We Collect Your Personal Information

We collect personal information in the following ways:

  • Directly from You: When you fill out forms on our website (e.g., order forms, contact forms, newsletter sign-ups), place an order over the phone or via email, communicate with us directly, or provide feedback.
  • Automatically: As you interact with our website, we may automatically collect Technical Data about your equipment, browsing actions, and patterns using cookies, server logs, and other similar technologies. (See Section 6 on Cookies).
  • From Third Parties: We may occasionally receive information from third parties, such as our payment processors (confirming payment) or delivery services (confirming delivery).

4. Why We Collect and How We Use Your Personal Information

We collect and use your personal information for the following purposes:

  • To Process Your Orders: To fulfill your orders for baked goods, including processing payments, arranging delivery or collection, and managing returns or refunds.
  • To Communicate With You: To respond to your inquiries, provide customer support, send order confirmations and updates, and request feedback.
  • To Improve Our Products and Services: To understand customer preferences, troubleshoot issues, improve our website functionality, and develop new offerings.
  • For Marketing and Promotions (with your consent): To send you newsletters, special offers, and information about new products or events, but only if you have opted-in to receive such communications. You can opt-out at any time.
  • For Legal and Administrative Purposes: To comply with legal obligations, maintain business records, prevent fraud, and enforce our terms and conditions.
  • For Website Analytics: To analyse website traffic and usage patterns to improve user experience.

5. Disclosure of Your Personal Information

We respect your privacy and will not sell your personal information. We may disclose your personal information to the following parties only when necessary:

  • Third-Party Service Providers: Who assist us in operating our business, such as:
    • Payment processors (e.g., Stripe, PayPal, Square) to process payments securely.
    • Delivery services (if applicable) to deliver your orders.
    • Website hosting providers.
    • Email marketing platforms (e.g., Mailchimp) if you subscribe to our newsletter.
    • Analytics providers (e.g., Google Analytics).

    We require these third parties to respect the security of your personal data and to treat it in accordance with the law. They are only permitted to process your personal data for specified purposes and in accordance with our instructions.

  • Legal Requirements: If required by law, court order, or governmental regulation, or if we believe disclosure is necessary to protect our rights, property, safety, or that of our customers or others (e.g., fraud prevention).
  • Business Transfers: In the event of a sale, merger, or transfer of all or a portion of our business assets, your personal information may be transferred as part of that transaction, subject to the receiving party agreeing to adhere to privacy practices substantially similar to this policy.

6. Cookies and Website Analytics

Our website uses cookies (small text files placed on your device) and similar technologies to enhance your browsing experience, analyse website traffic, and potentially personalize content.

  • Types of Cookies: We may use session cookies (temporary) and persistent cookies (remain for a set period). We may use essential cookies (for website function), performance cookies (for analytics), and functionality cookies (to remember your preferences).
  • Purpose: Cookies help us understand how visitors use our site (e.g., via Google Analytics), remember your preferences, and ensure the website functions correctly.
  • Your Choice: You can manage or disable cookies through your web browser settings. However, disabling essential cookies may affect the functionality of our website.
  • Google Analytics: We may use Google Analytics to collect information about website usage. Google Analytics collects information such as how often users visit the site, what pages they visit, and what other sites they used prior to coming to ours. Google's ability to use and share information collected by Google Analytics about your visits is restricted by the Google Analytics Terms of Service and the Google Privacy Policy.

7. Data Security and Storage

We take reasonable steps to protect your personal information from misuse, interference, loss, unauthorized access, modification, or disclosure. These measures include:

  • Using secure connections (SSL/TLS) for data transmission on our website where appropriate.
  • Implementing appropriate technical and administrative security measures.
  • Restricting access to personal information to personnel who need it to perform their job functions.
  • Using reputable third-party service providers with strong security practices (e.g., payment gateways).

However, no method of transmission over the Internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee its absolute security.

We will retain your personal information only for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

8. Accessing and Correcting Your Personal Information

Under the Australian Privacy Principles, you have the right to request access to the personal information we hold about you and to request its correction if it is inaccurate, out-of-date, incomplete, irrelevant, or misleading.

To request access or correction, please contact us using the details below. We will respond to your request within a reasonable timeframe. We may need to verify your identity before granting access or making corrections. There may be circumstances where we are legally permitted to deny access.

9. Marketing Communications (Opt-Out)

If you have subscribed to our marketing communications (e.g., newsletter), you can opt-out at any time by:

  • Clicking the "unsubscribe" link provided in the footer of our marketing emails.
  • Contacting us directly using the details provided below.

We will process your opt-out request promptly. Please note that even if you opt-out of marketing communications, we may still send you essential transactional or administrative communications related to your orders or account.

10. Overseas Disclosure

Some of our third-party service providers (e.g., website hosting, email marketing platforms, analytics providers like Google) may be based overseas or use infrastructure located outside Australia. This means your personal information may be transferred to, stored, or processed in countries outside Australia (e.g., the United States).

When we disclose personal information to overseas recipients, we take reasonable steps to ensure that the recipient handles the information in a manner consistent with the Australian Privacy Principles, such as ensuring they are subject to laws or binding schemes substantially similar to the APPs, or by implementing contractual clauses requiring compliance.

11. Third-Party Links

Our website may contain links to other websites not operated by us. If you click on a third-party link, you will be directed to that third party's site. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services. We strongly advise you to review the Privacy Policy of every site you visit.

12. Children's Privacy

Our services are not directed towards individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16 without verification of parental consent, we will take steps to remove that information from our servers.

13. Complaints

If you believe we have breached the Australian Privacy Principles or have concerns about how we have handled your personal information, please contact us using the details below. Please provide details of the incident so we can investigate.

We will acknowledge your complaint promptly and investigate it thoroughly. We aim to resolve complaints efficiently and fairly.

If you are not satisfied with our response, you have the right to lodge a complaint with the Office of the Australian Information Commissioner (OAIC):

  • Online: www.oaic.gov.au/privacy/privacy-complaints/
  • Phone: 1300 363 992

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. Any changes will be effective immediately upon posting the revised policy on our website. We encourage you to review this Privacy Policy periodically. The effective date at the top indicates the latest revision.

15. Contact Us

If you have any questions about this Privacy Policy, wish to access or correct your information, make a complaint, or opt-out of marketing, please contact us:

  • Business Name: Fika Bakery
  • Email: [Your Business Email Address]
  • Phone: [Your Business Phone Number - Optional]
  • ABN: [Your ABN - Optional but Recommended]