Legal

Privacy Policy

This document explains how Strainingnew collects, uses, stores, and protects your personal information when you visit our website or use our services.

Last updated:

1. Introduction and Data Controller

Strainingnew ("we", "us", "our") operates the website strainingnew.world and provides personalized meal planning guidance and educational food resources. We are committed to protecting your privacy and handling your personal data in accordance with the General Data Protection Regulation (GDPR), the Australian Privacy Act 1988, and other applicable international privacy legislation.

The data controller responsible for your personal information is:

Strainingnew
121 Elizabeth St, Melbourne VIC 3000, Australia
Email: touch@strainingnew.world
Phone: +61 3 9670 5414

If you have any questions about this Privacy Policy or wish to exercise your data protection rights, please contact us using the details above.

2. Information We Collect

We collect personal information that you voluntarily provide to us, as well as certain technical data collected automatically when you visit our website.

2.1 Information You Provide Directly

  • Contact form submissions: Your name, email address, message content, and GDPR consent confirmation when you submit our contact form.
  • Consultation enquiries: Food preferences, household size, dietary choices, and scheduling information you share during service enquiries or consultations.
  • Communication records: Content of emails, phone conversations, and other correspondence between you and our team.
  • Payment information: Billing name and address when you purchase our services. Payment card details are processed by our third-party payment provider and are not stored on our servers.

2.2 Information Collected Automatically

  • Device and browser data: IP address, browser type and version, operating system, device type, and screen resolution.
  • Usage data: Pages visited, time spent on pages, referral source, click patterns, and navigation paths through our website.
  • Cookie data: Information stored by cookies and similar technologies as described in our Cookie Policy.

2.3 Information We Do Not Collect

We do not collect clinical health records, medical diagnoses, prescription information, or biometric data. Our services are non-medical and we do not require health-related personal information to provide meal planning guidance.

3. Purpose and Legal Basis for Processing

We process your personal data only for specified, legitimate purposes and on appropriate legal grounds under GDPR Article 6.

  • Responding to enquiries (Legitimate interest / Consent): To read, respond to, and follow up on messages submitted through our contact form or email.
  • Providing services (Contract performance): To deliver meal planning guidance, educational resources, and consultation sessions you have requested or purchased.
  • Website functionality (Legitimate interest): To ensure our website operates correctly, securely, and efficiently for all visitors.
  • Analytics (Consent): To understand how visitors use our website and improve content and user experience, only when you have accepted analytics cookies.
  • Marketing communications (Consent): To send informational updates about our services, only where you have explicitly opted in.
  • Legal compliance (Legal obligation): To comply with applicable laws, regulations, court orders, or government requests.
  • Fraud prevention (Legitimate interest): To detect and prevent fraudulent activity, unauthorised access, and abuse of our services.

4. Data Sharing and Third Parties

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We may share your data with the following categories of recipients only when necessary:

  • Service providers: Hosting providers, email delivery services, payment processors, and analytics platforms that assist us in operating our website and delivering services. These providers are bound by data processing agreements and may only use your data as instructed by us.
  • Professional advisers: Lawyers, accountants, and auditors where required for legal or regulatory compliance.
  • Law enforcement: When required by law, court order, or to protect the rights, property, or safety of Strainingnew, our clients, or the public.

Where data is transferred outside the European Economic Area or Australia, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission or adequacy decisions.

5. Data Retention Periods

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, unless a longer retention period is required by law.

  • Contact form submissions: Retained for 24 months from the date of submission, then securely deleted unless an ongoing service relationship exists.
  • Client service records: Retained for the duration of the service relationship plus 5 years for accounting and legal purposes.
  • Payment records: Retained for 7 years in accordance with Australian tax and accounting requirements.
  • Marketing consent records: Retained until you withdraw consent, plus 3 years for compliance documentation.
  • Analytics data: Retained for 26 months from the date of collection, then anonymised or deleted.
  • Cookie consent records: Retained for 12 months from the date consent was given or updated.

When retention periods expire, data is securely deleted or irreversibly anonymised so it can no longer be associated with you.

6. Security Measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • HTTPS encryption for all data transmitted between your browser and our website
  • Secure server infrastructure with regular security updates and patches
  • Access controls limiting personal data access to authorised personnel only
  • Regular review of data processing activities and security practices
  • Staff training on data protection obligations and confidentiality requirements
  • Incident response procedures for detecting, reporting, and addressing data breaches

While we take reasonable steps to protect your information, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but commit to notifying affected individuals and relevant authorities of any data breach as required by applicable law.

7. Your Rights Under GDPR and Australian Privacy Law

Depending on your location, you may have the following rights regarding your personal data:

  • Right of access: Request a copy of the personal data we hold about you.
  • Right to rectification: Request correction of inaccurate or incomplete personal data.
  • Right to erasure: Request deletion of your personal data where there is no compelling reason for continued processing.
  • Right to restrict processing: Request that we limit how we use your data in certain circumstances.
  • Right to data portability: Receive your personal data in a structured, commonly used, machine-readable format.
  • Right to object: Object to processing based on legitimate interests or for direct marketing purposes.
  • Right to withdraw consent: Withdraw consent at any time where processing is based on consent, without affecting the lawfulness of prior processing.
  • Right to lodge a complaint: File a complaint with the Office of the Australian Information Commissioner (OAIC) or your local data protection authority.

To exercise any of these rights, contact us at touch@strainingnew.world. We will respond within 30 days of receiving a verifiable request. We may need to verify your identity before processing your request.

8. Children's Privacy

Our website and services are not directed at individuals under the age of 16. We do not knowingly collect personal information from children. If you believe we have inadvertently collected data from a child, please contact us immediately and we will take steps to delete such information promptly.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the "Last updated" date at the top of this page and, where appropriate, notify you by email or through a notice on our website. We encourage you to review this page periodically.

10. Contact Information

For privacy-related enquiries, data subject requests, or concerns about how we handle your personal information, please contact:

Privacy Officer — Strainingnew
121 Elizabeth St, Melbourne VIC 3000, Australia
Email: touch@strainingnew.world
Phone: +61 3 9670 5414

We aim to resolve all privacy concerns promptly and transparently. If you are not satisfied with our response, you have the right to contact the Office of the Australian Information Commissioner at www.oaic.gov.au.