a50004fb6343920ef15851d19c8fd327-(1).jpg

Privacy Policy

1. Introduction

This Privacy Policy outlines how Juicebox ("we," "us," "our") manages personal information collected from individuals. It applies to all operations in Australia and Indonesia, including our digital services and interactions with clients, employees, and partners. We are committed to complying with the Australian Privacy Principles (APPs) and Indonesia’s Personal Data Protection Law (PDP Law) to ensure transparency and data security.

2. Types of Personal Information Collected

We may collect the following types of personal information:

Full name
Contact details (e.g., email address, phone number)
Employment information
Demographic data
Payment information
IP addresses and cookies for website analytics
Other information required to deliver our services

3. Methods of Collection

We collect personal information directly from individuals via:

Online forms on our website
Email and phone communications
Service agreements
Cookies and similar technologies
Surveys and marketing campaigns

We also collect data indirectly through third-party platforms, where users have consented to share their information.

4. Purposes of Collection, Use, and Disclosure

We collect, use, and disclose personal information to:

Provide digital and creative services
Process payments and manage accounts
Respond to enquiries and provide support
Customise and improve our services
Comply with legal and regulatory obligations
Conduct marketing and promotional activities (with consent)

We do not sell or rent personal information to third parties. However, we may disclose data to trusted partners for service delivery, provided they comply with data protection requirements.

5. Cross-Border Data Transfers

Given our operations in Australia and Indonesia, personal data may be transferred between these jurisdictions. We ensure that:

Transfers comply with the APPs and PDP Law
Recipients uphold equivalent or higher data protection standards
Explicit consent is obtained where required

6. Data Security Measures

We implement robust measures to protect personal information from unauthorised access, misuse, interference, loss, and disclosure, including:

Multi-factor authentication (MFA) to secure access
Intrusion detection systems (IDS) to monitor threats
Encryption of data in transit and at rest
Role-based access controls to limit data access
Regular vulnerability assessments and penetration testing
Staff training on privacy and security practices

We conduct periodic security audits to ensure our measures meet or exceed industry standards. Third-party vendors undergo thorough evaluations to maintain a consistent level of security.

7. Physical Security Measures

We implement robust physical security measures to protect personal information stored in physical locations, including:

Secure access controls to our offices and facilities, such as keycards and biometric authentication.
Video surveillance (CCTV) in critical areas to monitor and deter unauthorised access.
Restricted access to sensitive areas, including server rooms and storage facilities.
Environmental controls to prevent damage to information assets, such as fire suppression systems and climate control.
Visitor management systems to log and supervise all external visitors to our premises.

These measures are regularly reviewed and updated to ensure they meet industry standards and regulatory requirements.

8. Incident Response Procedures

In the event of a data breach, we follow a structured response plan, including:

Promptly identifying and containing the breach
Notifying affected individuals and regulatory authorities as required
Taking remedial steps to prevent future incidents

9. Data Minimisation and Retention

We collect only the personal information necessary to achieve the purposes outlined in this policy. Personal data is retained only as long as required by law or business needs. Once no longer needed, data is securely deleted or anonymised.

10. Privacy by Design

Privacy considerations are embedded into our workflows and technologies from the outset. This ensures that personal information is handled with the utmost care and in compliance with privacy laws.

11. Access, Correction, and Additional Rights

Individuals have the right to:

Request access to their personal information
Correct inaccurate or incomplete data
Restrict or object to data processing
Request data portability, where applicable

To exercise these rights, please contact us using the details in Section 14.

12. Consent Management

Consent for the collection and use of personal data is obtained through transparent and accessible methods. Individuals can modify or withdraw their consent at any time without affecting the legality of processing that occurred prior to withdrawal.

If you have previously agreed to us using your personal information for direct marketing purposes, you may withdraw your consent at any time. This can be done by clicking the "unsubscribe" link at the bottom of any direct marketing email you receive, or by contacting us via the details provided in Section 14.

We retain personal data only for as long as necessary to fulfil the purposes outlined in this policy or as required by law. When data is no longer needed, it is securely deleted or anonymised.

13. Use of Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance user experience and gather analytics. We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system. Users can manage cookie preferences through their browser settings.

14. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy practices and encourage users to review their policies.

15. Complaints Handling Process

If you believe we have breached this Privacy Policy or applicable privacy laws, you can file a complaint by contacting us. We will:

Acknowledge your complaint within five business days
Investigate and resolve the issue within a reasonable timeframe

16. Policy Updates

We may update this Privacy Policy periodically to reflect changes in our practices or regulatory requirements. The latest version will always be available on our website.