This Privacy Policy describes how CoinTicket ("we", "us", or "our") collects, uses, discloses, stores, and protects your personal information when you access or use our platform, services, website, or any application related to CoinTicket (collectively, the "Platform").
This Policy applies to all users, creators, and visitors (referred to as "you" or "your") who interact with the Platform and governs how we manage personal information in accordance with the privacy laws as applicable.
By using or accessing the Platform, you consent to the collection, use, and disclosure of your personal information as set out in this Privacy Policy. If you do not agree with any part of this Policy, you must immediately cease use of the Platform.
1.1. "Notifiable Data Breaches" refers to data breach incidents that are likely to result in serious harm to any individual whose personal information is involved, and if requires mandatory notification to affected individuals by any applicable laws.
1.2. "Privacy Policy" refers to the current version of this document as published and maintained by CoinTicket, which sets out how CoinTicket collects, stores, uses, discloses and manages personal information in accordance with the applicable laws.
1.3. "Platform" refers to the online platform, website, and related services provided by CoinTicket through which users can create, upload, share, and access financial content, and receive rewards in the form of certificates and other recognition, including all associated features, content, technologies, and applications made available by CoinTicket.
2.1. We collect personal information that is necessary for us to provide, operate, and improve the Platform, administer creator recognition programs, and comply with our legal obligations.
(a) The types of personal information we may collect include but are not limited to:
(a) We collect this information directly from you when you:
(b) We may also collect information through automated technologies (such as cookies and analytics) and from publicly available sources or third-party providers where lawfully permitted.
3.1. We generally do not collect sensitive information unless it is necessary for one or more of our functions or activities and you have expressly consented to such collection, or we are otherwise permitted or required by law to do so.
3.2. Sensitive information may include information about your:
3.3. If at any time we do collect such information (e.g., for verification, accessibility support, or inclusion monitoring), we will:
3.4. We do not use sensitive information for direct marketing purposes.
4.1. We use the personal information we collect for purposes that are directly related to our functions and activities and as permitted by applicable laws. These purposes include, but are not limited to:
4.2. Where the information is used for purposes other than those specified above, we will obtain your consent, unless otherwise permitted by law.
5.1. We may use your personal information (such as your name, email address, or contact details) to send you communications that promote our services, platform features, creator programs, or any relevant updates, where you have consented or where such communications are otherwise permitted under applicable laws.
5.2. These communications may include:
5.3. You may opt-out of receiving direct marketing communications at any time by:
5.4. We do not sell, rent, or share your personal information with third parties for their direct marketing purposes.
6.1. Where lawful and practicable, you have the option to interact with us anonymously or using a pseudonym. This may include browsing publicly available portions of the Platform or making general enquiries.
6.2. However, full functionality of the Platform including content creation, certification, and participation in the creator ecosystem requires identification. Accordingly, if you choose not to provide identifying information:
6.3. We will notify you when it is necessary to collect identifying information and explain the implications of non-provision.
We may disclose your personal information to third parties where necessary for the purposes described in this Privacy Policy, or as otherwise permitted or required by law. Such disclosures may include, but are not limited to:
7.1. We may engage trusted third-party service providers to perform functions on our behalf such as IT support, platform hosting, certification management, data analytics, customer support, marketing assistance, and other professional services. These providers are contractually bound to maintain the confidentiality of your information and to only use it in accordance with our instructions and applicable privacy laws.
7.2. In the event of a merger, acquisition, reorganisation, or sale of assets, your personal information may be transferred as part of that transaction. We will take reasonable steps to ensure the new entity is bound by privacy obligations that are substantially similar to those outlined in this Privacy Policy.
7.3. We may disclose personal information where required or authorised by law, including:
7.4. In circumstances not covered above, we will only disclose your personal information with your express or implied consent.
8.1. Some of our third-party service providers and data storage solutions may be located outside of applicable jurisdiction.
8.2. Where personal information is disclosed to overseas recipients, we will take reasonable steps to ensure that such recipients:
8.3. By using the Platform or providing us with your personal information, you consent to the transfer, storage, and processing of your personal information in applicable jurisdictions.
9.1. We are committed to protecting the personal information we hold against loss, misuse, unauthorised access, modification, or disclosure.
9.2. To this end, we implement a range of physical, technical, and organisational security measures, including but not limited to:
9.3. Despite our best efforts, no method of transmission over the internet or electronic storage is entirely secure. Accordingly, we cannot guarantee the absolute security of any information transmitted to or from our Platform.
9.4. If we become aware of a data breach that is likely to cause serious harm, we will notify affected individuals and the applicable authorities.
10.1. You have the right to request access to the personal information we hold about you and to request correction of that information if you believe it to be inaccurate, out-of-date, incomplete, irrelevant, or misleading.
10.2. To make a request for access or correction, please contact us using the details set out in the "Complaints and Contact Information" section 21 of this Privacy Policy.
10.3. We will respond to your request within a reasonable timeframe, and in most cases, we will provide you with access to your personal information. We may refuse access in limited circumstances permitted under the applicable act, such as where granting access would unreasonably impact the privacy of others, pose a serious threat to the health or safety of an individual or the public, or be unlawful.
10.4. If you request correction of your personal information and we are satisfied that the information is inaccurate or requires amendment, we will take reasonable steps to correct it. If we decline to correct the information, we will provide you with written reasons for the refusal and advise you of your rights to complain.
10.5. We do not charge for making an access or correction request, but we may charge a reasonable fee for providing access to the requested information.
11.1. While Creators contribute content to the Platform, some contributions may contain personal information (e.g., names, likeness, contact info in submitted content).
11.2. CoinTicket does not control the content submitted by Creators and makes no representation regarding its compliance with privacy obligations.
In the course of business, CoinTicket may collect personal information from employees, contractors, interns, and volunteers for operational, employment, or compliance reasons.
12.1. Such data is handled with the reasonable level of care.
12.2. The data may include tax file numbers, superannuation details, references, background checks, or health information where necessary.
13.1. Your personal information may be stored on servers or processed by third-party service providers located outside of Australia, including but not limited to cloud infrastructure, analytics services, content moderation platforms, and communication tools.
13.2. In such instances, CoinTicket will:
14.1. If CoinTicket undergoes a merger, acquisition, insolvency, reorganisation, or sale of assets, your personal information may be transferred as part of that transaction.
14.2. We will ensure the successor entity:
14.3. You will have the opportunity to opt out or delete your data if you do not agree with the transfer to the successor entity, subject to legal or operational limitations.
15.1. De-identified or aggregated data will be used for:
15.2. We use statistical or pseudonymisation techniques to ensure that aggregated data:
15.3. You acknowledge that this form of data is not "personal information" under any act and is not subject to individual rights of access or deletion.
16.1. We implement the following to safeguard your information:
16.2. Where personal information is handled by third parties, we:
16.3. While we endeavour to maintain a secure platform, you acknowledge that no method of electronic transmission or storage is entirely secure. We do not warrant the security of your information beyond what is required by law.
17.1. We may disclose personal data without further notice or consent if:
17.2. Where permitted by law, we will:
17.3. We fully cooperate with the lawful regulatory bodies during investigations involving user data.
18.1. CoinTicket retains personal information for only as long as is reasonably necessary to fulfil the purposes for which it was collected, as outlined in this Privacy Policy, or as otherwise required by law, including obligations under applicable tax, corporate, regulatory, or record-keeping legislation.
18.2. We maintain and review a formal data retention schedule annually, which outlines the applicable retention periods based on the nature of the information and our legal obligations. Personal information will be securely held during the applicable retention period and access to such information is restricted and controlled.
18.3. Once personal information is no longer required:
18.4. If you make a verified request for deletion of your personal information, CoinTicket will comply with such request unless retention is required by law. In such cases, only the minimum data necessary will be retained, and access will be strictly limited.
18.5. We may retain anonymised or aggregated data after deletion of personal information for statistical analysis, security, fraud prevention, or business continuity purposes, provided such data does not identify any individual and is no longer considered as personal information under applicable law.
CoinTicket collects, uses, stores, and discloses your personal information only where it is legally permitted or required to do so. The legal bases under which we process your personal information include:
19.1. Consent: Where you have given express or implied consent for us to do so (for example, by signing up to our platform, subscribing to our communications, or uploading Creator Content)
19.2. Contractual necessity: Where the processing of your personal information is necessary to perform our obligations under any contract we have with you, or to take steps at your request prior to entering into a contract
19.3. Compliance with legal obligations: Where we are required to process your personal information to comply with applicable laws or to respond to valid legal processes
19.4. Legitimate interests: Where the processing is reasonably necessary for our legitimate interests, such as improving our platform, conducting analytics, preventing fraud, maintaining cybersecurity, and administering creator rewards and certifications, and those interests do not override your rights and freedoms
19.5. Vital interests or public interest: Where the processing is necessary to protect your safety or the safety of others, or is in the public interest as permitted by law
We are reasonably committed to complying with the Notifiable Data Breaches.
20.1. In the event that a data breach occurs and we have reasonable grounds to believe that the breach is likely to result in serious harm to any individual whose personal information is involved, we will promptly:
20.2. For breaches that do not meet the NDB threshold but still involve unauthorised access or disclosure, we may still inform affected users where it is appropriate or required.
20.3. All data breach events will be recorded and retained in accordance with our internal incident response policies, and we will update our procedures to reduce the likelihood of recurrence.
21.1. If you have a question, concern, or complaint regarding the handling of your personal information or believe we have breached the privacy, you may contact us using the details provided below.
21.2. We take complaints seriously and will respond to you as soon as practicable, usually within 30 calendar days. If you are not satisfied with our response, you may escalate the matter to the applicable authority.
Email: teamcointicket@outlook.com
The Platform is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children under the age of 18 without verifiable parental or guardian consent.
22.1. If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us immediately using the details in the "Complaints and Contact Information" section.
22.2. If we become aware that we have collected personal information from a person under 18 without appropriate consent, we will take reasonable steps to delete such information from our records.
22.3. We encourage parents and legal guardians to monitor their children's internet usage and to help enforce this Policy by instructing children never to provide personal information without their permission.
Our Platform may offer you the option to register and log in using your existing social media account credentials (e.g., Google, Facebook, Twitter, LinkedIn). If you choose to connect your social media account with CoinTicket:
23.1. We may receive certain information from the social media provider, such as your name, profile information, email address, contact list, or public profile data, as permitted by the provider's terms of service and your privacy settings on that platform.
23.2. This information will be used to facilitate your login, personalise your experience, and may be combined with other information we collect.
You acknowledge and agree that CoinTicket is not responsible for the data practices of third-party social media platforms, and we encourage you to review their privacy policies before using these services in connection with our Platform. You may disconnect your social media login at any time through your account settings on the Platform or by contacting us.
24.1. We reserve the right to amend this Privacy Policy from time to time to reflect changes in legal requirements, our data handling practices, or platform functionality.
24.2. Any revised Privacy Policy will be effective from the time it is posted on our Platform, unless otherwise stated.
24.3. We encourage you to periodically review this Policy to remain informed about how we handle your personal information.
24.4. Your continued use of the Platform following the publication of any updates to this Privacy Policy constitutes your acceptance of those changes.