Privacy Policy
Korean Beauty
www.koreanbeauty.com.au
Privacy Policy
Effective Date: 31 May 2026 Last Updated: 31 May 2026
1. Introduction
Korean Beauty Australia ("we", "our", "us", or "the Company"), operating at www.koreanbeauty.com.au, is committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you visit our website, make a purchase, or otherwise interact with us.
This Privacy Policy is compliant with the Privacy Act 1988 (Cth) ("Privacy Act") and the Australian Privacy Principles ("APPs") contained in Schedule 1 of the Privacy Act. By using our website or providing us with your personal information, you consent to the practices described in this Privacy Policy.
Please read this policy carefully. If you do not agree with its terms, please discontinue use of our website.
2. Who We Are
Korean Beauty Australia is an Australian-based e-commerce retailer specialising in Korean beauty and skincare products. We are the entity responsible for the personal information we collect and process in connection with our website and services.
If you have any questions or concerns about this Privacy Policy or our data practices, please contact our Privacy Officer using the details in Section 14 of this policy.
3. Personal Information We Collect
We collect personal information that you voluntarily provide to us and information that is automatically collected when you use our website. The types of personal information we may collect include:
3.1 Information You Provide Directly
• Full name and date of birth;
• Email address and phone number;
• Billing and delivery address (including suburb, state, and postcode);
• Payment information (processed securely via third-party payment gateways; we do not store full card details);
• Account login credentials (username and password);
• Communications you send us, including customer service enquiries, complaints, and product reviews;
• Skincare preferences, skin type, or concerns shared when using quizzes, surveys, or consultations on our platform.
3.2 Information Collected Automatically
When you visit our website, we may automatically collect the following technical and usage data:
• IP address and approximate geolocation;
• Browser type, version, and operating system;
• Device identifiers and screen resolution;
• Pages visited, time spent on pages, and referring URLs;
• Clickstream data and interaction logs;
• Cookie identifiers and session data (see Section 9 for more on cookies).
3.3 Information from Third Parties
We may receive personal information about you from third parties, including:
• Payment processors (e.g., Stripe, PayPal, Afterpay) for transaction verification;
• Shipping and logistics partners for delivery tracking;
• Social media platforms if you interact with our pages or use social login features;
• Marketing analytics providers and advertising networks.
4. How We Use Your Personal Information
We use the personal information we collect for the following purposes:
4.1 Fulfilling Orders and Providing Services
• Processing and fulfilling your orders, including payment processing and delivery;
• Sending order confirmations, shipping notifications, and delivery updates;
• Managing your account and providing customer support;
• Handling returns, refunds, and warranty claims.
4.2 Marketing and Communications
• Sending promotional emails, newsletters, and special offers (where you have consented or where permitted by law);
• Displaying targeted advertising on third-party platforms such as Google and Meta (Facebook/Instagram);
• Personalising your shopping experience based on your browsing and purchase history;
• Conducting customer satisfaction surveys and feedback requests.
You may opt out of marketing communications at any time. See Section 11 for your rights.
4.3 Website Improvement and Analytics
• Analysing website traffic, user behaviour, and conversion data to improve our website and product offerings;
• Conducting A/B testing, market research, and product development;
• Monitoring and maintaining website security and preventing fraud.
4.4 Legal Compliance
• Complying with applicable laws and regulations, including the Privacy Act, Australian Consumer Law, and taxation obligations;
• Responding to legal requests, court orders, or regulatory enquiries;
• Enforcing our Terms and Conditions and protecting our legal rights.
5. Legal Basis for Processing
Under the Australian Privacy Principles, we handle your personal information on the following grounds:
• Contractual necessity: to enter into and perform our contract with you (e.g., processing your order);
• Legitimate interests: for fraud prevention, website security, and improving our services, where these interests are not overridden by your rights;
• Consent: for marketing communications and non-essential cookies, where you have given us explicit consent;
• Legal obligation: where we are required to process your information to comply with applicable law.
6. Disclosure of Your Personal Information
We do not sell your personal information to third parties. We may share your personal information with the following categories of recipients for the purposes described in this policy:
6.1 Service Providers
• Payment processors (e.g., Stripe, PayPal, Afterpay, Square);
• Shipping and logistics providers (e.g., Australia Post, DHL, StarTrack);
• Cloud hosting and data storage providers;
• Email marketing and CRM platforms (e.g., Klaviyo, Mailchimp);
• Customer service software providers;
• Analytics and advertising platforms (e.g., Google Analytics, Meta Pixel).
All service providers are contractually required to handle your personal information in accordance with Australian privacy law and our instructions, and are not permitted to use your information for their own purposes.
6.2 Business Transfers
If Korean Beauty Australia is involved in a merger, acquisition, asset sale, or restructuring, your personal information may be transferred as part of that transaction. We will notify you via email or a prominent website notice before your personal information is transferred or becomes subject to a different privacy policy.
6.3 Legal Disclosures
We may disclose your personal information where required by law, court order, or government authority, or where we believe disclosure is necessary to protect the rights, property, or safety of Korean Beauty Australia, our customers, or the public.
7. Overseas Disclosure of Personal Information
Some of our third-party service providers are located or operate servers outside of Australia, including in the United States, European Union, and Singapore. When we disclose personal information to overseas recipients, we take reasonable steps to ensure that those recipients handle your information in a manner consistent with the Australian Privacy Principles.
By using our website and providing us with your personal information, you consent to your information being transferred to and processed in overseas jurisdictions. Please note that overseas countries may not have equivalent privacy protections to those in Australia.
8. Data Security
We take the security of your personal information seriously and implement a range of technical and organisational measures to protect it from unauthorised access, use, disclosure, alteration, or destruction. These measures include:
• Secure Sockets Layer (SSL) encryption for all data transmitted between your browser and our website;
• Encrypted storage of sensitive information including passwords (using bcrypt or equivalent hashing);
• Access controls restricting personal information to authorised staff only on a need-to-know basis;
• Regular security assessments, vulnerability scans, and staff privacy training;
• Payment processing through PCI-DSS compliant third-party gateways; we do not store full payment card numbers.
Despite these measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security and encourage you to use strong passwords and exercise caution when sharing personal information online.
In the event of a data breach that is likely to result in serious harm, we will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) in accordance with the Notifiable Data Breaches (NDB) scheme under Part IIIC of the Privacy Act.
9. Cookies and Tracking Technologies
9.1 What Are Cookies
Cookies are small text files placed on your device when you visit our website. They help us provide a personalised and functional experience, and allow us to analyse how our website is used.
9.2 Types of Cookies We Use
• Essential cookies: necessary for the website to function correctly (e.g., shopping cart, session management);
• Performance and analytics cookies: help us understand how visitors interact with our website (e.g., Google Analytics);
• Functional cookies: remember your preferences such as language, currency, and login status;
• Marketing and advertising cookies: used to deliver relevant advertisements and track campaign performance (e.g., Meta Pixel, Google Ads).
9.3 Managing Cookies
You can control and manage cookies through your browser settings. Most browsers allow you to refuse cookies or delete existing cookies. Please note that disabling certain cookies may affect the functionality of our website, including your ability to add products to your cart or complete a purchase.
For more information about cookies and how to manage them, visit www.allaboutcookies.org.
10. Retention of Personal Information
We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, including satisfying any legal, accounting, or reporting requirements. The following retention periods generally apply:
• Account information: retained for the duration of your account and for 7 years following account closure;
• Order and transaction records: retained for 7 years in compliance with Australian taxation law;
• Marketing data: retained until you unsubscribe or withdraw consent;
• Customer service communications: retained for 3 years from the date of the interaction;
• Website analytics data: retained for up to 26 months in anonymised or aggregated form.
When personal information is no longer required, we will securely delete or de-identify it.
11. Your Privacy Rights
Under the Australian Privacy Principles, you have the following rights in relation to your personal information:
11.1 Access
You have the right to request access to the personal information we hold about you. We will respond to access requests within 30 days. We may charge a reasonable administrative fee for providing access, and we will notify you of any such fee in advance.
11.2 Correction
If you believe that personal information we hold about you is inaccurate, incomplete, out-of-date, irrelevant, or misleading, you may request that we correct it. We will take reasonable steps to correct the information within 30 days of your request.
11.3 Opt-Out of Marketing
You may opt out of receiving marketing communications from us at any time by:
• Clicking the "Unsubscribe" link in any marketing email;
• Contacting us at privacy@koreanbeauty.com.au;
• Updating your communication preferences in your account settings.
Please note that even if you opt out of marketing communications, we may still send you transactional emails related to your orders and account.
11.4 Complaints
If you believe we have breached the Australian Privacy Principles or the Privacy Act, you may lodge a complaint with us in the first instance. We will investigate your complaint and respond within 30 days. If you are not satisfied with our response, you may escalate your complaint to the Office of the Australian Information Commissioner (OAIC):
• Website: www.oaic.gov.au
• Phone: 1300 363 992
• Post: GPO Box 5218, Sydney NSW 2001
12. Children's Privacy
Our website and products are not directed at children under the age of 13, and we do not knowingly collect personal information from children under 13. If you believe we have inadvertently collected information from a child under 13, please contact us immediately and we will take steps to delete that information as soon as possible.
13. Third-Party Websites and Social Media
Our website may contain links to third-party websites, social media platforms, and payment providers. This Privacy Policy does not apply to those third-party sites, and we are not responsible for their privacy practices. We encourage you to read the privacy policies of any third-party sites you visit.
When you interact with our social media pages (e.g., Instagram, TikTok, Facebook), your interactions are governed by the privacy policies of those platforms as well as our own.
14. Contact Us
If you have any questions, concerns, or requests relating to this Privacy Policy or our handling of your personal information, please contact our Privacy Officer:
• Email: info@koreanbeauty.com.au
• General enquiries: info@koreanbeauty.com.au
• Website: www.koreanbeauty.com.au
• Business Hours: Monday to Friday, 9:00 AM - 5:00 PM AEST
We will endeavour to respond to all privacy-related enquiries within 30 days of receipt.
15. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other operational reasons. When we make material changes, we will notify you by updating the "Last Updated" date at the top of this policy and, where appropriate, sending you an email notification.
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. Your continued use of our website after any changes constitutes your acceptance of the updated Privacy Policy.