Privacy Policy

Last updated: 21 June 2026

This Privacy Policy explains how Expelcleansing.ddd ("we", "us", "our") collects, holds, uses, and discloses personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). Where applicable, we also respect the EU General Data Protection Regulation (GDPR).

We are committed to open and transparent management of personal information (APP 1). This policy should be read with our Cookie Policy and AI Transparency Notice.

1. Who We Are — APP 1

Entity: Expelcleansing.ddd
Address: 1/202 Gertrude St, Fitzroy VIC 3065, Australia
Email: touch@expelcleansing.world
Phone: +61 3 8375 9731
Privacy contact: Same email above — mark your message "Privacy Request".

We will make this policy available free of charge on our website and provide a copy on request.

2. Scope — What Is Personal Information?

"Personal information" means information or an opinion about an identified individual, or an individual who is reasonably identifiable, whether true or not and whether recorded in a material form or not (Privacy Act 1988).

3. Anonymity and Pseudonymity — APP 2

Where lawful and practicable, you may interact with our website anonymously (e.g., browsing without submitting forms). If you contact us, we generally need your name and email to respond. You may request use of a pseudonym; we will assess whether we can still respond effectively.

4. Collection of Personal Information — APP 3 & APP 5

We collect personal information only where reasonably necessary for our functions. We collect it fairly, lawfully, and not in an unreasonably intrusive way.

What we collect:

• Identity & contact details: name, email address, message content (contact form).
• Technical data: IP address, browser type, device identifiers, pages viewed, referral URLs.
• Cookie & consent data: cookie preferences, timestamps (see Cookie Policy).

How we collect: directly from you via forms; automatically through server logs and cookies; and from embedded third-party services (e.g., Google Maps on our contact page).

Notification (APP 5): At or before collection via forms, we display a GDPR/privacy consent checkbox linking to this policy. Cookie collection is explained in our cookie banner.

5. Unsolicited Personal Information — APP 4

If we receive personal information we did not solicit, we will determine whether we could have collected it under APP 3. If not, we will destroy or de-identify it as soon as practicable, unless legal retention applies.

6. Purposes of Use and Disclosure — APP 6

We use personal information only for the primary purpose of collection or reasonably related secondary purposes you would expect:

• Responding to enquiries submitted through our contact form.
• Operating, securing, and improving the website.
• Analytics and marketing — only with your consent where required.
• Complying with legal obligations and resolving disputes.

We may disclose information to service providers (hosting, email, analytics) who handle data on our behalf under contractual confidentiality and APP-compliant terms. We do not sell personal information.

7. Direct Marketing — APP 7

We do not send direct marketing unless you have consented or an exception under the Spam Act 2003 and APP 7 applies. Every marketing message includes an unsubscribe mechanism. You may opt out at any time by contacting us.

8. Cross-Border Disclosure — APP 8

Some service providers may store or process data outside Australia (e.g., EU or US cloud regions). Before disclosure, we take reasonable steps to ensure overseas recipients comply with APPs or are bound by comparable protections. You may contact us for details of countries involved.

9. Government Identifiers — APP 9

We do not adopt, use, or disclose government-related identifiers (such as Medicare numbers) as our own identifier, unless permitted by law.

10. Data Quality — APP 10

We take reasonable steps to ensure personal information is accurate, up to date, and complete for the purpose of use. Please notify us if your details change.

11. Data Security — APP 11

We protect personal information from misuse, interference, loss, unauthorised access, modification, or disclosure through measures including HTTPS encryption, access controls, secure hosting, and staff confidentiality practices.

Notifiable Data Breaches (NDB scheme): If a data breach is likely to result in serious harm, we will notify affected individuals and the OAIC as required under Part IIIC of the Privacy Act.

12. Access to Personal Information — APP 12

You may request access to personal information we hold about you. We will respond within a reasonable period (generally 30 days). We may charge a reasonable administrative fee where permitted. Access may be refused in limited circumstances permitted by the Privacy Act; we will explain reasons in writing.

13. Correction of Personal Information — APP 13

If you believe information we hold is inaccurate, out of date, incomplete, irrelevant, or misleading, contact us to request correction. If we disagree, you may ask us to associate a statement of your requested correction with the record.

14. Retention and Destruction

• Contact form records: up to 24 months, then securely deleted or de-identified.
• Server logs: up to 12 months.
• Cookie consent records: up to 12 months.

When information is no longer needed, we destroy or de-identify it securely.

15. Artificial Intelligence and Automated Processing — 2026 Transparency

Consistent with APP 1 and growing 2026 algorithmic transparency expectations:

• Illustrative site images may be AI-generated or AI-edited (see AI Transparency Notice).
• Editorial content may be AI-assisted but is human-reviewed before publication.
• Our contact form is not an AI chatbot — enquiries are handled by humans.
• We do not make significant automated decisions about you without human oversight.
• Personal information you submit is not used to train public AI models.

Third-party analytics or marketing tools enabled by your cookie consent may use automated processing. See our Cookie Policy to manage this.

16. GDPR (International Visitors)

EEA/UK visitors may have additional rights including data portability and objection to processing. Contact us to exercise these rights. EU residents may complain to their local supervisory authority.

17. Complaints

Contact us first at touch@expelcleansing.world. We will acknowledge within 7 days and aim to resolve within 30 days.

If unresolved, Australian residents may complain to the Office of the Australian Information Commissioner (OAIC): www.oaic.gov.au · 1300 363 992.

18. Children

This site is not directed at children under 16. We do not knowingly collect personal information from children. Contact us for deletion if you believe we have.

19. Changes to This Policy

We may update this policy to reflect legal or operational changes. The "Last updated" date will change accordingly. Material changes will be highlighted on this page.

20. Contact

Privacy enquiries: touch@expelcleansing.world · Contact page