Privacy policy
Last Updated: 18th May 2026
1. Introduction & Scope
Apicalis Labs ("we", "us", "our") is committed to protecting your privacy. This policy outlines how we handle personal information in compliance with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and—where applicable to international customers—the General Data Protection Regulation (GDPR).
This policy applies to all users of our website and customers purchasing our electronic products worldwide.
2. Kinds of Information We Collect
We collect information necessary to process your orders and provide technical support.
Identity & Contact Data: Name, shipping/billing address, email, and phone number.
Financial Data: We use third-party payment gateways (e.g., Stripe, PayPal). We do not store full credit card numbers on our servers.
Technical & Tracking Data: IP addresses, browser type, device IDs, and interaction data collected via Google Analytics.
Device & Warranty Data: Serial numbers of products purchased and any data temporarily stored on devices returned for repair (see Section 10).
Automated Decision-Making Data: Information used by our systems to calculate shipping costs, detect fraudulent transactions, or provide product recommendations.
3. How We Collect Your Information
Directly: When you purchase electronics, create an account, or contact support.
Automatically: Through cookies and Google Analytics as you navigate the site.
Third Parties: From logistics partners (delivery status) and payment processors (transaction confirmation).
4. Purpose of Collection and Use
We collect your data to:
Fulfill international orders and manage customs documentation.
Process warranty claims and provide technical troubleshooting.
Prevent fraud (using automated screening tools).
Improve website performance via Google Analytics.
5. Disclosure to Third Parties & Overseas Transfers
To facilitate international sales, your data may be disclosed to:
Logistics Providers: DHL, FedEx, or Australia Post for international shipping.
IT & Analytics: Google (USA) for website analytics and cloud hosting providers.
Regulatory Bodies: Customs and border protection in your destination country.
Standard of Protection: Where we transfer data overseas, we take reasonable steps to ensure the recipient handles it in a way that is "substantially similar" to the APPs or GDPR.
6. Automated Decision-Making (AI)
As of 2026, we disclose that we use automated systems for:
Fraud Detection: Automated scanning of orders to prevent unauthorized transactions.
Customs/Tax Calculation: Automatically determining VAT/GST based on your location.
You have the right to request a manual review of any automated decision that significantly affects your rights.
7. Google Analytics & Tracking
We use Google Analytics to track user behavior.
Data shared: Your IP address and site activity are transmitted to Google servers in the USA.
Opt-out: You can manage your preferences via our Cookie Consent Banner or by using the Google Analytics Opt-out Browser Add-on.
8. International Rights (GDPR / UK GDPR)
If you are located in the EU or UK, you have additional rights:
Right to Erasure: The "Right to be Forgotten."
Data Portability: The right to receive your data in a machine-readable format.
Withdraw Consent: You may withdraw consent for marketing at any time.
9. Data Security & Retention
We use SSL/TLS encryption for all data transmissions. We retain transaction records for 7 years to comply with Australian tax and consumer law.
10. Special Notice for Electronics Repairs
Warning: If you return an electronic device for repair, the repair process may result in the loss of user-generated data. We are not liable for data loss; please back up all devices before shipment.
11. Access, Correction, and Complaints
To access your data or lodge a complaint:
Contact: Privacy Officer at hello@apicalis.com
Escalation: If unsatisfied, Australians can contact the OAIC (oaic.gov.au). EU residents can contact their local Data Protection Authority.