Privacy Policy

This Privacy Policy explains how meks digital collects, uses, stores, discloses and protects personal information.

In this policy, “meks”, “we”, “us” and “our” refers to meks group, trading as meks digital.
ABN: 86 814 965 231
Contact: privacy@meks.com.au

We provide digital marketing, advertising, eCommerce, website development, consulting, automation, data, analytics, app and technology services. This means we may handle personal information relating to our clients, prospective clients, website visitors, app users, suppliers, contractors, job applicants and, in some cases, our clients’ customers or end users.

We are committed to handling personal information responsibly, transparently and in accordance with applicable privacy laws.

1. What personal information we collect

The types of personal information we collect depend on how you interact with us.

We may collect:

Contact and business information

This may include your name, business name, job title, email address, phone number, billing details, website, social media handles and other business contact information.

Client and project information

When we work with a client, we may collect information about their business, team members, customers, marketing activity, website, campaigns, products, sales channels, operational workflows, software platforms and commercial objectives.

Website and enquiry information

When you visit our website, submit an enquiry, book a call, download a resource or contact us, we may collect information you provide, as well as technical information such as your IP address, browser type, device information, pages visited, referral source and website usage behaviour.

Marketing and communication information

We may collect your communication preferences, subscription status, email engagement, campaign interactions, meeting notes, form submissions and other records of communication with us.

Platform, app and integration data

Where you connect us to a platform, app, website, store, advertising account, analytics account, CRM, email platform, project management system or other software, we may collect information required to provide our services.

This may include account IDs, store domains, user permissions, API tokens, app configuration data, product data, order data, customer data, campaign data, analytics data, website content, metafields, form submissions and other data made available through the relevant platform or integration.

Client customer or end-user data

In some cases, we may handle personal information about our clients’ customers or users. This may include names, email addresses, phone numbers, purchase history, enquiry details, website behaviour, marketing preferences or other information relevant to the services we provide.

Where we handle this information on behalf of a client, we do so to provide services to that client and in accordance with their instructions, applicable agreements and applicable law.

Recruitment and contractor information

If you apply for a role, contractor opportunity or partnership with us, we may collect your name, contact details, CV, portfolio, employment history, references, qualifications, availability and other information relevant to assessing your suitability.

Sensitive information

We generally do not seek to collect sensitive information. If sensitive information is provided to us, we will handle it in accordance with applicable privacy laws and only where it is reasonably necessary for our functions or activities, or where otherwise permitted by law.

2. How we collect personal information

We may collect personal information:

• directly from you when you contact us, complete a form, book a meeting, subscribe, engage us, use our services or use one of our apps;
• through our website, apps, forms, email systems, analytics tools, advertising pixels, cookies and similar technologies;
• from clients who provide information so we can deliver services to them;
• from third-party platforms you authorise us to access, such as Shopify, WordPress, Google, Meta, Pinterest, Klaviyo, Mailchimp, CRM platforms, analytics platforms, payment platforms and project management tools;
• from public sources, such as business websites, search engines, social media, directories and publicly available company information;
• from partners, suppliers, referrers, contractors or service providers; and
• from records generated through our work, such as support requests, campaign reports, meeting notes, app logs and project documentation.

Where practical, we collect personal information directly from the individual it relates to. However, due to the nature of digital marketing, eCommerce, website, analytics and app services, we may also receive information from our clients or from platforms they use.

3. Why we collect, use and disclose personal information

We collect, use and disclose personal information for purposes including:

• responding to enquiries and communicating with you;
• preparing proposals, quotes, strategies and recommendations;
• providing digital marketing, advertising, SEO, SEM, eCommerce, website, automation, consulting, analytics, development and app services;
• managing client relationships, projects, accounts, billing and support;
• accessing, configuring, integrating, testing and maintaining websites, apps, advertising accounts, analytics tools, email platforms, CRMs, eCommerce stores and other digital systems;
• creating, managing, measuring and optimising marketing campaigns;
• analysing website, app, campaign, customer, product, sales and platform data;
• sending service messages, project updates, reports, alerts and administrative communications;
• sending marketing communications where permitted;
• improving our website, services, systems, apps, workflows and user experience;
• managing security, fraud prevention, system integrity, access controls and audit logs;
• complying with legal, regulatory, contractual, insurance and professional obligations;
• assessing job applicants, contractors and partnership opportunities;
• resolving disputes, enforcing agreements and protecting our rights; and
• any other purpose notified to you at the time of collection or otherwise permitted by law.

We may also use de-identified or aggregated information for reporting, benchmarking, research, product improvement, service development and business insights.

4. Client data and customer data

Because we provide digital, marketing, eCommerce, app and technology services, we may handle personal information that belongs to, or is controlled by, our clients.

Where we handle personal information on behalf of a client, the client is generally responsible for ensuring that:

• the information has been collected lawfully;
• appropriate notices, consents and permissions have been obtained;
• their own privacy policy accurately explains how they collect, use and disclose personal information;
• they are authorised to share the information with us;
• marketing communications comply with applicable laws; and
• instructions provided to us are lawful and appropriate.

We do not use our clients’ customer data for unrelated marketing purposes. We only use client customer data to provide services, support, reporting, analytics, technical implementation, app functionality, troubleshooting, optimisation or other agreed work for the relevant client, unless otherwise authorised or required by law.

5. Apps, integrations and connected platforms

Where meks provides, operates or supports an app, integration, automation or connected platform, we may collect and process information required for that app or integration to function.

Depending on the app or integration, this may include:

• account, store or workspace details;
• user information and permissions;
• configuration settings;
• product, collection, content, metafield, inventory, order, customer or transaction-related information;
• usage, diagnostic, performance and error logs;
• support requests and communications;
• API access tokens or authentication information; and
• other information made available through the platform permissions granted by the user or client.

We only request access to information that is reasonably necessary for the app, integration or service to function. If you uninstall an app, disconnect an integration or revoke access, some information may continue to be retained where required for legitimate business, security, legal, billing, backup or record-keeping purposes.

Pinterest API and integrations

Where meks provides services that involve access to the Pinterest API or Pinterest-connected platforms, we may collect and process information made available through the Pinterest API, including account details, board and pin content, audience data, advertising data, analytics and campaign information. This data is used solely to deliver services to the relevant client. We handle Pinterest API data in accordance with Pinterest’s Developer Guidelines and applicable privacy laws. We do not use Pinterest API data for purposes beyond those agreed with our clients or permitted by Pinterest’s terms.

6. Marketing communications

We may use personal information to send marketing communications about our services, insights, resources, events, updates or other information that may be relevant to you.

We will only send marketing communications where permitted by law. Commercial electronic messages in Australia generally need consent, sender identification and a functional unsubscribe option, and businesses must make it easy for people to unsubscribe.

You can opt out of marketing communications at any time by using the unsubscribe link in our emails or by contacting us.

Opting out of marketing communications will not stop us from sending important service, transactional, billing, security or project-related messages.

7. Cookies, pixels and analytics

Our websites, apps, emails and digital services may use cookies, pixels, tags, tracking scripts and similar technologies.

These technologies may be used to:

• operate and secure our website or apps;
• remember preferences;
• understand website and app usage;
• measure campaign performance;
• personalise content;
• improve user experience;
• conduct analytics and reporting;
• support remarketing or advertising; and
• identify technical issues or errors.

We may use tools such as Google Analytics, Google Tag Manager, Google Ads, Meta Pixel, Pinterest Tag, LinkedIn Insight Tag, email marketing platforms, CRM tools, heatmapping tools, Shopify, WordPress and other analytics or advertising technologies.

You can manage cookies through your browser settings. Some website or app features may not work properly if cookies are disabled.

8. When we disclose personal information

We may disclose personal information to:

• our employees, contractors, consultants and authorised team members;
• clients, where necessary to deliver services or report on work performed;
• technology providers, hosting providers, cloud storage providers, app providers, analytics platforms, advertising platforms, CRM platforms, email platforms, payment processors, accounting providers and other service providers;
• professional advisers, including lawyers, accountants, insurers and auditors;
• platform partners or integration providers, where necessary to operate connected services;
• regulators, government agencies, courts, law enforcement bodies or other parties where required or authorised by law;
• parties involved in a business sale, merger, restructure or transfer of assets;
• any person or organisation you authorise us to disclose information to; and
• any other party where disclosure is reasonably necessary for the purposes set out in this policy.

We do not sell personal information.

9. Overseas disclosure

Some of the third-party tools and service providers we use may store or process information outside Australia.

This may include cloud, hosting, analytics, advertising, email, CRM, eCommerce, development, support and productivity platforms. These providers may operate in countries including, but not limited to, Australia, New Zealand, the United States, Canada, the United Kingdom, the European Union, Singapore and other locations where our providers or their subprocessors operate.

Where we disclose personal information overseas, we take reasonable steps to ensure appropriate privacy and security protections are in place, where required by law.

10. Security of personal information

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification and disclosure.

Depending on the nature of the information, this may include:

• access controls and permission management;
• password management and multi-factor authentication;
• secure cloud storage and reputable software providers;
• internal policies and procedures;
• staff and contractor access controls;
• secure development and implementation practices;
• monitoring, logging and review processes;
• contractual confidentiality obligations;
• limiting access to information on a need-to-know basis; and
• deleting, de-identifying or archiving information when it is no longer required.

No method of transmission or storage is completely secure. We cannot guarantee absolute security, but we take privacy and data protection seriously and work to maintain appropriate safeguards.

11. Data retention

We retain personal information for as long as reasonably necessary for the purpose for which it was collected, including to provide services, manage our business, comply with legal obligations, resolve disputes, maintain security, support backups and meet contractual or record-keeping requirements.

When personal information is no longer required, we will take reasonable steps to destroy, delete or de-identify it, unless we are required or permitted to retain it.

For client projects, some information may remain in project records, reports, files, backups, support logs, accounting systems or third-party platforms after the project has ended.

12. Accessing and correcting personal information

You may request access to the personal information we hold about you, or ask us to correct it if you believe it is inaccurate, out of date, incomplete, irrelevant or misleading.

To make a request, contact us at: privacy@meks.com.au

We may need to verify your identity before responding. We may refuse access or correction where permitted by law, but if we do, we will explain why.

Where we hold personal information on behalf of a client, we may refer your request to the relevant client or work with the client to respond appropriately.

13. Data breaches

If a data breach occurs, we will take reasonable steps to contain, assess and respond to the incident.

Where required by law, we will notify affected individuals and relevant regulators. Under Australia’s Notifiable Data Breaches scheme, organisations covered by the Privacy Act must notify affected individuals and the OAIC when a data breach involving personal information is likely to result in serious harm.

14. Third-party websites and platforms

Our website, apps, emails or services may link to third-party websites, platforms, apps or services.

We are not responsible for the privacy practices, content or security of third-party websites or platforms. You should review the privacy policies and terms of any third-party services you use.

15. Artificial intelligence and automation tools

We may use automation, analytics, machine learning or AI-enabled tools to support our work, improve efficiency, assist with analysis, generate ideas, review content, identify issues, optimise workflows or support technical delivery.

Where these tools involve personal information, we take reasonable steps to use them responsibly and in accordance with applicable privacy obligations, client instructions and confidentiality requirements.

We do not knowingly use personal information to make decisions that produce legal or similarly significant effects about individuals without appropriate human review or lawful authority.

Clients should not provide sensitive, confidential or regulated personal information for use in AI-enabled tools unless it is necessary, authorised and appropriately protected.

16. Children and minors

Our services are generally intended for businesses and adults. We do not knowingly collect personal information from children unless it is provided by a client, parent, guardian or authorised party for a legitimate purpose connected with our services.

Where we handle information relating to children or minors on behalf of a client, we do so in accordance with the client’s instructions and applicable laws.

17. Complaints and questions

If you have a question, concern or complaint about how we handle personal information, please contact us at:

meks digital
Email: privacy@meks.com.au

We will aim to respond within a reasonable time.

If you are not satisfied with our response, you may be able to contact the Office of the Australian Information Commissioner.

18. Changes to this policy

We may update this Privacy Policy from time to time.

The updated version will be posted on our website with the updated date. Your continued use of our website, apps or services after an update means the updated policy applies.