Privacy Policy

1. Introduction

Rabar Media, a trading name of Rabar Enterprises Pty Ltd ("we," "us," "our," or "Rabar Media"), is committed to protecting your privacy and handling your personal information in accordance with the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth).

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (rabarmedia.com), use our services, or interact with us.

Business Details:

2. Information We Collect

2.1 Information You Provide Directly

We collect information that you voluntarily provide when you:

• Fill out contact forms or inquiry forms on our website
• Book a strategy session or consultation
• Subscribe to our email list or marketing communications
• Engage our services as a client
• Communicate with us via email, phone, or social media
• Participate in surveys, webinars, or events

This information may include:

• Name (first and last)
• Email address
• Phone number
• Company name and website
• Business details and industry
• Monthly budget and service requirements
• Any other information you choose to provide in forms or communications

2.2 Information Collected Automatically

When you visit our website, we automatically collect certain information, including:

• Device information: IP address, browser type, operating system, device type
• Usage data: Pages visited, time spent on pages, links clicked, referral sources
• Location data: General geographic location based on IP address
• Cookie data: Information collected through cookies and similar technologies (see Section 5)

2.3 Information from Third-Party Sources

We may receive information about you from:

• Social media platforms when you interact with our content or ads
• Advertising platforms (Meta, Google, TikTok) regarding ad performance and engagement
• Business directories and databases for prospecting and marketing purposes
• Referral partners who recommend our services
• Analytics providers that help us understand website traffic and user behavior

2.4 Client Information

For clients who engage our services, we may also collect:

• Business financial information: Revenue, ad spend, budgets
• Account access credentials: For advertising platforms, CRM, analytics (stored securely)
• Campaign performance data: Leads, conversions, sales data, ROI metrics
• Customer data: Information about your customers necessary for campaign targeting and optimization
• Payment information: Billing details, invoices, payment records

3. How We Use Your Information

3.1 Primary Purposes

We use your information to:

• Provide services: Deliver the digital marketing services you've engaged us for
• Respond to inquiries: Answer questions and provide information about our services
• Schedule consultations: Book and manage strategy sessions and meetings
• Process transactions: Handle billing, payments, and invoicing
• Optimize campaigns: Manage, monitor, and improve advertising performance
• Communicate with you: Send service-related updates, reports, and notifications

3.2 Marketing and Communications

With your consent (where required), we use your information to:

• Send marketing emails, newsletters, and promotional content
• Share case studies, industry insights, and educational content
• Notify you about new services, features, or special offers
• Invite you to webinars, events, or training sessions
• Retarget you with relevant ads on social media and other platforms

You can unsubscribe from marketing communications at any time using the unsubscribe link in our emails.

3.3 Analytics and Improvement

We use information to:

• Analyze website traffic and user behavior
• Understand how visitors interact with our content
• Improve our website, services, and customer experience
• Conduct market research and competitive analysis
• Test and optimize marketing campaigns

3.4 Legal and Compliance

We may use information to:

• Comply with legal obligations and regulatory requirements
• Enforce our Terms and Conditions and service agreements
• Protect our rights, property, and safety, and that of our clients and others
• Prevent fraud, security breaches, and illegal activities
• Respond to legal requests from law enforcement or government authorities

4. How We Share Your Information

4.1 Service Providers and Partners

We share information with trusted third-party service providers who assist us in operating our business, including:

• Advertising platforms: Meta (Facebook/Instagram), Google, TikTok for campaign management
• CRM and automation tools: GoHighLevel, HubSpot, or similar platforms for customer management
• Email marketing services: For sending newsletters and communications
• Analytics providers: Google Analytics, Hotjar, and similar tools for website analysis
• Cloud hosting and storage: AWS, Google Cloud, or similar infrastructure providers
• Payment processors: For secure payment handling
• Design and development tools: Canva, Adobe, website platforms

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

4.2 Business Transfers

If Rabar Media is involved in a merger, acquisition, sale of assets, or bankruptcy, your information may be transferred as part of that transaction. We will notify you of any such change and any choices you may have.

4.3 Legal Requirements

We may disclose your information if required by law or in response to:

• Court orders, subpoenas, or legal processes
• Requests from law enforcement or government authorities
• Protection of our legal rights or compliance with regulations
• Prevention of fraud, security threats, or illegal activity

4.4 Aggregated and Anonymized Data

We may share aggregated or anonymized data that does not personally identify you, such as:

• Industry benchmarks and performance statistics
• Case study metrics and campaign results (without identifying details)
• Market research and trend analysis

4.5 Marketing and Case Studies

With your consent (or as outlined in our service agreements), we may:

• Publish case studies featuring your business results
• Use your company name and logo in our portfolio and marketing materials
• Share testimonials and feedback you provide
• Include performance metrics in promotional content

If you require confidentiality, please notify us in writing.

5. Cookies and Tracking Technologies

5.1 What Are Cookies?

Cookies are small text files placed on your device when you visit our website. They help us remember your preferences, understand how you use our site, and improve your experience.

5.2 Types of Cookies We Use

Essential Cookies:

• Required for the website to function properly
• Enable core features like security, network management, and accessibility
• Cannot be disabled

Analytics Cookies:

• Help us understand how visitors use our website
• Track metrics like page views, bounce rates, and user paths
• Provided by Google Analytics, Hotjar, and similar tools

Marketing Cookies:

• Used to deliver personalized ads and measure campaign effectiveness
• Track your interactions with our ads across different platforms
• Provided by Meta Pixel, Google Ads, TikTok Pixel, LinkedIn Insight Tag

Functionality Cookies:

• Remember your preferences and settings
• Enable enhanced features and personalization
• Improve your overall user experience

5.3 Managing Cookies

You can control cookies through your browser settings:

• Block all cookies: Disable cookies entirely (may limit website functionality)
• Delete cookies: Remove existing cookies from your device
• Opt-out of advertising cookies: Use browser privacy settings or opt-out tools

For more information, visit: www.aboutcookies.org or www.allaboutcookies.org

5.4 Third-Party Tracking

Our website may include social media buttons, embedded content, and third-party scripts that may track your activity. These third parties have their own privacy policies governing their use of your information.

6. Data Security

6.1 Security Measures We Implement

We implement reasonable technical and organizational measures to protect your information, including:

• Encryption: SSL/TLS encryption for data transmission on our website
• Access controls: Restricted access to personal information on a need-to-know basis
• Secure storage: Password-protected systems and encrypted databases where practical
• Regular security reviews: Ongoing monitoring for vulnerabilities
• Employee training: Staff trained on data protection and privacy practices
• Vendor management: Due diligence on third-party service providers
• Backup systems: Regular data backups to prevent loss

6.2 Security Limitations and Disclaimers

Inherent Risks:

• The internet is inherently insecure and data transmission carries risks
• No security system can prevent all unauthorized access or breaches
• Hackers, cyber criminals, and malicious actors constantly evolve their tactics
• Third-party platforms we use (Meta, Google, email providers) may have security vulnerabilities
• Data breaches can occur despite reasonable security measures

Security Limitations:

• We implement commercially reasonable security but DO NOT GUARANTEE absolute security
• We CANNOT prevent all unauthorized access, hacking, data loss, or breaches
• We are NOT RESPONSIBLE for security vulnerabilities in third-party platforms
• We are NOT LIABLE for breaches caused by factors outside our reasonable control

Third-Party Security:

• Third-party services (Meta, Google, GoHighLevel, email providers) have their own security measures
• We rely on their security and are not responsible for their breaches
• Their security policies govern data they process on our behalf

6.3 Your Security Responsibilities

YOU ARE RESPONSIBLE FOR:

• Maintaining the confidentiality of any account passwords or login credentials
• Using strong, unique passwords for accounts
• Not sharing login credentials with unauthorized persons
• Logging out of accounts when finished
• Reporting suspected unauthorized access immediately
• Keeping your devices and software updated and secure
• Using secure internet connections (not public Wi-Fi for sensitive activities)

WE ARE NOT RESPONSIBLE FOR:

• Unauthorized access resulting from your failure to maintain password security
• Breaches caused by your sharing of login credentials
• Compromise of your devices or systems
• Phishing attacks or social engineering targeting you

6.4 Data Breach Notification

In the event of a data breach that we become aware of and that is likely to result in serious harm:

We will:

• Assess the breach and determine notification obligations under Australian law
• Notify affected individuals as soon as practicable (if required by law)
• Report to the Office of the Australian Information Commissioner (OAIC) if required
• Take reasonable steps to contain and remediate the breach
• Cooperate with investigations and authorities

You acknowledge:

• There may be delays in discovering or containing breaches
• We may not be aware of all breaches immediately
• Third-party breaches may not be within our knowledge or control
• Notification requirements and timing are governed by Australian privacy law

6.5 Limitation of Liability for Security Incidents

• Direct, indirect, incidental, or consequential damages arising from data breaches
• Identity theft, fraud, or financial loss resulting from unauthorized access
• Business interruption or reputational damage from security incidents
• Costs of credit monitoring, identity protection, or remediation
• Emotional distress or other non-economic damages
• Damages arising from third-party platform breaches
• Loss of data or information due to security incidents

This limitation applies even if:

• We were negligent in implementing security measures
• The breach was foreseeable
• We were advised of the possibility of such damages

Exceptions:

• This limitation does not apply to the extent prohibited by Australian Consumer Law
• We remain liable for breaches caused by our willful misconduct or gross negligence
• Statutory rights under the Privacy Act 1988 cannot be excluded

6.6 Third-Party Breaches

YOU ACKNOWLEDGE THAT:

• Much of your data is processed by third-party platforms (Meta, Google, email providers, CRM systems)
• These third parties have experienced data breaches in the past and may experience them in the future
• We have no control over third-party security practices
• WE ARE NOT LIABLE for breaches, security incidents, or data loss at third-party platforms
• You should review third-party privacy policies and security measures independently

6.7 Client Data Security for Marketing Services

If you are a client:

YOUR RESPONSIBILITIES:

• Ensuring your advertising accounts (Meta, Google, etc.) have proper security settings
• Using two-factor authentication on business accounts
• Securing access credentials provided to us
• Monitoring account activity for unauthorized access
• Maintaining backup copies of critical business data

OUR RESPONSIBILITIES:

• Using secure methods to access and manage your accounts
• Not sharing your credentials with unauthorized third parties
• Logging out of your accounts after use
• Reporting any suspected security issues to you

SHARED DATA RISKS:

• When you grant us access to accounts, you increase the number of people with access
• This inherently increases security risk even with proper precautions
• You accept this risk by engaging our services

6.8 Data Loss and Corruption

WE ARE NOT LIABLE FOR:

• Loss of data due to hardware failures, software bugs, or system crashes
• Data corruption during transmission or storage
• Loss of campaign data if platform accounts are suspended or terminated
• Deletion of data by third-party platforms
• Loss of historical data after service termination

YOU SHOULD:

• Maintain independent backups of critical business data
• Export campaign data regularly from advertising platforms
• Not rely solely on our records or systems for data retention

7. Data Retention

7.1 Retention Periods

We retain your information for as long as necessary to:

• Provide services and fulfill the purposes outlined in this Privacy Policy
• Comply with legal, accounting, and regulatory requirements
• Resolve disputes and enforce our agreements

7.2 Retention Guidelines

• Inquiry and contact form data: Retained for up to 2 years or until you request deletion
• Email subscribers: Retained until you unsubscribe
• Client data: Retained for the duration of the engagement plus 7 years for accounting/legal purposes
• Analytics and cookie data: Typically retained for 12–26 months depending on the platform

7.3 Deletion

After the retention period expires, we will securely delete or anonymize your information unless we are required by law to retain it longer.

8. Your Rights and Choices

8.1 Access and Correction

You have the right to:

• Access your personal information we hold about you
• Request correction of inaccurate or incomplete information
• Receive a copy of your data in a structured, commonly used format

To exercise these rights, contact us at ali@rabarmedia.com.

8.2 Deletion and Restriction

You may request that we:

• Delete your personal information (subject to legal retention requirements)
• Restrict processing of your information in certain circumstances
• Object to processing based on legitimate interests

8.3 Marketing Opt-Out

You can opt out of marketing communications by:

• Clicking the "unsubscribe" link in our emails
• Contacting us at ali@rabarmedia.com
• Adjusting your email preferences

Note: You will continue to receive service-related communications if you are a client.

8.4 Cookie Preferences

You can manage cookie preferences through:

• Your browser settings
• Cookie consent tools on our website (if implemented)
• Opt-out tools provided by advertising platforms

8.5 Response Time

We will respond to your requests within 30 days. If we need more time, we will notify you and explain the reason for the delay.

9. International Data Transfers

9.1 Data Storage Location

Your information may be stored and processed in:

• Australia
• Cloud servers located in the United States or other countries
• Countries where our service providers operate

9.2 Cross-Border Transfers

When we transfer data outside Australia, we ensure appropriate safeguards are in place, such as:

• Standard contractual clauses
• Service provider agreements with data protection obligations
• Compliance with APP 8 (Cross-border disclosure of personal information)

10. Children's Privacy

Our website and services are not intended for individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will delete it promptly.

11. Third-Party Websites

Our website may contain links to third-party websites, social media platforms, or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any information.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations.

When we make changes:

• We will update the "Last Updated" date at the top of this policy
• We may notify you via email or website notice for significant changes
• Continued use of our website or services after changes constitutes acceptance

We encourage you to review this Privacy Policy periodically.

13. Contact Us

13.1 Privacy Inquiries

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact:

13.2 Complaints

If you believe we have breached the Australian Privacy Principles, you may lodge a complaint with:

We request that you contact us first so we have an opportunity to resolve your concern.

14. Consent

By using our website, submitting forms, or engaging our services, you consent to the collection, use, and disclosure of your information as described in this Privacy Policy.

If you do not agree with this Privacy Policy, please do not use our website or services.