Privacy Policy

Privacy Policy
 
Last Updated: 17/12/2024

We respect your privacy and deal carefully with the personal information you supply to Il Tutto. We will keep your information secure and make every effort to guarantee the reliability, security and integrity of any personal information supplied/collected. We will not misuse your personal information. You can opt-out from receiving any information at any time by contacting us. This Privacy Policy describes how your personal information is collected, used, and shared when you visit or make a purchase from iltutto.com.au (the “Site”).
 
1. Introduction
 
We at Il Tutto International Pty Ltd ("Il Tutto," "we," "us," or "our") respect your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit iltutto.com.au (the "Site") or make a purchase from us.
 
This policy complies with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
 
2. Personal Information We Collect
 
2.1 Device Information
When you visit the Site, we automatically collect certain information about your device, including:
- Web browser information
- IP address
- Time zone
- Cookie data
- Pages viewed
- Products viewed
- Referring websites or search terms
- Site interaction information
 
2.2 Collection Methods
We collect Device Information using:
 
a) Cookies
- Essential cookies: Required for site functionality
- Analytical cookies: Help us understand site usage
- Advertising cookies: Used for targeted advertising
- Social media cookies: Enable social media features
 
You can modify your browser settings to manage cookies. Note that disabling certain cookies may affect site functionality.

Notwithstanding any other provision, we may also engage a third-party service provider who may combine your information with information from other; and may place or recognise a unique cookie on your browser for the purpose of identifying users and delivering to them interest-based content and advertisements. To opt-out of third party cookies, please contact us - “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.

 
b) Log Files
Track site actions and collect:
- IP addresses
- Browser types
- Internet service providers
- Referring/exit pages
- Date/time stamps
 
c) Tracking Technologies
- Web beacons
- Tags
- Pixels from advertising platforms (Facebook, Instagram, TikTok, Pinterest, YouTube, Reddit, Google)
 
2.3 Order and Marketing Information
When you make a purchase or interact with our marketing:
- Name
- Billing address
- Shipping address
- Email address
- Phone number
- Payment information (processed securely through our payment providers)
- Purchase history
- Email engagement data
- Website interaction data
- Marketing preferences
- Customer segment information

Additionally, when you make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your name, billing address, shipping address, payment information (we do not collect or store credit card numbers, all credit card details are collected off-site via the payment gateways we offer [Payment types offered on this website; AfterPay, Stripe, PayPal. You can visit the payment sites for their privacy policy;

 
3. Payment Processing
 
We use the following payment providers:
- Stripe (https://stripe.com/au/privacy)
- PayPal (https://www.paypal.com/au/webapps/mpp/ua/privacy-full)
- AfterPay (https://www.afterpay.com/en-AU/privacy-policy)
- Klarna (https://www.klarna.com/au/privacy)
 
We do not store credit card numbers directly on our servers.
 
4. How We Use Your Information
 
4.1 Marketing Platform Integration
We use Klaviyo to:
- Send marketing communications
- Create personalized customer experiences
- Analyze customer behavior and preferences
- Segment customers for targeted marketing
- Track marketing campaign performance
- Manage customer lifecycle communications
- Automate marketing workflows
- Process abandoned cart notifications
- Send order confirmations and shipping updates
 
4.2 Order Information Use:
- Order fulfillment
- Payment processing
- Shipping arrangement
- Communication about orders
- Fraud screening
- Marketing communications (with consent)
 
4.2 Device Information Use:
- Risk and fraud assessment
- Site optimization
- Analytics
- Marketing campaign assessment
- Advertising personalization
 
5. Advertising and Marketing
 
5.1 Platforms
We use the following platforms for advertising:
- Facebook/Meta
- Instagram
- YouTube
- Pinterest
- TikTok
- Reddit
- Google Analytics
 
5.2 Remarketing and Targeted Advertising
We may use your information for:
- Retargeting advertisements
- Custom audience creation
- Lookalike audience generation
- Performance analytics
 
5.3 Opting Out
You can opt out of targeted advertising on:
- Facebook: https://www.facebook.com/settings/?tab=ads
- Google/YouTube: https://www.google.com/settings/ads/anonymous
- Pinterest: https://help.pinterest.com/en/article/personalized-ads-on-pinterest
- TikTok: https://www.tiktok.com/privacy/ads-and-your-data/
- Digital Advertising Alliance: http://optout.aboutads.info/
- Google Analytics: https://tools.google.com/dlpage/gaoptout
 
6. Data Sharing and Disclosure
 
6.1 Email Marketing and Customer Data Platform
We use Klaviyo (https://www.klaviyo.com/privacy/policy) to manage our email marketing and customer data. Through Klaviyo, we:
- Track email engagement (opens, clicks, preferences)
- Store customer purchase history
- Analyze shopping behavior
- Create personalized marketing campaigns
- Segment customers based on behavior and preferences
- Track website interactions
- Manage SMS marketing (if applicable)
 
You can update your email preferences or unsubscribe at any time through:
- Links in our emails
- Contacting our customer service
- Your account settings
 
6.2 Third-Party Service Providers
We share information with:
- Payment processors
- Shipping providers
- Analytics providers
- Marketing platforms
- Customer service providers
 
6.2 Legal Requirements
We may disclose information:
- To comply with laws
- To respond to legal requests
- To protect our rights
- To prevent fraud
 
7. Data Security
 
We implement appropriate technical and organizational measures to protect your personal information, including:
- Encryption
- Secure servers
- Regular security assessments
- Staff training
- Access controls
 
8. Data Breaches
 
In the event of a data breach that may cause serious harm, we will:
- Notify affected individuals promptly
- Report to the Office of the Australian Information Commissioner (OAIC)
- Take steps to prevent future breaches
 
9. Your Privacy Rights
 
Under Australian privacy law, you have the right to:
- Access your personal information
- Correct inaccurate information
- Request deletion of your information
- Withdraw marketing consent
- Lodge a complaint with the OAIC
 
Response timeframe: We will respond to your requests within 30 days.
 
10. Children's Privacy
 
We do not knowingly collect information from children under 13. If you believe we have collected information from a child, please contact us immediately.
 
11. Data Retention
 
We retain personal information for:
- Active accounts: Duration of account activity
- Order information: 7 years (as required by Australian law)
- Marketing information: Until consent withdrawal
 
12. International Data Transfers
 
Your information may be transferred to servers outside Australia. We ensure appropriate safeguards are in place through:
- Contractual obligations
- Data protection agreements
- Privacy shield certifications
 
13. Changes to This Policy
 
We may update this policy periodically. Significant changes will be notified via:
- Email notification
- Site announcement
- Policy effective date update

Do not track

Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.

Your rights

If you are a European resident, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, or deleted. If you would like to exercise this right, please contact us through the contact information below.

Additionally, if you are a European resident we note that we are processing your information in order to fulfill contracts we might have with you (for example if you make an order through the Site), or otherwise to pursue our legitimate business interests listed above. Additionally, please note that your information will be transferred outside of Europe, including to Canada and the United States.

Data retention

When you place an order through the Site, we will maintain your Order Information for our records unless and until you ask us to delete this information.

Changes

We may update this privacy policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal or regulatory reasons.

 
14. Contact Us
 
For privacy-related matters:
Email: hello@iltutto.com
 
Postal Address:
Il Tutto International Pty Ltd
ABN: 30 744 385 429
PO Box 616
South Melbourne, VIC, 3205
Australia
 
Phone: 1300 780 548
 
15. Complaints
 
If you're unsatisfied with our response to your privacy concerns, you can contact the OAIC:
Website: www.oaic.gov.au
Phone: 1300 363 992