Privacy Policy

Last Updated : 12th Feb 2025

Site Ownership & Compliance With Australian Privacy Laws


This privacy policy applies to the products and/or services provided on adhdactually.com, and explains how we collect, hold, use and disclose data.

Site Ownership

This site is owned by Zoe Kluga [ABN 18 291 031 211] (also referred to as “ADHD Actually”, “we”, “us” or “our”).

By using this website, you agree to the terms of this Privacy Policy. It applies to all visitors, customers, and users of our site and services.

ADHD Actually is located in Perth, Western Australia and operates in compliance with Australian Privacy Laws (Privacy Act (1988 (Cth)), Australian Privacy Principles, the EU General Data Protection Regulation (GDPR) (if/when applicable) and with all other relevant laws governing data collection, use, and storage.

Contact
For any privacy-related inquiries, contact us at adhdactually@gmail.com with "Privacy Policy" in the subject line.

Information Collected


How is Information Collected?
We collect certain information when you use our website to help us provide the services listed, operate effectively and provide you with the best possible experience.

How We May Collect Data

We may collect data when:
  • You fill out a form, book a session, or create an account
  • You interact with us on social media
  • You accept cookies or tracking technologies on our site
  • You voluntarily provide information (e.g., sending an email or making a purchase)

What We May Collect
  • Contact details (name, address, email etc)
  • Payment details (processed securely) - please see Payment Security for more info
  • Purchase history (products/services you buy)
  • Device & browser data (IP address, browser type, time zone, operating system)
  • Site usage data (pages visited, time spent, clicks, preferences)

Who Can Provide Data?

This website is not intended for individuals under the age of 18 and we don't knowingly collect, disclose or use personal and identifiable information from underage individuals in compliance with the Children's Online Privacy Protection Act (COPPA).

If you believe we have unintentionally collected data from a minor, please contact us, and we will remove it.

Cookies


Cookies
Cookies are small data files stored on your device when you visit our site. They help improve functionality and user experience.

We use cookies to:
  • Remember your preferences
  • Analyse site traffic and improve performance
  • Enable secure transactions

Types of cookies we use:
  • Session cookies – Temporary cookies that expire when you close your browser.
  • Persistent cookies – Stored on your device until they expire or you delete them.
  • Third-party cookies – Used for analytics and improving site functionality.

By using our website, you consent to the use of cookies as described in this policy. If you do not wish to accept cookies, you can adjust your browser settings to refuse or delete cookies. However, this may impact certain site features.

For a simple explanation of cookies, check out this article from HowStuffWorks. Please note that this is an external site, and we are not responsible for its content.

How Data Is Used


Under Australian data laws, we can only use your data for specific purposes where we have a legal basis to do so.
We use your data to:
  • Operate and maintain our website
  • Provide you with products, services, and support
  • Improve your experience on our site
  • Communicate with you (e.g., updates, service notifications)
  • Conduct research and improve our offerings
  • Send marketing communications (only with your consent)
  • Monitor compliance with our Website Terms & Conditions

We may also share your data in the following situations:
  • When required by law – If legally obligated, we may disclose your data.
  • With your consent – If you agree to share your data for a specific purpose.
  • With trusted service providers – We may share data with third-party providers (e.g., payment processors, hosting services) who help us run our website.
  • For business operations – Within our business for internal administrative purposes.

We do not sell or rent your personal data.

Anti-Spam Policy


We operate in compliance with international anti-spam laws, including the U.S. CAN-SPAM Act and the European General Data Protection Regulation (GDPR).

If you opt in to receive marketing emails, newsletters, or updates, you can unsubscribe at any time using the link in every email.

The ADHD Actually membership will only send essential emails related to your membership and payments, including:
  • Confirmation of membership and payment
  • Pre-payment reminders
  • Post-payment receipts

Staying on top of emails is the worst. We'd rather not add to the stress, so we only send what’s necessary!!



Data Security & Storage


How We Protect Your Data
We take security seriously and use reasonable safeguards to protect your personal data. While no system is 100% secure, we take steps to minimise risk.

Measures We Take

Our security measures include:
  • Password-protected access to accounts
  • Storing data with reputable third-party providers with strong security protections
  • Limiting access to personal information to only those who need it for their work

Where We Store Data
Your data is stored with service providers based in Australia.

How Long We Keep Data
We retain your data for as long as necessary, depending on how you interact with us. If you have made a purchase, we keep a record for the period required for invoicing and tax purposes. Once no longer needed, we securely dispose of your data.

Third-Party Access
We may share data with trusted third parties, including:
  • Service providers that help us run our website and business
  • Professional and legal advisors
  • Law enforcement or government authorities when legally required
We do not sell or rent your data. Third parties are only permitted to process your data in accordance with our instructions.

Third-Party Risks
While we make every effort to secure your data, unauthorised access by third parties is always a risk. By using our website, you acknowledge that we are not responsible for such unauthorised activities.

Payment Security


All of our real-time credit card authorisations are handled by PayPal and Stripe, secured by SSL.

How We Protect Your Payment Data

The following measures ensure your payment details remain secure:

  • Payments are fully automated with an immediate response.
  • Your complete credit card number is never visible to us or any outside party.
  • All transaction data is encrypted and securely stored within Stripe & PayPal’s bank-grade data centres.
  • Stripe & PayPal are authorised third-party processors for all major Australian banks.
  • At no time does Stripe or PayPal touch your funds—payments go directly from your credit card to our merchant account.
  • We only use widely respected, secure, and reliable payment providers to ensure your data stays safe.


While we take security seriously, no system is completely foolproof. We cannot guarantee absolute security, but we take all reasonable steps to protect your payment information.

Industry Standards & Compliance

The Payment Card Industry Data Security Standard (PCI DSS) is a global security framework for handling credit card transactions. PayPal and Stripe are both **PCI DSS compliant**, meaning they meet strict security standards set by the PCI Security Standards Council to protect your payment data.

Your Choices And Rights


You have rights regarding your personal data, and you can exercise them at any time by contacting us at adhdactually@gmail.com. Please include "Privacy Policy" in the subject line.

1. Request a Correction:
If any information we hold about you is inaccurate or incomplete, you can request a correction or update.

2. Request Data Deletion:
You can ask us to delete your personal data. However, we may need to retain certain information for legal or regulatory reasons.

3. Raise a Concern:
If you have concerns about how we handle your data, email us at adhdactually@gmail.com, and we will do our best to resolve the issue.

If you're not satisfied with our response, you have the right to escalate your complaint to the Office of the Australian Information Commissioner or the relevant data protection authority in your jurisdiction.

Please note that some rights may have legal limitations based on applicable regulations.



International Data Transfers



Our website is accessible worldwide, so your personal data may be processed in countries with different privacy laws than your own.

We take precautions to keep your data secure no matter where it’s processed. When transferring data internationally, we use legally approved safeguards like standard contractual clauses to protect your information.

By using our website, you agree to these international transfers.



Changes To This Policy


This Privacy Policy is governed by Australian law.

We may update this Privacy Policy from time to time. The latest version will always have the **"Effective Date"** at the top, so you can easily see if anything has changed.

If you have any questions, feel free to email us at adhdactually@gmail.com with **"Privacy Policy"** in the subject line.