At Koh we are committed to protecting and respecting your privacy.
Please read this policy carefully to understand our practices regarding your personal data and how we will treat it. We recommend that, from time to time, you visit our website to review this policy to stay up to date with any changes to it.
If you would like to read more about how Koh processes personal data, you can find a more detailed description in our FAQs
What establishes our data protection obligations to you?
Koh is required to process your personal data in accordance with the law. The Data Protection Act 1998 (DPA) implements the EU Data Protection Directive 1995 (EU Directive 95/46/EC). From 25 May 2018, the General Data Protection Regulation 2016 (EU Regulation 2016/679) will come into force; it replaces the DPA.
Who is the Data Controller for Koh?
A data controller is a person or persons who determine the purposes for which and means by which personal data is processed. In other words, at Koh, we are a data controller and we require information about you in order to do business.
How does Koh collect this personal data?
Information that you give to us, this is the personal data that you provide to us, for example by filling in forms on our website https://koh.com or by corresponding with us by phone, e-mail, post, social media or otherwise.
This personal data would relate to the purchase of goods from Koh.
To find out more about the purposes for which we intend to use this personal data and how long we keep that data, please view our FAQs
Information that we receive from other sources
We will notify you when we receive information about you from third parties. To find out more about the personal data that we collect from third parties, the purposes for which we intend to use this, and how long we keep that data, please view our FAQs
Information we collect when visiting our website
In line with our information security standards, we monitor website behaviour through Google Analytics. We collect information about how each visitor uses our site. These are then used to compile reports and to help us improve our site. Information is collected in an anonymous form, including:
- the number of visitors to the site
- where visitors have come to the site from
- the pages visited
Koh wants to provide you with the best possible service. We are always looking for ways to improve. This includes improving our website so that it provides the information that you need, on a regularly updated basis and in an easily accessible way.
Cookies on the Koh website
To improve and keep our website up-to-date, we collect information about your visit and we may share some of this information with our third party data analytics service providers to help us assess and improve our website. When this website data is shared with third parties, it will be provided as anonymised, aggregated data with personal data no longer identifiable.
Information that we may collect from your visit includes your device’s Internet protocol (IP) address, browser type and version, time zone setting, browser plug-in types and versions, operating system and platform, the full Uniform Resource Locators (URL), clickstream to, through and from our site (including date and time), services you viewed or searched for, page response times, and length of visits to certain pages.
For what purposes does Koh collect and use your personal data?
Koh processes the personal data held about you in the following ways:
- to help us deliver your goods
- to manage your purchases
- to manage any refunds
- to provide you with updates and alerts, such as the estimated time for the delivery of your orders
- to monitor our work and maintain our records
- to administer and improve our website and other communications with you
- to enable compliance with statutory and legal obligations
- to detect and prevent fraud
- to respond to any complaint that you might make
- to answer general enquiries that you may make
Koh will not process your personal data:
- to conduct market research (unless required by a regulatory body such, or where we have your permission or are permitted to do so by law) or for marketing purposes
- to pass it to a third party for that party’s or any other party’s purposes
- to sell it to a third party
When does Koh disclose personal data?
It may be necessary for Koh to share your personal data with others, including:
- other entities in the Koh group of companies
- our third party business partners, suppliers, analytics providers that assist us with improvement of our website
- credit reference agencies and other companies and organisations for the purpose of fraud prevention and credit risk reduction,
- government agencies and independent regulatory bodies
and as might be required by law, including compliance with any court order or legal obligation.
In the event that Koh (or substantially all of its assets) were to be acquired by or merged with a third party, the personal data held by us about our customers would be included amongst the assets transferred or shared. If we were to sell or buy any business or assets, we may disclose personal data held by us to the prospective seller or buyer under strict confidentiality terms.
When entering into any agreements that involve the sharing or disclosure of personal data, Koh requires that these third parties comply with our data protection and information security policies or have substantially similar policies of their own in place.
Where does Koh store your personal data?
Koh has put in place appropriate technical and organisational measures to prevent accidental loss, damage or destruction of your personal data, and to protect your personal data against unauthorised, or unlawful use or theft. We put in place strict confidentiality agreements, including data protection obligations, with our third party service providers and data processors.
Your personal data may be transferred outside the European Economic Area (EEA), where processing activities such as technical support, storage and backup may be provided. When this data is sent outside the EEA, we shall ensure its secure transfer and that appropriate safeguards are in place for the processing of your personal data in accordance with this policy and the requirements set out in the GDPR.
What are your rights?
The GDPR provides you with a number of rights in relation to your personal data. These include rights to the rectification or erasure of your personal data, and to restrict or object to its processing.
If you find that any of the personal data that we hold about you is inaccurate, incomplete or contains errors, please notify us in writing and we shall undertake to make the appropriate corrections at the earliest opportunity.
Should you wish to have some or all of your personal data erased, we will endeavour to do so although there may be instances where legitimate interests or the performance of our statutory obligations prevent us from doing so. The erasure of your personal data could result in an inability to provide you with some or all of our services.
Restriction or Objection
If you wish to object to or restrict how your personal data is processed by us, you can do so by writing to us. Please see our contact details below. Please be aware that such requests could result in an inability to provide you with some or all of our services.
You also have the right to data portability and to make a data subject access request.
You may request that Koh provide the personal data that we hold about you to another data controller in a structured, commonly used and machine-readable format.
You may request to be told whether or not personal data about you is being processed by Koh. If your personal data is being processed, you are entitled to receive a response from us that provides you with a description of that personal data, the purpose for which it is processed, the recipients or category of recipients to whom that data is disclosed (including any recipients located outside the EEA), the source of the personal data, and information about its retention and storage. A copy of the personal data that is undergoing processing shall be provided to you.
To make such requests, it is advisable to do so in writing and to address this communication to our Data Protection Officer, c/o 55 Pyrmont Bridge Road, Pyrmont, NSW 2009. You can also email email@example.com
The table below explains the cookies we use and why.
The cookies are used to collect information about how each visitor uses our site. We use the information to compile reports and to help us improve our site. The cookies collect information in an anonymous form, including:
Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies including how to see what cookies have been set and how to manage and delete them, visit www.allaboutcookies.org.
To opt out of being tracked by Google Analytics across all websites visit http://tools.google.com/dlpage/gaoptout.