Privacy Policy

VERSION 1.0 – EFFECTIVE DATE: 7 November 2025

LATEST UPDATE: 7 November 2025

At Your Tiny Home Co., we hold the privacy of information and data of our clients as an important part of the client relationship and therefore, adhere to a strict privacy policy pursuant to the Australian Privacy Laws (Information Privacy Act 2009 (Qld), Privacy Act 1988 (Cth), Australian Privacy Principles and to the extent applicable, with the EU General Data Protection Regulation (GDPR) and any replacement legislation or regulation or guidelines and standards governing the use, storage or transmission of personal data)

For further information or if you have any questions or concerns, please contact us or email info@yourtinyhomeco.com 

WHO WE ARE

​We are Your Tiny Home Co. Pty Ltd T/A Your Tiny Home Co. (A.C.N. 687 987 579).

This Privacy Policy applies to the products and services we provide, including our website https://yourtinyhomeco.com (Site) and our social media channels and explains how we collect, hold, use and disclose data to carry out the services we provide and constitutes part of our Website Terms & Conditions.

This Privacy Policy does not cover information that you submit on other websites, even if we communicate with you on those sites. For example, if you post something on Instagram, Facebook, Pinterest, Twitter, or YouTube, that information is governed by the privacy policies on those websites and is not governed by this Privacy Policy.

DEFINITIONS

In this Privacy Policy, except to the extent that the context otherwise requires:

  1. Collect’ means gather, acquire or obtain by a lawful and fair means, information in circumstances, where the individual is identifiable or identified.
  2. Express Consent Consequences’ includes the fact that we will not be accountable under the Privacy Act, and you will not be able to seek redress under the Privacy Act in the event that you provide consent to the disclosure of your Personal Information by us to an overseas recipient and the overseas recipient handles your Personal Information in breach of the Privacy Act.
  3. Expressly Informed’ means the circumstance where we have provided you with a clear statement (either verbal or in writing) of the Express Consent Consequences. 
  4. Opt Out’ means an individual’s expressed request not to receive further Direct Marketing communications. • ‘
  5. Personal Information’ means information that is not Sensitive Information, including information or an opinion (whether information or an opinion forming part of a database), whether true or not and whether recorded in a material form or not, about an individual whose identity is apparent, or can reasonably be ascertained from the information or opinion. This includes, but is not limited to, an individual’s first name, last name, email address, phone number, password and address. 
  6. Primary Purpose’ is the main reason for the Collection of any Personal Information. • 
  7. Reasonable Expectation’ means a reasonable individual’s expectation that their personal information might be Used or Disclosed for the relevant purpose. 
  8. Secondary Purpose’ means a purpose of Use or Disclosure other than a Primary Purpose. 
  9. Sensitive Information’ is given its meaning in section 6(1) of the Privacy Act 1988 (Cth). 
  10. Use’ means the handling of Personal Information by our Company.

OUR ROLE IN YOUR PRIVACY

If you are a client, customer or just a visitor on our Site, this Privacy Policy will apply to you.  

OUR RESPONSIBILITIES

As we are the providers of the products and/or services on this Site, we determine how and why your data is processed.  We do not sell or rent your details to any third parties. We are committed to protecting your privacy and we want you to know exactly what information is collected and how we use it.

YOUR RESPONSIBILITIES

  1. Please read this Privacy Policy and the Website Terms & Conditions, and for members, the Members Terms and Conditions and Giveaway Terms and Conditions.
  2. If you provide us with any data relating to a third party, you confirm that you have the right to authorise us to process that data on your behalf in accordance with this Privacy Policy.

WHEN AND HOW WE COLLECT DATA

From the moment you visit our Site, we are collecting data, sometimes you might provide this data by completing a form or setting up an account, otherwise we might collect the data automatically.  We have set out some examples below of how we may collect data from you:

  1. When you register with us, you provide us information about yourself – your name, email address, phone number etc. 
  2. If you correspond with us by e-mail, we may retain the content of your e-mail messages, your e-mail address, and our responses. We also collect general information about your use of our services. 
  3. By entering your email and phone number on our website, you may receive marketing material from us. This includes, but is not limited to, promotional offers, newsletters, and information about new products or services. We may use the information you provide us to contact you via email or phone, even if you do not submit any forms. If you do not wish to receive marketing material from us, please let us know by emailing us at info@yourtinyhomeco.com or by unsubscribing from our emails. 
  4. By contacting us via email or phone or otherwise subscribe to updates.

TYPES OF DATA WE MAY COLLECT

  1. Contact details (name, address, email);
  2. Financial Information (bank details when you are making a purchase);
  3. Data relating to members accounts (membership, entry history and eligibility);
  4. Data about the products or services you purchase; 
  5. Data that identifies you (your IP address, login, browser type, time zone, browser plug ins, geolocation, what operating system and version);
  6. Data on how you use our Site (URL clicks, products and services views, how long you are on our pages and other actions)
  7. Data about your experience and satisfaction with our Site and the products and/or services that you have purchased from us or others;
  8. Data relating to your circumstances and such other information that is relevant to your interaction with our website; 
  9. Data shared whilst on other platforms (including without limitation) social media (incl. Instagram, Facebook and Google) or other platforms utilised for marketing endeavours.
  10. Device information: We may collect information about the device you use to access our services, including the hardware model, operating system and version, unique device identifier, phone number, International Mobile Equipment Identity (“IMEI”) and mobile network information.
  11. Information Collected by Cookies and Other Tracking Technologies: We use various technologies to collect information, and this may include sending cookies to you. A “cookie” is a small data file transferred to your computer’s hard drive that allows a Website to respond to you as an individual, gathering and remembering information about your preferences in order to tailor its operation to your needs, likes and dislikes. Overall, cookies are safe, as they only identify your computer to customize your Web experience. Accepting a cookie does not provide us access to your computer or any Personal Information about you, other than the information you choose to share. Other servers cannot read them, nor can they be used to deliver a virus. Most browsers automatically accept cookies, but you can usually adjust yours (Microsoft Internet Explorer, Firefox or Google Chrome) to notify you of cookie placement requests, refuse certain cookies, or decline cookies completely. If you turn off cookies completely, there may be some website features that will not be available to you, and some Web pages may not display properly. To support the personalized features of our website (such as your country and language codes and browsing functions) we must send a cookie to your computer’s hard drive and/or use cookie-based authentication to identify you as a registered website user.
  12. Location Information: With your consent, we may collect information about the location of your device to facilitate your use of certain features of our products or services, determine the speed at which your device is traveling, add location-based filters (such as local weather), and for any other purposes. 

HOW AND WHY WE USE YOUR DATA AND DISCLOSURE

Under data laws, we are only allowed to use your data for specific reasons and where we have the legal basis to do so.  

We will use your data for the purposes it was collected and related purposes included:

  1. To run our Site;
  2. To verify winners as may be required under the respective permits for the respective States (i.e New South Wales); 
  3. To determine the winner, including membership, entry history and eligibility.
  4. provide you with products, information and services;
  5. Customer support;
  6. Track your purchase history;
  7. Detect and prevent fraud;
  8. Improve our Site;
  9. Marketing (with your consent) including through Third-party integrations, such as Mailchimp or ActiveCampaign;
  10. Make your experience on our Site more efficient and enjoyable;
  11. Market research e.g. we may contact you for feedback about our products and services; and
  12. Provide you with information about events, other products or services or opportunities that may be of interest.

We may disclose your data for the purposes it was collected and also:

  1. As required by law subject to our obligations;
  2. With your consent;
  3. Within our business; and
  4. In order to sell our business (if we were to ever sell, we may need to transfer data held to the new owner).

WHERE DO WE STORE AND TRANSFER DATA

We use service providers based around the world, which means your personal information may be stored or processed outside of Australia, including in the following countries:

  1. United States of America;
  2. European Union member states;
  3. Singapore.

When we transfer personal data outside of Australia, we ensure your privacy rights are adequately protected by:

  1. Using service providers who are bound by Australian Privacy Principles or similar privacy laws;
  2. Implementing Standard Contractual Clauses approved by the European Commission (for GDPR compliance);
  3. Ensuring service providers have implemented appropriate technical and organisational security measures;
  4. Conducting due diligence on overseas recipients’ data protection practices; and
  5. Where required, obtaining your express consent after informing you of the Express Consent Consequences.

Express Consent for Overseas Disclosures

If we disclose your personal information to an overseas recipient with your express consent, you acknowledge that:

  1. We will not be accountable under the Privacy Act for any breach of the Australian Privacy Principles by that overseas recipient; and
  2. You will not be able to seek redress under the Privacy Act in relation to that breach.

We will only seek this consent after we have expressly informed you of these consequences.

You may contact us at info@yourtinyhomeco.com if you would like more information about our overseas disclosures or the safeguards we have in place.

How Secure is the Data Collected

We realise that our customers trust us to protect their personal information. We take that task seriously and maintain reasonable and appropriate physical, electronic and procedural safeguards to help protect your personal information.  ​

How Long Do We Store the Data

We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by law. Specific retention periods include:

  1. Transaction and Financial Records: 7 years from the date of transaction (as required by Australian taxation laws);
  2. Customer Account Information: For the duration of your active account, plus 2 years after account closure;
  3. Marketing Consent Records: Until you withdraw consent, plus 3 years to demonstrate compliance;
  4. Website Usage Data and Cookies: Up to 2 years from collection;
  5. Correspondence and Communications: 3 years from the date of last correspondence;
  6. Legal Claims: For the duration of any legal proceedings, plus 7 years after resolution;
  7. Enquiry Information (non-customers): 2 years from date of enquiry if no purchase is made.

When we no longer need to retain your information, we will either:

  1. Securely delete or destroy the information; or
  2. De-identify the information so that it can no longer identify you.

You may request earlier deletion of your personal information by contacting us at info@yourtinyhomeco.com, however, we may need to retain certain information to comply with our legal obligations or for legitimate business purposes.

Third Parties Who Process the Data

We share data with third parties in the following circumstances:

  1. Other companies in our group of companies, as necessary to operate our Site (incl. DreamIT Host – Australia);
  2. Our suppliers and service providers working for us e.g. payment processors (incl. Stripe (PCI-DSS Compliant);
  3. Third-party integrations (incl. Mailchimp or ActiveCampaign).
  4. Our professional and legal advisors;
  5. Third parties engaged in fraud prevention and detection;
  6. Law enforcement or other government authorities; and
  7. Where we have your consent to do so or otherwise where we are legally permitted to do so.

GOOGLE ANALYTICS AND FACEBOOK 

Google

We use Google Analytics functions.  Our use of Google Analytics may include but is not limited to display advertising and re-marketing.  You may see our adverts across the internet, this is due to the use of tracking technologies (cookies) to optimise and serve our adverts based on past visits to our Site.  When you log onto our Site, we, with the help of Google Analytics, use your browsing behaviour to connect this with other data that you previously provided to us in accordance with this privacy policy.

Facebook

We use Facebook Insights to track your interaction with our Facebook page, which will allow us to track usage and improve the performance of our page.  We will use Facebook Analytics to better measure, track and understand customer user experience to enable us to improve our products and services that we offer. 

You may, at anytime opt-out of these analytics, by exercising your rights below.

WHAT ARE YOUR RIGHTS?

Under Australian privacy law and (where applicable) the GDPR, you have the following rights regarding your personal information:

Right to Access

You have the right to request access to the personal information we hold about you. We will provide you with a copy of your personal information within 30 days of your request, unless doing so would adversely affect the rights and freedoms of others (e.g., another person’s confidentiality or intellectual property rights).

Right to Correction

You have the right to request correction of any personal information we hold about you that is inaccurate, out-of-date, incomplete, irrelevant, or misleading. We will take reasonable steps to correct your information within 30 days.

Right to Erasure (Right to be Forgotten)

You may request that we delete your personal information in certain circumstances, including where:

  1. The information is no longer necessary for the purpose for which it was collected;
  2. You withdraw your consent (where consent was the basis for processing);
  3. You object to the processing and there are no overriding legitimate grounds;
  4. The information has been unlawfully processed; or
  5. The information must be erased to comply with a legal obligation.

We may refuse your request if we are required or permitted by law to retain the information.

Right to Restriction of Processing

You may request that we restrict the processing of your personal information in certain circumstances, including where you contest the accuracy of the information or object to our processing.

Right to Data Portability

Where technically feasible, you have the right to receive your personal information in a structured, commonly used, and machine-readable format, and to transmit that information to another service provider.

Right to Object

You have the right to object to our processing of your personal information, including processing for direct marketing purposes. If you object to direct marketing, we will stop processing your information for that purpose.

Right to Withdraw Consent

Where we rely on your consent to process your personal information, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.

How to Exercise Your Rights

To exercise any of these rights, please contact us at:

  1. Email: info@yourtinyhomeco.com
  2. Phone: 0485 505 293
  3. Mail: Your Tiny Home Co. Pty Ltd, Suite 135, Shop 1, 7 Turner Street, Beerwah QLD 4519

When making a request, please:

  1. Clearly state which right(s) you wish to exercise;
  2. Provide sufficient information to allow us to verify your identity (we may request additional identification documents);
  3. Specify the personal information you wish to access, correct, or delete (if applicable).

Response Timeframes

We will respond to your request:

  1. Within 30 days for access and correction requests;
  2. Without undue delay for other requests, and in any event within 1 month of receipt;
  3. We may extend this period by a further 2 months where necessary, taking into account the complexity of the request.

Fees

We will not charge a fee for making a request or for us to comply with a request unless your request is manifestly unfounded or excessive, or you request multiple copies of your information. If a fee applies, we will inform you of the amount before processing your request.

If We Cannot Comply

If we cannot comply with your request, we will:

  1. Inform you of the reasons why; and
  2. Inform you of your right to make a complaint to the Office of the Australian Information Commissioner (OAIC) or (where applicable) a relevant EU supervisory authority.

Don’t provide us with personal data.

You can choose not to provide us with any personal data. However, if you do this, we will not be able to provide you with any products or services, however, you can continue to use our Site and browse the pages of our Site.

Turning off cookies

Our Site uses cookies and similar technologies to provider certain functionality to our Site.  You can turn off cookies by activating the setting in your browser that allows you to do this. You can also delete cookies through your browser settings. 
If you do decide to turn off cookies, you can continue to use the Site, however, certain services may not work as effectively.

Don’t want marketing?

We will always let you know before we collect any data from you what the intended use is and if we intend to use it for marketing and if third parties are involved, we will obtain your consent (which you can withdraw at any time).  You can change your mind about marketing material by opting out by completing the contact us form on our contact page.

PRIVACY COMPLAINTS AND DISPUTE RESOLUTION

If you have a concern about our handling of your personal information or believe we have breached the Australian Privacy Principles or GDPR requirements, you have the right to make a complaint.

How to Make a Complaint

Please submit your complaint in writing to:

  1. Email: info@yourtinyhomeco.com 
  1. Mail: Privacy Officer, Your Tiny Home Co. Pty Ltd, Suite 135, Shop 1, 7 Turner Street, Beerwah QLD 4519

Your complaint should include:

  1. Your contact details;
  2. A clear description of the conduct you believe breaches privacy laws;
  3. Any relevant dates and details; and
  4. What outcome or resolution you are seeking.

Our Complaints Process

  1. Acknowledgment: We will acknowledge receipt of your complaint within 7 days;
  2. Investigation: We will investigate your complaint and may need to contact you for further information;
  3. Response: We will provide you with a written response within 30 days of receiving your complaint, including:
    1. Our decision on your complaint;
    2. The reasons for our decision;
    3. Any action we will take; and
    4. Information about further steps you can take if you are not satisfied;
  4. Extension: If we need more time to investigate, we will notify you and provide an expected resolution date.

If You Are Not Satisfied

If you are not satisfied with our response, or we have not responded within 30 days, you have the right to make a complaint to:

Office of the Australian Information Commissioner (OAIC)

  1. Website: www.oaic.gov.au
  2. Phone: 1300 363 992
  3. Email: enquiries@oaic.gov.au
  4. Mail: GPO Box 5218, Sydney NSW 2001

For EU Residents

If you are located in the European Union, you also have the right to lodge a complaint with your local supervisory authority. A list of supervisory authorities can be found at: https://edpb.europa.eu/about-edpb/board/members_en

MARKETING CONSENT

We may send you marketing communications about our products, services, promotions, and events if:

  1. You have provided your express consent to receive marketing communications; or
  2. We have an existing business relationship with you and you would reasonably expect to receive such communications; and
  3. You have not opted out of receiving such communications.

By providing your email address or phone number through our website forms, subscribing to our newsletter, or ticking a consent box, you consent to receiving marketing communications from us via email, SMS, phone, or other electronic means.

Your Right to Opt Out

You can opt out of receiving marketing communications at any time by:

  1. Clicking the “unsubscribe” link in any marketing email;
  2. Replying “STOP” to any marketing SMS;
  3. Contacting us at info@yourtinyhomeco.com; or
  4. Using the contact form on our website.

We will process your opt-out request within 5 business days.

Even if you opt out of marketing communications, we may still send you non-marketing communications, such as:

  1. Transactional emails relating to your purchases or account;
  2. Service updates or important notices;
  3. Responses to your enquiries; and
  4. Legal notices or communications required by law.

Compliance with Spam Laws

We comply with the Spam Act 2003 (Cth) and will not send you unsolicited marketing communications without your consent.

INACCURATE INFORMATION

You can contact us to ask us to correct any information we hold about you, that you believe is inaccurate.

OBJECTIONS TO USING DATA FOR PROFILING OR AUTOMATED DECISIONS

We may use your data to determine what products and services are relevant to you (e.g. tailoring our emails based on your behaviour.  Otherwise, the only circumstances in which we will use this data is to provide our products and services to you.

PAYMENT SECURITY 

Our Site is hosted on DreamIT Host (Australia) and Stripe.  They provide us with the ecommerce platform that allows us to sell our products and services to you.  Your data is stored through Wix and Square’s data storage, databases and the general Shopify application. They store your data on a secure server behind a firewall.

If you choose a direct payment gateway to complete your purchase, then Stripe stores your credit card data. It is encrypted through the Payment Card Industry Data Security Standard (PCI-DSS). Your purchase transaction data is stored only as long as is necessary to complete your purchase transaction. After that is complete, your purchase transaction information is deleted and we do not store any of your card details.

All direct payment gateways adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover.

PCI-DSS requirements help ensure the secure handling of credit card information by our store and its service providers.

​For more insight, you may also want to read:

AGE OF CONSENT

Our Site and Online Services are intended for individuals who are at least 18 years of age. By using this Site, you represent that you are at least 18 years old.

We do not knowingly collect, use, or disclose personal information from anyone under the age of 18. If you are under 18, please do not use our Site or provide any personal information to us.

If we become aware that we have collected personal information from a person under 18 without verification of parental consent, we will take steps to delete that information as quickly as possible.

If you are a parent or guardian and believe that we might have any information from or about a child under 18, please contact us immediately at info@yourtinyhomeco.com so we can delete the information.

COOKIES AND HOW TO BLOCK THEM

We use cookies, this helps us improve the products and services we provide. 

WHAT ARE COOKIES?

“Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. The HELP function in your browser will tell you how to restrict or block the cookies.  For more information about cookies, and how to disable cookies, visit https://www.allaboutcookies.org.

Please make sure to check in on our Privacy Policy periodically, as we may update this Privacy Policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal or regulatory reasons.  We will always ensure that the current date of the Privacy Policy also known as the “Effective Date” is prominently displayed at the very top of this Privacy Policy, so you know it’s the latest version.

DO NOT TRACK 

Do Not Track (DNT) is a privacy preference that users can set in certain web browsers. DNT is a way for users to inform website and services that they do not want certain information about their webpage visits collected over time and across websites or online services. 

We are committed to providing you with meaningful choices about the information collected on our website for third party purposes, and that is why we provide the opt-out links. However, we do not recognise or respond to browser-initiated DNT signals, as the Internet industry is currently still working toward defining exactly what DNT means, what it means to comply with DNT, and a common approach to responding to DNT.

OPTING OUT OF INFORMATION SHARING 

We understand and respect that not all users may want to allow us to share their information. If you do not want us to share your information, please contact us through the info@yourtinyhomeco.com and we will remove your information as soon as practicable. 

When contacting us, please clearly state your request, including your name, mailing address, email address and phone number. 

However, under the following circumstances, we may still be required to share your personal information: 

  1. if we are responding to court orders or legal process, or if we need to establish or exercise our legal rights or defend against legal claims. 
  2. If we believe it is necessary to share information in order to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, violations of our Terms and Conditions or as otherwise required by law. 
  3. If we believe it is necessary to restrict or inhibit any user from using any of our Site, including, without limitation, by means of “hacking” or defacing any portion thereof.

PHISHING OR FALSE EMAILS 

If you receive an unsolicited email that appears to be from us or one of our members that requests personal data (such as your credit card, login, or password), or that asks you to verify or confirm your account or other personal information by clicking on a link, that email was likely to have been sent by someone trying to unlawfully obtain your information, sometimes referred to as a “phisher” or “spoofer.” 

We do not ask for this type of information in an email. Do not provide the information or click on the link. 

Please contact us on the contact details provided on the website if you get an email like this. 

DATA BREACH NOTIFICATION

In the event of a data breach that is likely to result in serious harm to you, we will:

  1. Take immediate steps to contain and remedy the breach;
  2. Assess the breach in accordance with our data breach response plan;
  3. Notify affected individuals as soon as practicable, and no later than 72 hours after becoming aware of the breach where required by law;
  4. Notify the Office of the Australian Information Commissioner (OAIC) where required under the Notifiable Data Breaches (NDB) scheme;
  5. Where applicable, notify relevant EU supervisory authorities under GDPR requirements;
  6. Provide you with information about the breach including:
    1. A description of the data breach;
    2. The kind of information concerned;
    3. The steps we have taken or will take to address the breach;
    4. Recommendations on steps you can take to mitigate potential harm; and
    5. Our contact details so you can obtain further information.

If you believe there has been unauthorised access to or disclosure of your personal information held by us, please contact us immediately at info@yourtinyhomeco.com or on 0485 505 293.

CHANGES TO OUR PRIVACY POLICY 

This Privacy Policy may be updated from time to time. We will notify you of any material changes by:

  1. Posting a notice on our website;
  2. Updating the “Latest Update” date at the top of this policy; and/or
  3. Sending you an email notification (if you have provided us with your email address).

Previous Versions

VersionEffective DateSummary of Changes
1.07 November 2025Initial Privacy Policy

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

Your continued use of our website and services after any changes to this Privacy Policy constitutes your acceptance of such changes.

BREACH OF PRIVACY POLICY 

We reserve the right to terminate or suspend any account or delete certain contents from any profile or public domain within the ambit of this website if the said account or content is found to be in violation of our privacy policy. We sincerely request you to respect privacy and secrecy concerns of others. The jurisdiction of any breach or dispute shall be determined in accordance with the terms of use of the website