Privacy Policy

Helmet2Shade (”We”, “us” and “our”) ABN: 44 864 933 429 is bound by the Privacy Act 1988 (Cth) (Privacy Act) and the Australian Privacy Principles (APPs). This policy explains how and why we collect, use, hold and disclose your personal information.

As provided in our website’s Terms and Conditions, you consent to us collecting, storing, using and disclosing your personal information on the terms of this, our Privacy Policy.


Personal information is information or an opinion about an identified individual, or an individual who is reasonably identifiable whether the information or opinion is true or not and whether the information or opinion is recorded in a material form or not.


We may collect your personal information in numerous ways. For example, when you email us directly or when you submit a contact form on our website, speak with us on the telephone, engage with us on social media, and when you visit our website, including our online store.

The personal information that we collect is relevant to way you engage with us, or contact us. For example, we may collect your name and email address when you contact us, and your delivery address and phone number when you purchase Helmet2Shade products (Products) from the online store on our website.

Further, we may collect information about how you use our website, including with Google Analytics, which may include your location data, IP address, the browser you are using, the duration of the time you spent on our website, your operating system and the type of device you are using to access our website.

You may opt out of being tracked by Google Analytics. Visit this URL to find out how


This website uses cookies which are tiny files that our website places and saves on your computer or device. Some cookies are designed to enhance your user experience, including by remembering your preferences. Other cookies we may use include those that help present information or enhance the performance of our website.  You may reject these cookies through your browser, however if you do so, it may restrict some of the website’s functionality.

Changing Cookie Settings

You can change your cookie settings and control cookies through the settings of most web browsers. Click the links below to learn how to do so on each of the web browsers listed below:

More About Cookies

You can find out more about cookies, including which ones have been set, by visiting either of these websites: or


We collect your personal information directly from you when you communicate or interact with us, including when we:

  • process your Product purchase;
  • arrange delivery of the Products that you order from our online store (Product Order) to your delivery address;
  • provide you customer service and communicate with you;
  • comply with any law that we are subject to, including laws for record-keeping or tax purposes;
  • make future orders more convenient, by allowing you to save your information in an account area of our online store (User Account);
  • recommend Products to you or inform you of our online store promotions; and
  • inform you of updates to our Terms and Conditions and this Privacy Policy.

While there is no obligation to provide us any personal information, if you choose not to, it may prevent you from purchasing Products or communicating with you.


We store personal information in IT systems that we control and/or manage.  We may also cause to store information on IT systems of our third-party providers.  For example, Stripe will store your personal information when it processes payment for a Product from our online store. We may also store personal information on paper files.

Regardless of the method we use to store your personal information, or cause to store your information on third-party systems, we will take reasonable steps to ensure that your personal information is protected from unauthorised misuse or disclosure, loss or modification.

These processes and systems include:

  • A secure socket layer (SSL) certificate installed on our web hosting server that encrypts your communications with our website.
  • A secure storage system for all paper file records.
  • A secure information handling process.
  • Monitoring and regularly reviewing our practise against our own policies and against industry best practice
  • Our policy to engage only through professional recommendation before engaging third party services that store personal information.

Additionally, we only store your information for as long as its reasonably required for the purposes for which it was collected or for any secondary purpose that is permitted under the APPs.  After we no longer require your personal information, we will destroy, delete, or deidentify that information.


We may disclose personal information to contractors where we require them to provide services to us.  For example, the website design company we use may have access to your personal information when performing website development or maintenance services. Similarly, the web hosting company that we use will store your personal information when you save your personal information in your User Account. We may also share your personal information with our delivery service providers, so they can deliver your any Product(s) that you have ordered.

Further, we may disclose your personal information to third parties if:

  • we are required or authorised by law to do so;
  • it can be reasonably inferred from the circumstances that you consent; or
  • we are otherwise permitted to disclose, hold, or use personal information pursuant to the Privacy Act.

You agree that, if there is a change to the ownership or control of our business, or we change our business structure, we may transfer your personal information to that entity.


We may disclose your personal information to third parties that are operated outside Australia when necessary.  For example, the following service providers that we use, and who we may send your personal information to, are located in the United States and may also have a presence in Australia:

  • Stripe
  • PayPal
  • Google (for analytics)
  • Xero

In any case, we will only disclose your personal information to overseas entities who are reputable, and those who we believe will respect your rights to privacy, and whose local laws are comparable to the Privacy Act in Australia.

Notwithstanding, you agree to review the privacy policies of all third-party services, particularly before you purchase a Product from us.


When you provide us your personal information, you agree that we may send you marketing material that promotes our Products that we believe you may be interested in.

While you agree to receive marketing communication, you may withdraw your consent anytime. You can withdraw your consent by clicking the unsubscribe link in the footer of marketing emails, or by contacting us directly to inform us that you no longer wish to receive marketing communication. We will respond to your requests as soon as practicable.


You may ask us to correct your personal information that we hold by contacting us using our contact details below. If you have created a User Account, you may correct your personal information within the User Account area yourself.  However, if you require, we will also assist you in respect of accessing or correcting your personal information in the User Account area.

There is no charge to you to access or correct to your personal information, nor is there a charge for us to assist you.

We agree to take all reasonable steps to answer any requests that you have, or provide any assistance that you require, and we agree to do as soon as practicable.


Citizens of the European Union (EU) have privacy rights as data subjects under the EU’s General Data Protection Regulation (GDPR), which are similar to rights of citizens of the United Kingdom under the Data Protection Act 2018 (DPA).

Under the GDPR, you have the right to:

(a) access your data;
(b)  have your data deleted or corrected if it is inaccurate;
(c)  object to your data being processed and to restrict its processing;
(d)  withdraw consent to your data being processed;
(e)  have your data provided in a standard format so that it can be transferred elsewhere; and
(f)  not be subject to a decision based solely on automated processing.

(Data Subject Rights)

Helmet2Shade have systems to deal with your Data Subject Rights.  You may request us to carry out any of your Data Subject Rights by contacting us by using the details in the contact section of this Privacy Policy. Our response will depend on whether we are a data controller or data processor, for the purposes of the GDPR.

Notwithstanding, we take reasonable steps to ensure any third-party data controllers that we use are GDPR compliant, particularly as data controllers, themselves.

If you make a request in relation to Data Subject Rights, or other rights under the DPA, GDPR, or Privacy Act, we may require you to confirm your identity before dealing with any data or personal information that we hold. You agree to assist us with verifying your identity in such circumstances.

Although we will take all reasonable steps to assist you in relation to GDPR and DPA, any requests are subject to Helmet2Shade’s own legal rights and obligations. If Helmet2Shade cannot assist you with your request, we will provide you with reasons why, as soon as practicable.

If you do not agree with the way we have processed your request in relation to Data Subject Rights, you have the right to make a complaint to the Data Protection Authority in your EU member country.  The following URL provides the steps and information required for you to make a privacy complaint if you think your rights have not been respected:

Similarly, UK citizens may make a complaint to the Information Commissioner’s Office.

Additionally, if we experience a data breach and your personal information may be compromised and where reporting is required within 72 hours, we will contact you to inform you of such an incident.


If you have a complaint about the way in which we have handled any privacy issue, including your request for access or correction of your personal information, you should contact us by using our contact details, below.

We will consider your complaint and determine whether it requires further investigation. We will notify you of the outcome of this investigation and any subsequent internal investigation.

If you remain unsatisfied with the way in which we have handled a privacy issue, you may approach an independent advisor or contact the Office of the Australian Information Commissioner (OAIC) ( for guidance on alternative courses of action which may be available.


We may change this Privacy Policy from time to time for a variety of reasons. For example, if the law changes, if we change the way we process, hold, or use personal information, or if we change part of our Terms and Conditions that affects this Privacy Policy or your rights to privacy.

If we make changes to this Privacy Policy, we will publish it on our website on this page. You therefore agree to visit this page from time to time to monitor it for any changes that we make.


We are committed to assisting you with your privacy concerns and questions. For any questions, comments, or complaints in respect of this Privacy Policy or your personal information, please contact us at:

PO Box 474
Coolangatta QLD 4225