Privacy Policy

This document describes the Matthew Costin – Test & Tag Privacy Policy.

Version 2.0 Last Updated 20/07/2025

Matthew Costin – Test & Tag is committed to supporting the ‘National Privacy Principles for the Fair Handling of Personal Information’ set by The Office of the Privacy Commissioner. These principles define clear standards for the collection, access, storage and use of personal information which we obtain as part of our business operations.

Who we are
Matthew Costin – Test & Tag
ABN: 44 743 426 765
Phone Number: +61 3 9029 3198
Our website address is: https://matthewcostin.com.au
Email Address: office@matthewcostin.com.au

What personal data we collect and why we collect it

The Information We Collect
We lawfully collect personal information that is necessary for our business to function. The information we collect and hold will depend upon the products and services you request from us and may include:

Information you provide us when you purchase goods or services including over the phone or internet transactions. This information will include your name, address and contact details.
Information derived from communications between us and you.

The use of the facilities and services available through our website will determine the amount and type of information we collect. The only personal information we collect when you use our website is what you tell us about yourself, for example, by completing an online form when you request product information, or when you send us email we will record your mail address.

How We Use Your Information
We use the information we collect for the purpose disclosed at the time of collection, or otherwise as set out in this Privacy Statement. We will not use your personal information for any other purpose without first seeking your consent, unless authorised or required by law. Generally we will only use and disclose your personal information:

To establish and maintain your relationship as a customer of Matthew Costin – Test & Tag.
To provide the products and services you have requested from Matthew Costin – Test & Tag.
To administer and manage those products and services.

For direct marketing by email, specials on products or services you have shown interest in. If we contact you in this way without obtaining your prior consent, we will provide you with the opportunity to decline any further marketing communications. If you at any time receive any communication from Matthew Costin – Test & Tag which you would not like to receive, please contact us and we will remove your name from our mailing list.

Your Personal Information
In most cases, you can gain access to the personal information that Matthew Costin – Test & Tag holds about you, subject to some exceptions allowed by law.
If you would like to check or amend your contact details, please contact us. We will deal with all requests for access to personal information as quickly as possible.

Information provided to access our Website, Newsletter, Support Centre/Desk and Online Chat/Email, will be held in our system for the purpose of fulfilling your enquiry and will remain on our system. You may request that this information be deleted at the conclusion of your enquiry, This does not include any data we are obliged to keep for administrative, legal, or security purposes.

We may require payment for our costs of retrieving and supplying you with the information, We will let you know if costs apply, before retrieving and supplying you with the information.

Comments made on our website
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymised string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service Privacy Policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media
If you upload images to our website, example via our contact form, you should avoid uploading images with embedded location data (EXIF GPS) included.

Contact forms
Visitors using our contact forms may be checked through an automated spam detection service. The contact form content is then sent to our systems for processing.


Cookies
If you leave a comment on our site you may opt in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Analytics
Analytics services are on this website, this holds data on your visits our websites which we use StatCounter. We solely use it to determine whether you are a first-time or returning visitor on each website and to estimate your accumulated unique visits per site. No personal information is stored in the cookie.

Who we share your data with
We do not share any data unless we are compelled by law or a warrant.

If WorkSafe, a government department or Insurance Organization contact us for a copy of a report, we will send it to them and will not be required to tell you of this if requested by them not to inform you of this, otherwise we will inform you that a report has been requested and sent to them.

How long we retain your data
If you leave a comment on our website, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Unless requested by our customer to delete there information from our systems, we may retained data both electronically & hard-copy documents indefinitely when it comes to customers contacting us and work order information including reports that have been sent to our customers subject to some exceptions allowed by law.

What rights you have over your data
If you have an account on our website or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data
Visitor using our contact forms or leaving comments may be checked through an automated spam detection service.
As we use several online systems your information may be held on servers outside of Australia.

How we protect your data

How we protect your data and security
Matthew Costin – Test & Tag will take all reasonable steps to keep secure any personal information which we hold and to keep this information accurate and up to date. Personal information is stored on a secure server or secure files.

To further protect security of data, we use two factor authentications on systems and websites that have this security available.

Our Website, Support Centre and Online Chat are SSL Certificated for enhanced security for the transmission of information. The Internet is not always a secure method of transmitting information. Accordingly, Matthew Costin cannot accept responsibility for the security of information you send to, or receive from us over the Internet or for any unauthorised access or use of that information.

Visitors to our site and other services via our site may be checked through an automated spam detection service, where you are required to show that you are not a robot or spam bot.

We never store credit card information on our servers or website, we securely submit credit card information to our payment processor for processing your payment.

Please also see our Security Policy on our Website https://matthewcostin.com.au/contact/terms-conditions-and-policys/security-policy/

What data breach procedures we have in place
If there ever was to be a data breach, we would inform our customers via email or phone depending on the details we hold on file for the customers whose data has been breach. This would include past customers.

We would also report the data breach to the relevant government department, including Victoria police and/or the Australian Federal Police.

Additional Information
What third parties we receive data from
None.

What automated decision making and/or profiling we do with user data

Cloudflare Turnstile
We use Cloudflare Turnstile on our website to help prevent bots and automated software from abusing our forms, sign-ups, or other interactive elements. This service is designed to be privacy-focused and does not collect sensitive personal information.

Data Collection and Usage
Cloudflare Turnstile may collect certain data when you interact with the CAPTCHA challenge. This data is used solely for the purpose of verifying that a user is human and not a bot. The types of data that may be collected include:

• IP address: Used to assess whether the request is coming from a legitimate source.
• Browser information: Such as browser type, operating system, and user-agent string.
• Device information: Information related to your device, including screen size and device type, to help prevent fraudulent access.
• JavaScript events: Information related to your interaction with the CAPTCHA interface.

The data collected by Cloudflare Turnstile is not shared with third parties unless required by law or to support security measures. For more details on how Cloudflare handles data, please refer to Cloudflare’s Privacy Policy.
https://www.cloudflare.com/privacypolicy/

Data Retention
Cloudflare Turnstile does not retain personal data for longer than necessary for the purposes of the CAPTCHA validation. The data is processed in real-time and is not stored long-term on their servers.

Your Rights
As a user, you have the right to inquire about the data we collect through Cloudflare Turnstile and request deletion of any data in accordance with applicable data protection laws (such as GDPR). Please see our “Data Subject Rights” section below for more information on Cloudflare’s Privacy Policy. https://www.cloudflare.com/privacypolicy/

Industry regulatory disclosure requirements
None.

Changes To This Privacy Policy
It may be necessary for us to review and revise our Privacy Policy from time to time. An amended version will be posted on our website at www.matthewcostin.com.au . We suggest that you visit our website regularly to keep up to date with any changes.

Credit And Invoices
Credit information for accounts overdue may be disclosed to a credit reporting agency.

If Invoices are not paid, we reserve the right to refer your overdue account to a Collections Agency for debt recovery purposes; If we do, we reserve the right to pass your contact detail and any details on we hold on the work order ticket or any other information we believe will assist to recover the funds.

Contact Us
If you would like any further information, or have any queries, problems or complaints in relation to this Privacy Policy or our information handling practices in general, please contact us on privacy@matthewcostin.com.au

If you have any questions about our Privacy Policy, please contact our team via our contact page.