Privacy Settings

Privacy settings control how your business collects, stores, and uses customer data. Configuring these correctly helps you meet privacy obligations and build customer trust.

Understanding privacy in tourism

Why privacy matters

Tourism businesses collect sensitive information:

Contact details
Payment information
Booking history
Special requirements (dietary, medical)
Photos and identification

Protecting this data is both a legal requirement and good business practice.

Privacy obligations

Australian businesses must comply with:

Privacy Act 1988 — governs personal information handling
Australian Privacy Principles (APPs) — 13 principles for privacy
State legislation — additional requirements in some states
Payment card standards — PCI-DSS for card handling

Accessing privacy settings

Go to Settings from the main menu
Look for Privacy or Data & Privacy
You'll see your privacy configuration options

Customer data settings

What data you collect

Review and configure what information you gather:

Required information:

Name
Email address
Phone number

Optional information:

Physical address
Date of birth
Emergency contacts
Dietary requirements
Medical conditions
Marketing preferences

Configuring data collection

Go to Privacy Settings
Review each data field
Mark fields as:

- Required — must be provided - Optional — customer can choose - Not collected — field is hidden

Save your changes

Minimising data collection

Only collect information you actually need:

Fewer fields = easier booking process
Less data = less risk
Purpose = be clear why you need each piece

Privacy policy

What is a privacy policy?

A privacy policy tells customers:

What information you collect
How you use it
How you protect it
Their rights regarding their data
How to contact you with concerns

Setting up your privacy policy

Go to Privacy Settings
Find Privacy Policy
Enter your policy text or link to an external page
Save your changes

Privacy policy essentials

Include these elements:

Collection

We collect personal information including your name, contact details, and booking preferences when you make a reservation or enquiry.

Use

We use your information to process bookings, communicate with you, and improve our services.

Disclosure

We may share information with third parties who help us provide services (e.g., payment processors, tour suppliers) but only as necessary.

Security

We protect your information using industry-standard security measures.

Access and correction

You can request access to your information or ask us to correct it by contacting us.

Contact

For privacy enquiries, contact [your details].

Data retention

How long to keep data

Configure how long customer data is stored:

Active customers — while they remain customers
Inactive customers — 2-7 years typically
Marketing data — until unsubscribed
Financial records — 7 years (tax requirement)

Setting retention periods

Go to Privacy Settings
Find Data Retention
Set periods for different data types
Save your settings

Automatic data cleanup

Launchpad can automatically remove old data:

Enable automatic data cleanup
Set the retention period
Choose what happens (archive vs delete)
Review before enabling

Customer rights

Access requests

Customers can request their data:

Receive a request from the customer
Go to CRM and find their record
Export their data
Provide within 30 days

Correction requests

When customers want to update their information:

Find them in your CRM
Update the relevant fields
Confirm the changes

Deletion requests

When customers want their data deleted:

Consider any legal retention requirements
Review if deletion is possible
Remove data that can be deleted
Anonymise data that must be retained

Marketing consent

Getting consent

Before sending marketing emails:

Collect explicit opt-in consent
Record when and how consent was given
Make it easy to understand what they're signing up for

Managing preferences

Give customers control:

Easy unsubscribe in every email
Preference centre to choose topics
Option to opt out of all marketing

Configuring marketing consent

Go to Privacy Settings
Find Marketing Consent
Configure consent collection during booking
Set up preference management
Save your settings

Third-party data sharing

When you share data

You might share customer data with:

Payment processors (Stripe)
Email services
Channel managers
Analytics tools
Partner operators

Configuring third-party settings

Review which integrations access data
Ensure each has appropriate privacy policies
Only share necessary information
Document data sharing in your privacy policy

Security measures

Data protection in Launchpad

Launchpad protects your data with:

Encryption in transit (HTTPS)
Encryption at rest
Access controls and permissions
Regular security audits
Secure payment processing

Your responsibilities

To maintain security:

Use strong passwords
Enable two-factor authentication
Limit team access appropriately
Train staff on privacy
Report concerns promptly

Breach procedures

If a data breach occurs

Contain the breach
Assess what data was affected
Notify affected individuals if required
Report to the OAIC if serious
Review and improve security

Launchpad's role

If we detect a breach affecting your data:

We notify you promptly
We contain the issue
We support your response
We review our security

Compliance documentation

Keeping records

Maintain records of:

Privacy policies (all versions)
Consent records
Access/deletion requests
Breach incidents
Staff training

Regular audits

Review privacy practices periodically:

Check data collection is still minimal
Verify retention periods are followed
Confirm consent records are current
Update policies if needed

Good privacy practices protect your customers and your business reputation.