This privacy policy explains how Performance Peptide Lab collects, uses, stores and discloses personal information when you access our website, create an account, place an order or otherwise interact with us.

Performance Peptide Lab is the entity responsible for the collection and handling of personal information under this policy.

We are committed to handling personal information in accordance with applicable privacy and data protection laws, including the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs), as well as other applicable laws in jurisdictions in which we operate.

By using our website or providing personal information to us, you acknowledge that you have read and understood this privacy policy.

1. The personal information we collect

Personal information is information that identifies you or could reasonably identify you.

Depending on how you interact with our website and services, we may collect the following categories of personal information:

  • Full name
  • Billing and shipping address
  • Email address
  • Telephone number
  • Company or institution name where provided
  • Order history and transaction details
  • Account login details where you create an account
  • Communications you send to us, including enquiries and support requests
  • Payment confirmation details for bank transfers or other payment methods
  • IP address and device identifiers
  • Browser type, operating system and usage information
  • Information collected through cookies and similar technologies

We do not store full credit card numbers on our servers. Where card payments are introduced or processed, they are handled by secure third-party payment providers.

2. How we collect personal information

We collect personal information:

  • Directly from you when you create an account, place an order, complete forms or contact us
  • Automatically when you access or use our website through cookies and analytics tools
  • From service providers who assist with payment processing, fraud screening, hosting, analytics or delivery services
  • From publicly available sources where necessary to comply with legal or regulatory obligations

If you choose not to provide certain personal information, we may be unable to process your order or provide requested services.

3. Why we collect and use personal information

We collect and use personal information for purposes including:

  • Processing and fulfilling orders
  • Arranging shipping and delivery
  • Communicating with you about your order or account
  • Processing payments and confirming transactions
  • Providing customer support
  • Improving website functionality and user experience
  • Maintaining internal records
  • Complying with legal and regulatory obligations
  • Detecting and preventing fraud, misuse or unauthorised activity
  • Enforcing our terms and conditions and other policies

Where required to comply with legal or regulatory requirements, we may conduct reasonable verification or screening processes in relation to orders.

We may also use your contact information to send you marketing communications about products or updates where permitted by law. All electronic marketing communications are issued in accordance with applicable marketing and communications laws, including the Spam Act 2003 (Cth) where applicable. You may opt out of marketing communications at any time by using the unsubscribe link included in the communication or by contacting us directly.

4. Lawful basis for processing

We collect and process personal information only where we have a lawful basis to do so. Depending on the circumstances, this may include:

  • Performance of a contract when you place an order or create an account
  • Compliance with legal or regulatory obligations
  • Legitimate business interests such as fraud prevention, operational security and service improvement
  • Your consent where required by law

Where processing is based on consent, you may withdraw that consent at any time, subject to legal or contractual limitations.

5. Compliance monitoring and fraud prevention

Due to the regulated nature of research compounds, we may use personal information to assess, monitor or review transactions for compliance with applicable laws and internal policies.

This may include:

  • Reviewing order details
  • Identifying unusual transaction patterns
  • Verifying contact or payment information
  • Assessing potential regulatory or fraud risks

Where required by law, we may disclose relevant information to regulatory authorities, law enforcement agencies or other authorised bodies.

6. Disclosure of personal information

We may disclose personal information to third parties where reasonably necessary for the purposes described in this privacy policy.

This may include disclosure to:

  • Website hosting providers
  • Payment processors and financial institutions
  • Delivery and logistics providers
  • IT support and cloud storage providers
  • Analytics and marketing service providers
  • Professional advisers such as accountants or legal advisers
  • Regulatory authorities or law enforcement agencies where required by law

We do not sell personal information.

Where we engage third-party service providers, we take reasonable steps to ensure they handle personal information in accordance with applicable privacy laws.

7. International data transfers

Personal information may be stored or processed outside Australia, including by service providers located in other jurisdictions.

Personal information may be stored or processed outside the country in which you are located.

Where personal information is transferred internationally, we take reasonable steps to ensure that appropriate safeguards are in place and that the information is handled in accordance with applicable privacy and data protection laws.

By using our website or providing your personal information, you acknowledge that international transfers may occur.

8. Automated decision making

We do not make decisions that produce legal or similarly significant effects based solely on automated processing of personal information.

Certain transactions may be subject to automated screening for fraud prevention, risk assessment or regulatory compliance purposes. These processes are designed to protect the integrity of our services and may be supplemented by human review where appropriate.

9. Cookies and analytics

Our website uses cookies and similar technologies to:

  • Enable core website functionality
  • Remember user preferences
  • Analyse website traffic and usage patterns
  • Improve performance and user experience
  • Support marketing and advertising activities

You can manage cookie preferences through your browser settings. Disabling cookies may affect certain website features.

We may use analytics providers to help us understand how visitors interact with our website. These tools collect information such as IP address, browser type, pages visited and time spent on pages. In some cases, analytics or advertising providers may collect information directly through cookies or tracking technologies in accordance with their own privacy policies.

10. Data security

We take reasonable steps to protect personal information from misuse, interference, loss and unauthorised access, modification or disclosure.

Security measures may include:

  • Secure server environments
  • Encryption of data in transit where appropriate
  • Restricted access to personal information
  • Internal policies and procedures governing data handling

However, no method of electronic transmission or storage is completely secure. While we take reasonable precautions, we cannot guarantee absolute security.

11. Data breach response

We maintain internal procedures to respond to suspected data breaches in accordance with applicable law.

If we become aware of unauthorised access, disclosure or loss of personal information that is likely to result in serious harm, we will take reasonable steps to:

  • Contain and assess the incident
  • Notify affected individuals where required
  • Notify relevant regulatory authorities where required by law

We regularly review our technical and organisational safeguards to reduce the risk of unauthorised access or disclosure.

12. Data retention

We retain personal information only for as long as necessary to fulfil the purposes described in this privacy policy, including to comply with legal, accounting and regulatory obligations.

In general:

  • Financial and transaction records may be retained for at least seven (7) years for taxation and accounting compliance
  • Account information may be retained while your account remains active and for a reasonable period thereafter
  • Information relating to disputes, investigations or compliance reviews may be retained as required to protect our legal rights

When personal information is no longer required, we take reasonable steps to securely destroy or de-identify it.

13. Identity verification and account integrity

Where you request access, correction or deletion of personal information, we may require reasonable verification of your identity before processing the request.

This may include confirming account credentials, verifying contact details or requesting additional documentation where appropriate.

We reserve the right to refuse requests that are manifestly unfounded, excessive or inconsistent with applicable legal obligations.

14. Access and correction

You have the right to request access to the personal information we hold about you and to request correction of inaccurate, incomplete or outdated information.

To request access or correction, please contact us using the details provided below. We may require verification of your identity before processing your request.

In certain circumstances permitted by law, we may decline a request. If so, we will provide reasons where required.

15. Complaints

If you believe we have handled your personal information in a manner that does not comply with applicable privacy laws, you may contact us to lodge a complaint.

We will investigate and respond within a reasonable timeframe.

If you are not satisfied with our response and you are located in Australia, you may lodge a complaint with the Office of the Australian Information Commissioner.

16. Children’s privacy

Our products and services are intended for adults. We do not knowingly collect personal information from children under the age of 18.

If we become aware that personal information has been collected from a child without appropriate authorisation, we will take reasonable steps to delete that information.

17. Business transfers

In the event of a merger, acquisition, restructuring or sale of assets, personal information may be transferred as part of that transaction, subject to applicable privacy laws.

18. Changes to this privacy policy

We may update this privacy policy from time to time to reflect changes in our practices, legal requirements or operational processes.

The updated version will be published on our website with the revised effective date. Continued use of the website constitutes acceptance of the updated policy.

19. Contact us

If you have any questions about this privacy policy, wish to request access or correction of your personal information or wish to lodge a complaint, please contact us using the contact details published on our website.