Skip to content

In-Store Loyalty Programs and Privacy Principles: How Big Business Uses Your Data

We recently explored how Amazon could use their customer’s data to move offline and open bricks and mortar stores. Below, we turn our attention to in-store loyalty programs and how retailers must comply with the Australian Privacy Principles when collecting their customers’ personal information.

What is a Loyalty Program?

Loosely speaking, a loyalty program as its name suggests is where a business cultivates loyalty by promising rewards to their returning customers. For example, the majority of airlines run frequent flyer programs, and most coffee shops offer a free drink on your tenth purchase. If you’re like me, your wallet is most likely bulging with loyalty cards!

What’s the Price?

There is, however, a trade-off when customers allow retailers to collect their personal information. Companies that collect your data through loyalty programs (i.e. Coles and Woolworths with their Fly Buys and Woolworths Card respectively) can market products to you based on your shopping preferences. Supermarkets use this information to decide what products and how much to stock in your area, and what specials to send you each week via email.

Continue reading this article below the form
Loading form

Australian Privacy Principles

With all this data collected, you might have some unanswered questions. What regulates the use of the data these businesses collect? In Australia, the Privacy Act 1998 (Cth) (Act) regulates data collection. In particular, the Australian Privacy Principles (APPs) contained in Schedule 1 of the Act sets out how organisations must deal with your data.

Under APP 1, organisations must be open and transparent about their management of customer’s personal information. This means that an organisation must disclose to its customer the reasons why they are collecting the information and its use. Businesses cannot bury this information in amongst complex terms and conditions. The information must be prominent so the average person can see and understand it. It follows that the more unusual or invasive the data use, the more transparent the organisation must make the details.

Part of transparency involves having an up to date and clearly written privacy policy available for all customers. Your policy should also include any dispute resolution procedures for an alleged breach. APP 2 also refers to the fact that an individual can deal with a company anonymously and gives people the option of dealing with a company using a pseudonym.

Key Takeaways

Undeniably, the marketing landscape is changing. Although we enjoy receiving discounts and our favourite stores tailoring their offerings to what we want, customers are increasingly more aware of their privacy. Ensure that you read the Privacy Policy and understand what data is collected, for what purposes and where it is stored. Also, look to see if you are consenting to a retailer passing on your personal information to a third party for promotional purposes.

If you are a business that collects personal information, take steps to have a clear and comprehensively drafted privacy policy. Importantly, if you have any questions about complying with the APPs and your in-store loyalty program, let our IT lawyers know on 1300 544 755.

Register for our free webinars

Ask an Employment Lawyer: Contracts, Performance and Navigating Dismissals

Online
Ask an employment lawyer your contract, performance and dismissal questions in our free webinar. Register today.
Register Now

Stop Chasing Unpaid Invoices: Payment Terms That Actually Work

Online
Stop chasing late payments with stronger terms and protections. Register for our free webinar.
Register Now

Managing Psychosocial Risks: Employer and Legal Counsel Responsibilities

Online
Protect your business by managing workplace psychosocial risks. Register for our free webinar.
Register Now

Franchisor Compliance Update: Code Obligations from November 2025

Online
Stay compliant with the new franchising updates from November 2025. Register for our free webinar.
Register Now
See more webinars >
Emma Heuston

Emma Heuston

Read all articles by Emma

About LegalVision

LegalVision is an innovative commercial law firm that provides businesses with affordable, unlimited and ongoing legal assistance through our membership. We operate in Australia, the United Kingdom and New Zealand.

Learn more

We’re an award-winning law firm

  • Award

    2025 Future of Legal Services Innovation Finalist - Legal Innovation Awards

  • Award

    2025 Employer of Choice - Australasian Lawyer

  • Award

    2024 Law Company of the Year Finalist - The Lawyer Awards

  • Award

    2024 Law Firm of the Year Finalist - Modern Law Private Client Awards

  • Award

    2022 Law Firm of the Year - Australasian Law Awards