You should list how this information will be used, for example, you will be using customers’ email addresses to email them new class details or for marketing other opportunities to them. You should also include details of any third parties to whom you may be providing their personal information.
Sensitive information is a sub-set of personal information that is given a higher level of protection under the Australian Privacy Principles. As a yoga studio, it is likely that you will be collecting sensitive information.
Some of the types of sensitive information that you may collect includes health information, such as injuries and ailments, their weight and other types of health information. You may also be collecting sensitive information that relates to religious or philosophical beliefs, as this may be addressed as a part of the yoga services you are providing. Your yoga studio may also subscribe to spiritual practices which may be reflected in the personal information you keep about clients.
You should set out when this information will be disclosed, for example, will any of this information be disclosed to third parties, or will it only be disclosed when required for by law?
Rights under the Privacy Act
Each customer and visitor to your website should have access to their personal information if requested, and under certain circumstances set out in the Privacy Act 1988 (Cth). Depending on the complicated nature of retrieving the information, you may be able to charge fees for its retrieval.