Privacy policy

Effective Date: 3 June 2026

Last Updated: 3 June 2026

At I Heato ("we," "us," or "our"), protecting your privacy and managing your personal information with care is a fundamental commitment. This Privacy Policy outlines how we collect, utilize, share, and safeguard your personal details when you access our storefront or purchase our custom-printed apparel and digital-print garments.

Our practices align with the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth). By interacting with our digital storefront, you consent to the data collection and processing methods described herein.

1. Categories of Personal Information We Collect

In accordance with Australian legal standards, "personal information" refers to any data that identifies you or can reasonably determine your identity. We do not harvest anonymous or fully de-identified metrics.

Depending on your interactions with our store, we may collect:

  • Identity & Contact Details: Your full name, billing coordinates, delivery address, email contact, and telephone number.

  • Account Credentials: Created usernames, encrypted passwords, and individual account preferences (if you establish a registered profile).

  • Purchase & Transaction Records: Information regarding garments browsed, items added to cart, orders fulfilled, returns processed, or historical transaction logs.

  • Customer Correspondence: Records of helpdesk inquiries, emails, feedback forms, or service requests sent to our support channels.

  • Technical & Device Metrics: IP addresses, browser specifications, operating system identifiers, and behavioural patterns indicating how you navigate our storefront.

We do not harvest "sensitive information" (such as health data, political opinions, or biological traits), nor do we employ automated profiling systems that generate legally binding consequences for our clients.

2. Financial Data Excluded from Collection

To guarantee maximum transaction security, we do not capture, log, or house your credit card, debit card, or banking details. All monetary transactions are routed through securely encrypted external gateways managed exclusively by I Heato. Your payment infrastructure is guarded by their independent data architecture. For comprehensive insights into financial security, please consult the official I Heato Privacy Statement.

3. Channels of Data Collection

We gather personal details through three primary avenues:

  1. Direct Submissions: Voluntarily supplied when you complete a checkout transaction, initiate an account, or contact our customer care team.

  2. Automated Technologies: Collected implicitly via cookies, pixels, and related tracking scripts as you browse our digital storefront.

  3. External Logistics & Service Partners: Information received from payment facilitators (to verify successful payments) or postal services regarding dispatch updates.

4. Direct Applications of Your Data

We employ your personal records specifically for operational purposes, strictly bounded by the following tasks:

  • Orchestrating, manufacturing, and dispatching your custom-printed and standard apparel orders.

  • Managing customer service interactions, order updates, transit notifications, and return requests.

  • Resolving platform optimization issues and refining the user shopping experience.

  • Intercepting fraudulent activity and fortifying store-wide security frameworks.

  • Meeting domestic and international statutory reporting obligations.

We maintain a strict stance against selling your personal records to third-party brokers.

5. Authorized Disclosure of Personal Information

Where necessary to execute our retail obligations, we distribute relevant components of your information to select recipients:

Recipient Category Functional Purpose
Payment Processors To complete secure financial verification (e.g., I Heato).
Logistics & Freight Providers To fulfill order deliveries within Australia (e.g., Australia Post or regional couriers).
IT & Infrastructure Hosts To supply underlying website hosting, cloud data safety, email relays, and analytics tools.
Regulatory & Legal Entities Shared only when mandated by statutory law or to protect our legitimate business interests.

We do not lease or expose your private files to third parties for independent marketing campaigns or cross-context tracking.

6. Your Rights Under Australian Consumer and Privacy Law

Under the Privacy Act 1988 (Cth), Australian residents possess robust entitlements regarding their personal data, which we fully respect and facilitate:

  • Right to Access: You are entitled to request an official transcript of all personal information we currently hold regarding your profile.

  • Right to Correction: If any element of your saved data is outdated, incomplete, or structurally inaccurate, you may demand an immediate update.

  • Right to Erasure / Account Closure: You can request the total deletion of your active store profile, subject to statutory tax or financial tracking minimum timelines.

To exercise any of these options, please contact us at support@iheato.com with the phrase "Privacy Compliance Request" in your communication header. We will authenticate your identity before processing the request within 30 days as prescribed under Australian frameworks.

7. Global Privacy Controls & Preference Signals

Our infrastructure recognizes and processes automated browser privacy indicators, including Global Privacy Control (GPC) signals. When a verified preference signal is detected, our system limits background tracking parameters to respect your choice seamlessly.

8. Transparency and Ethical Design

We completely reject "dark patterns" or deceptive online interface layouts. We ensure that:

  • Opt-out avenues are designed with equal prominence to opt-in preferences.

  • Consent prompts use accessible, non-technical English.

  • Retracting previously granted analytical consent is as straightforward as providing it.

9. External Connections

Our digital storefront houses pathways linking to third-party digital services (such as secure external payment platforms). We do not control the data-handling policies of outside ecosystems and advise users to inspect their respective individual privacy manuals.

10. Protection of Minors

Our product lines and targeted digital placements are curated strictly for individuals aged 16 and above. We do not intentionally harvest data from children under legal age limits. If you suspect a minor has disclosed personal credentials to our server, notify our team immediately so we can delete the records.

11. Security Frameworks & Data Retention Schedules

Data Preservation: We employ industry-vetted administrative and technical defenses to wrap your files in security layers. However, users acknowledge that zero digital communication can guarantee absolute safety against sophisticated breaches.

Retention Timelines: We delete or completely anonymize private details once their active business utility expires or statutory minimum periods pass:

  • Transaction & Purchase Files: Retained for 5 years to satisfy international taxation and cross-border customs reporting.

  • Customer Support Logs: Archived for 2 years to ensure consistency in service delivery.

  • User Account Configurations: Kept active until a deletion request is formally submitted.

  • Web Traffic Metrics: Expired automatically after 12 months.

12. Cross-Border Data Movements

To manage our global custom manufacturing workflow, your collected information may be processed and transferred through:

  • I Heato (Our International Fulfilment and Production Base)

  • Our central data nodes managing commercial distribution.

Regardless of physical server locations, we enforce strict technological agreements to ensure your records remain shielded under protections equivalent to Australian privacy regulations.

13. Policy Adjustments

We reserve the right to modify this Privacy Policy to reflect regulatory amendments. Updated iterations will go live directly on this URL with an adjusted revision date. For significant procedural shifts, a visible notice will be pinned to our storefront or distributed to registered accounts via email.

14. Integrated Operational Policies

To ensure complete clarity regarding your customer journey, we recommend reviewing this document alongside our core consumer frameworks:

  • Returns & Refund Policy: Detailing our 14-day criteria for unprinted inventory, our international hub, and standard exclusions on bespoke products.

  • Shipping Policy: Highlighting estimated distribution speeds across Australian metro and regional territories, tracking tools, and freight costs.

15. Contact and Dispute Resolution

For general privacy inquiries, data modification requests, or to register a complaint regarding our data handling methods, please contact us:

  • Digital Storefront: I Heato

  • Inquiry Email: support@iheato.com

  • Direct Line: https://www.iheato.com/

  • Corporate Entity: Shangrao Hewu Garments Co., Ltd.

  • Business Registration No: 91361124MAK8PDEE6Q

  • Physical Address:
    Yanshan County, Shangrao City
    Jiangxi Province, 334500
    China

  • Operational Hours: Monday through Friday, 9:00 AM – 5:00 PM (AEST / GMT+10:00)