Privacy Policy

Ready for China ("we," "our," or "us") is committed to protecting your privacy and complying with the Privacy Act 1988 (Cth) and Australian Privacy Principles (APPs). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our payment testing services.

1. Information We Collect

1.1 Information We Do Not Collect

We do not collect, store, or process any personal data through our website. We have designed our service to be privacy-first, minimizing data collection to provide you with a secure testing experience.

1.2 Contact Information

The only personal information we collect is when you voluntarily contact us through our support channels. This may include:

• Your email address
• Your name (if provided)
• Any information you choose to include in your message
• Technical information related to your inquiry

1.3 Payment Information

We do not collect or store any payment information. All payment processing for test transactions is handled exclusively by our third-party payment processors: Stripe, Alipay, and WeChat Pay.

2. Cross-Border Data Transfers (APP 8 Compliance)

2.1 Countries Where Data May Be Transferred

2.2 Our Accountability Under APP 8

Under the Privacy Act 1988, we remain accountable for the protection of your personal information even when it is handled by overseas recipients. We:

• Only transfer data to reputable payment processors with strong privacy protections
• Maintain contractual obligations with overseas recipients regarding data handling
• Monitor compliance with Australian privacy standards
• Take reasonable steps to ensure overseas recipients handle data appropriately
• Remain liable for any breaches by overseas recipients

2.3 Privacy Laws in Recipient Countries

The countries listed above may not have privacy laws substantially similar to Australian privacy laws. However, our payment processors maintain global privacy standards and compliance certifications including:

• GDPR compliance (European standards)
• PCI DSS Level 1 certification
• SOC 2 Type II compliance
• ISO 27001 security standards

3. How We Use Your Information

3.1 Contact Information Usage

Information collected when you contact us is used solely to:

• Respond to your inquiries
• Provide customer support
• Improve our services based on your feedback
• Comply with legal obligations

3.2 Data Retention

• Contact information is automatically deleted after 12 months
• Upon request, we will delete your contact information within 10 business days
• We do not use contact information for marketing purposes
• Records may be retained longer if required by Australian law (e.g., AUSTRAC requirements)

4. Third-Party Payment Processors

When you use our testing service, you will be redirected to third-party payment processors. Your payment information is collected and processed directly by:

5. Cookies and Tracking Technologies

Our website uses minimal cookies necessary for basic functionality. We use:

• Essential Cookies: Required for payment processing and security
• Functional Cookies: Remember your payment method preferences

You can disable non-essential cookies through your browser settings. However, disabling essential cookies may affect website functionality.

6. Your Rights Under Australian Privacy Law

6.1 Individual Rights (Privacy Act 1988)

Under Australian privacy law, you have the following rights:

• Right of Access (APP 12): Request a copy of the personal information we hold about you
• Right to Correction (APP 13): Request correction of inaccurate personal information
• Right to Complaint: Lodge a complaint about our handling of your personal information
• Right to Request Deletion: Request deletion of your personal information (subject to legal requirements)

6.2 GDPR Rights (EU Users)

If you are located in the European Union, you also have these additional rights:

• Right to Data Portability: Request transfer of your data to another service
• Right to Object: Object to our processing of your personal data
• Right to Restriction: Request restriction of processing in certain circumstances

6.3 Exercising Your Rights

To exercise any of these rights, contact us using the information below. We will respond to your request within the timeframes required by law (generally 30 days for Australian requests, one month for GDPR requests).

7. Data Security

We implement appropriate technical and organizational security measures to protect your information against unauthorized access, alteration, disclosure, or destruction:

• TLS 1.2 encryption for all data transmissions
• Regular security vulnerability assessments
• Access controls and authentication measures
• PCI DSS Level 1 compliance standards
• Data breach notification procedures compliant with Australian law

8. Data Breach Notification

In accordance with the Privacy Act 1988 and Notifiable Data Breaches scheme:

• We will notify the Office of the Australian Information Commissioner (OAIC) within 72 hours of becoming aware of an eligible data breach
• We will notify affected individuals if the breach is likely to result in serious harm
• We maintain incident response procedures to minimize breach impact

9. Updates to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. For significant changes affecting cross-border data transfers, we will provide additional notice.

10. Contact Information & Complaints