Privacy & Cookies Policy

Dreamtime Art Creative Consultancy
Last updated: 4 September 2025

1) Who we are and how this policy applies

Dreamtime Art Creative Consultancy (“Dreamtime”, “Dreamtime Art”, “we”, “us”, “our”) respects your privacy and is committed to protecting your personal information. This Policy explains how we collect, use, disclose and protect personal information when you interact with our website dreamtimeart.com.au (the “Site”), our social media, and our services (together, the “Services”).

By using our Site or providing personal information to us, you agree to this Policy.

Contact:
Email: admin@dreamtimeart.com.au
Website: https://dreamtimeart.com.au
Postal address: PO Box 7333, Point Cook VIC 3030

2) Key definitions

  • Personal information: Information or an opinion about an identified individual or reasonably identifiable individual (Australian Privacy Principles).
  • Sensitive information: Includes information about racial or ethnic origin, religious beliefs, health information, etc.
  • GDPR terms: For EU/UK users, Dreamtime is a “controller” when deciding why/how personal data is processed, and may act as a “processor” for certain client-directed activities.

3) The information we collect

We collect and process the following categories:

  • A. Contact & identity data – name, email, phone, organisation, job title, postal address.
  • B. Transaction & account data – proposals, statements of work, invoices, payment confirmations (payment card details are handled by our payment provider and not stored by us).
  • C. Project & stakeholder data – briefing details, approvals logs, attribution lines, licensing terms, stakeholder lists, meeting notes, communications preferences.
  • D. Artist & talent data – bios, portfolios, availability, engagement history, contractual details, clearances/consents, attribution preferences.
  • E. Community & cultural engagement data – details relevant to co-design, approvals, acknowledgements and usage boundaries (see Section 10).
  • F. Technical & usage data – IP address, device/browser type, pages visited, referral sources, cookies and similar technologies.
  • G. Marketing preferences – newsletter subscriptions, event RSVPs, content downloads.
  • H. Recruitment/applicant data – CVs, cover letters, referees, right-to-work information (where applicable).
  • I. Photos/audio/film – where you participate in or attend our events or shoots and consent is given/obtained.

We do not seek to collect sensitive information unless it is strictly necessary and you have given informed consent (or another lawful basis applies), or we are required/authorised by law.

4) How we collect information

  • Directly from you – web forms, emails, phone calls, workshops, events, surveys, contracting and project delivery.
  • From your organisation – where your employer engages us and lists you as a contact/approver.
  • From artists/talent/community stakeholders – when we facilitate co-design, licensing or approvals involving you.
  • Automatically – via cookies, analytics and logs when you visit our Site.
  • Third parties – payment, analytics, email marketing, logistics, and collaboration tools that support our Services.

5) Why we use your information (purposes & legal bases)

We process personal information to:

  1. Respond to enquiries and provide Services – proposals, statements of work, project updates, delivery and support.
  2. Cultural governance & approvals – maintain ICIP approvals logs, attribution standards, usage boundaries and renewal checkpoints.
  3. Artist brokerage & licensing – shortlists, contracts, scheduling, licensing terms, attribution, payments.
  4. Events & content – RSVPs, logistics, talk tracks, capturing/using photos/film with appropriate consent/permissions.
  5. Marketing & communications – newsletters, updates, event invitations and resources (you can opt out any time).
  6. Site operation, analytics & improvement – security, troubleshooting, usage analytics, cookie preferences management.
  7. Compliance & risk – legal requests, tax and accounting, audit trails, insurance claims, disputes, data breach management.

6) Direct marketing

We may send you updates about our Services where permitted. You can unsubscribe at any time using the link in the email or by contacting admin@dreamtimeart.com.au. We do not sell your personal information.

7) Cookies & similar technologies

We use cookies, pixels and similar tools to operate our Site and understand usage.
Cookie categories:

  • Strictly necessary – Website core, security, consent banner.
  • Performance/analytics – aggregated site metrics.
  • Functional – remembering preferences.
  • Marketing – measuring campaign effectiveness.

You can manage preferences via our cookie banner and your browser settings. Disabling some cookies may impact functionality.

8) Disclosures (who we share information with)

  • We may share personal information with:
  • Service providers – hosting, email, backup/storage, analytics, payment processing, project collaboration, logistics, print/installation, insurers, legal/financial advisers.
  • Project stakeholders – as needed to deliver Services (e.g., your organisation, artists, cultural advisors, production vendors).
  • Regulators and authorities – where required or authorised by law.
  • Business transfers – if we restructure or transfer our business.

We do not authorise third parties to use your information for their own marketing.

9) International data flows

Our trusted providers or collaboration partners may be located outside Australia. Where we disclose personal information overseas, we take reasonable steps to ensure recipients protect it in accordance with this Policy and applicable law. For EU/UK personal data, we rely on appropriate transfer mechanisms (e.g., Standard Contractual Clauses).

10) Indigenous Cultural & Intellectual Property (ICIP) & cultural knowledge

We recognise that ICIP and culturally sensitive knowledge are governed by community protocols and specific approvals/consents. While ICIP may not always be “personal information” under privacy law, we treat it with strict care:

  • Document permissions, attribution, usage boundaries and renewals.
  • Do not disclose ICIP beyond agreed purposes and approvals.
  • Apply a “right way / two-way” approach: co-design, review and consent prior to use.
  • Maintain governance artefacts (e.g., approvals logs, credit lines, usage matrices).

11) How we protect your information (security)

  • Role-based access controls; multi-factor authentication for admin accounts where supported.
  • Secure hosting, encryption in transit (HTTPS/TLS), routine backups.
  • Vendor due diligence and confidentiality obligations.
  • Minimisation and need-to-know handling in project workstreams.
  • Staff and contractor confidentiality commitments and training.

If we suspect an eligible data breach under Australia’s Notifiable Data Breaches scheme, we will assess within 30 days and notify affected individuals and the OAIC where required.

12) How long we keep information (retention)

  • Enquiries (no engagement): up to 24 months.
  • Client/project records, contracts, approvals logs, licensing and attribution: 7 years after final delivery or expiry.
  • Financial records: 7 years.
  • Marketing subscriptions: until you unsubscribe or after 24 months of inactivity.
  • Recruitment/applicant data: 12 months (unless you ask us to retain for future roles).
  • Event photos/film with consent: retained according to the consent or licensing terms.
  • Cookies: managed via your browser and our consent tool (most analytics cookies last up to 24 months).

13) Your privacy rights

Australia (APPs): You have rights to access and correct your personal information, and to opt out of direct marketing.
EU/UK (GDPR): You may have rights to access, rectification, erasure, restriction, data portability, object to processing, and withdraw consent.

To exercise rights, contact admin@dreamtimeart.com.au.

14) Children

Our Services are generally directed to organisations and adults. We do not knowingly collect personal information from children.

15) Complaints and how to contact us

Email: admin@dreamtimeart.com.au
Subject line: Privacy enquiry/complaint

If you are not satisfied, you may contact:
Office of the Australian Information Commissioner (OAIC)
Website: https://www.oaic.gov.au/privacy/privacy-complaints
Phone: 1300 363 992

16) Third-party sites, plugins & platforms

Our Site may link to third-party websites or embed tools. Those services have their own privacy terms; please review them.

17) Changes to this Policy

We may update this Policy to reflect changes in law, technology or our Services. The “Last updated” date shows the latest version.

18) Additional details for transparency

  • Sources of data – directly from you; your employer; publicly available sources; referrals; service providers.
  • Consequences of not providing data – we may be unable to provide some Services.
  • Automated decision-making – we do not make solely automated decisions that produce legal or similarly significant effects.

19) Website & cookies (implementation notes)

  • Use a consent management platform (CMP) so non-essential cookies load after consent.
  • Ensure CMP retains consent logs.
  • Add inline consent notices on forms.
  • Double opt-in for newsletters recommended
© 2025 Dreamtime Art Creative Consultancy. All rights reserved

Privacy Preference Center

Privacy Preferences