Viking River Cruises Australia Pty Ltd (Viking) is committed to protecting your privacy when you purchase our products and services and when you use our website.

The purpose of this Privacy Policy is to explain:

  • the application of this Privacy Policy
  • the kind of information Viking may collect about you, how we collect it, and how we use it
  • how we may disclose that information
  • how you can access the information we hold about you
  • when we may use your information to contact you
  • the protection of your personal information

1. APPLICATION OF THIS PRIVACY POLICY

Viking’s Privacy Policy applies to personal information collected by Viking, whether we have asked for the information or not. Viking is governed by the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth). The APPs govern the way in which we collect, use, disclose, store, secure and dispose of your personal information. A copy of the APPs may be obtained from the website of the Office of the Australian Information Commissioner at www.aoic.gov.au.

Viking will review this policy regularly, and may update it from time to time. If we make changes, we will post those changes on the privacy page of Viking’s website.

 

2. COLLECTION AND USE OF PERSONAL INFORMATION

2.1 WHY WE COLLECT PERSONAL INFORMATION

Viking collects personal information about you:

  • because we need it to provide a product or service that you have requested , for example, if you have requested information from the Viking website, or agreed to participate in a river cruise with Viking;
  • because you work for us , or apply to us for a job or work experience.
    We may also use your personal information for secondary purposes closely related to the primary purpose, in circumstances where you would reasonably expect such use or disclosure. When we collect personal information we will, where appropriate and where possible, explain to you why we are collecting the information and how we plan to use it.

2.2 HOW WE COLLECT INFORMATION

Broadly, there are two types of information or data we collect:

1. Information that you specifically give us

For example, you may provide information about yourself when you are filling in a form. This type of information may include your name, images of you, your contact details (your home address, business address, telephone number, business telephone number, email address) and date of birth. The information that you give us may be:

  • Personal information that is required. In some instances, you must provide personal information if you wish to use a particular service or participate in an activity. For example, Viking does not sell products to people under the age of 18 years.
  • Personal information that is optional. You may choose to provide some personal information which is not required but is directly related to Viking’s functions or activities (such as preferences or opinions). Usually this type of information will enable Viking to improve or broaden the services we can offer you. If you choose not to provide this optional information, we would still be able to offer you the service, but perhaps with fewer options than if you had provided the optional information. For example, if you tell us you are interested in a particular destination, we may be able to provide you with specific Viking content that matches your interests and we may keep a record of this information provided. If you provide us with unsolicited information that we do not require or which is not directly related to Viking’s functions or activities, Viking may be required to destroy or de-identify that information, provided it is lawful and reasonable to do so.
  • Permissions. Sometimes you will be asked to confirm that you agree to a particular activity. For example, you may need to expressly agree that you would like to receive a newsletter or to confirm that you agree to the terms and conditions of a competition.
    You may be able to make changes to the information you provided us (for example, if you change your email address) or withdraw the permission you gave us for a particular service. We will make it clear how you do that.
  • 2. Data we collect that tracks your activity

    We use an email delivery and marketing company to send emails to you. Pixel tags and cookies are used in those email messages and at our website to help us measure the effectiveness of our marketing and how visitors use our site.

    Pixel tags (sometimes also called “clear GIFs”) are small graphic files, invisible to the human eye, which allow websites or other online services to track users. Viking and our third-party advertising company uses pixel tags in HTML-enabled emails to track whether (and when) you opened our message.

    The data on your use of our site may be linked to personal information you have chosen to share with us when you register. Most Internet browsers automatically accept cookies. However, you can instruct your browser, by editing its options, to stop accepting cookies or prompt you before accepting a cookie from the sites you visit.

    If you decide not to accept our cookies, your ability to use some features on our site may be impaired. Certain visitors to our site may have previously received targeted promotional materials relative to the site. Viking may share site usage information about such visitors with reputable third parties for the purpose of targeting future campaigns and upgrading visitor information used in reporting statistics. Although our marketing company logs the information coming from our site on our behalf, we control how that data may and may not be used.

    Our website does not collect personally identifiable information about individuals except when such individuals specifically provide such information on a voluntary basis, such as when registering at our website, requesting a brochure or video, or accessing our "request a quote" feature.

    3. DISCLOSURE OF PERSONAL INFORMATION

    3.1 DISCLOSURE OF PERSONAL INFORMATION TO THIRD PARTIES

    Viking may disclose your personal information to third parties such as airlines for the following purposes:

    • to provide the service you wish to use;
    • to customise and promote Viking services which may be of interest to you;
    • to provide technical support to you to use Viking’s services;
    • if permitted or required by law; or
    • otherwise with your consent.

    In many cases, Viking imposes contractual restrictions equivalent to those imposed on Viking under the Privacy Act in respect of collection and use of personal information by those third parties. In some cases, Viking’s ability to impose contractual restrictions is limited. In those circumstances, Viking will carefully consider the risks to the protection of personal information when entering into arrangements with third parties.

    These third parties may be located in Australia or overseas.

    We may share your email address and home address with third parties to deliver brochures, videos, information about cruise promotions, news and other information about our website, products, services or special promotions on our behalf.

    Viking may also disclose your personal information (excluding sensitive information about you) to third parties for the purposes of direct marketing Viking’s services including brochures, videos, information about cruise promotions, news and other information about our website, products, services or special promotions.

    You will be able to opt-out of direct marketing at any time if you so choose. Under no circumstances will Viking sell or receive payment for licensing or disclosing your personal information.

    4. ACCESSING YOUR PERSONAL INFORMATION

    You have the right to request access to personal information that is held by Viking about you.

    You also have the right to request the correction of any of your personal information that Viking holds. Viking will take reasonable steps to make appropriate corrections to personal information so that it is accurate, complete and up-to-date. To seek access to, or correction of, your personal information please contact Viking as follows:

    By email: CustomerRelations.anz@vikingcruises.com

    By telephone: 1300 384 696 (AU) or 0800 447 913 (NZ)

    By mail:
    Viking Cruises Australia
    6/66 Wentworth Ave
    Surry Hills NSW 2010
    AUSTRALIA

    Submit a request:Data Subject Request Form

     

    In order to protect your personal information, we may require identification from you before releasing the requested information.

    5. USE OF YOUR PERSONAL INFORMATION TO CONTACT YOU

    We will never knowingly send you unsolicited commercial electronic messages. More information on the Spam Act 2003 is available from the regulator’s website: www.acma.gov.au/spam

    We may use information that we know about your likes and interests to tell you about other Viking programs, products and services. We may know about your likes and interests because you have provided that information.

    You may unsubscribe from our mailing/marketing lists at any time by contacting us in writing.

     

    6. PROTECTION OF YOUR PERSONAL INFORMATION

    Your personal information is stored in a manner that reasonably protects it from misuse and loss and from unauthorised access, modification or disclosure. When your personal information is no longer needed for the purpose for which it was obtained, we will take reasonable steps to destroy or permanently de-identify your personal information. However, most of the personal information is or will be stored in client files which will be kept by us for a minimum of 7 years.

    Viking has implemented appropriate physical, electronic and managerial security procedures in order to protect personal information from loss, misuse, alteration or destruction. Viking regularly reviews security and encryption technologies and will strive to protect information to the fullest extent possible (subject to any legal obligation to disclose data – for example, in compliance with a warrant issued under the Clarifying Lawful Overseas Use of Data (CLOUD) Act). Viking is also compliant with its obligations under the Notifiable Data Breaches (NDB) Scheme and the Payment Card Industry Data Security Standard (PCI DSS).

    We encourage you to be vigilant about the protection of your own personal information when using third party digital services.

    7. CREDIT CARD INFORMATION

    Crucially, your credit card details are only stored and transmitted in encrypted form. Unencrypted credit card information is NOT stored on our internet servers. Online credit card payments are currently processed using a third party payment gateway service run by TokenEx.

    If you use your credit card and the transaction is manual rather than electronic, the imprinted record will be stored by Viking for the period that financial records are required to be retained.

    8. OFFLINE PURCHASES

    If you do not wish to place your order on the internet, we offer you the option of phoning, faxing or mailing in your order.

    9. PRIVACY AND CHANGE OF CONTROL

    In the event Viking goes through a business transition, such as a merger, being acquired by another company, or selling a portion of its assets, users’ personal information will, in most instances, be part of the assets transferred.

    10. LINKED SITES

    Our website may contain links to other sites. We are not responsible for the privacy practices or the content of such web sites. We encourage you to read the privacy statements of any linked sites as their privacy policy may differ from ours.

    11. COMPLAINTS

    If you have any complaints about our Privacy Policy, please contact our Privacy Officer Matthew Jones at: matthew.jones@vikingcruises.com In the event that you believe that your compliant has not been adequately addressed or resolved by the Privacy Officer, then you may contact the Office of the Australian Information Commissioner at www.aoic.gov.au.

    Version August 2018
    This policy may change from time to time and is available on our website.