We gather various information about customers and users of our website. This information includes:
- personal information through your voluntary use of the Website and the purchase process (such as your first and last names and email);
- personal information, provided to us by you through any other method (including without limitation correspondence and discussions);
- information collected by us through click tracking in relation to your use of the Website, including the content you upload and the content you access; and
- aggregated data, which tracks traffic to the Website; and cookies, which are pieces of information transferred to your computer hard drive for record keeping (such as your preferences on our Website).
We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.
Use of your information
We will never sell or rent your personal information to third parties.
We will use information we collect from you for the primary purpose for which it is collected and for such other secondary purposes that are related to the primary purpose of collection. We generally use personal information to complete delivery of our Documents to you, help us manage and enhance our services and to communicate with you.
Email Newsletters and other notices
It is our policy to send emails throughout the purchasing process and other Newsletter emails you elect to receive. In addition, we may send out promotional material to you promoting new or amended material on our site where we think that may be relevant to you. It is our policy to immediately remove any person from any mailing list upon the person’s request.
Credit Card /payment details
Cookies are small pieces of information that are stored in a browser-related file on your computer’s hard drive when you use our Web site. Cookies are widely used on most major Web sites. Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. A cookie in no way gives us access to your computer or any information about you other than the data you choose to share with us.
We may use information contained in cookies to make assumptions about the user of the computer and to provide users of that computer with focused advertising that we believe may be of interest, based on that information.
You can choose to accept or decline cookies. Most web browsers automatically accept cookies but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of our website.
Other information we collect
We collect and use additional information to carry out internal research on our users’ demographics, interests, and behaviour to better understand and serve you and our community. This information may include the URL that you just came from (whether this URL is on our site or not), which URL you next go to (whether this URL is on our site or not), what browser you are using, and your IP address.
If you post on our site, on twitter or Facebook or other social media site about us or your experience with us, we may collect that information for the purposes of improving our service and the end user experience.
Access and removal of Information
You have the right to seek access the personal information held about you and to advise us of any inaccuracy. There are some exceptions to this right set out in the Privacy Act. If you make an access request, we will ask you to verify your identity and specify what information you require. We may charge a fee to cover the costs of meeting your request.
Links to other websites
Our website may contain links to enable you to visit other websites of interest easily. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.
Updates to our information practices
We reserve the right to change this policy. By continuing to use the Website, you agree to be bound by the amended policy. You should check from time to time to see if the policy has changed.
European Union General Data Protection Regulation
What is the GDPR regulation?
The European Union's (EU) General Data Protection Regulation (GDPR) came into force on 25 May 2018. It is a law passed by the European Parliament.
The GDPR aims to protect the personal data of individuals based in the EU. The GDPR applies to businesses located within the EU, and to all businesses (wherever they may be located) that collect, use and store personal data from individuals based in countries of the EU.
What is personal data?
The GDPR defines 'personal data' as any information relating to an identified or identifiable natural person. It includes information that by itself or when matched with another piece of information can identify an individual.
If the data used, collected or stored cannot identify an individual – the GDPR will not apply.
Who does it apply to?
Businesses who supply goods or services to individuals in the EU need to comply with the GDPR.
What rights does it give people?
Under the NZ Privacy Act, an individual has the right to know why their information is being collected, used and stored, and the right to request a copy of their information and to correct it.
However, the GDPR provides individuals in the EU with additional rights, namely the right to:
- erasure of their personal data;
- data portability; and
- object to the processing of their personal data.
A person can ask a business to erase their personal data in certain situations, such as where:
the business no longer requires the personal data;
the person withdraws consent to the processing of their data; or
there was wrongful collection of the personal data.
Gives a person the right to ask for their personal data to be held by the business in a structured, commonly used and machine-readable format. It also gives a person the right to transmit their personal data to another business without any hindrance from the business they originally provided their data to.
Objecting to the Processing of Your Data
A person can object, at any time, object to the processing of their personal data.
This is unlike the NZ Privacy Act, which requires that businesses must only take reasonable steps to destroy or de-identify personal information that they no longer need for a specific purpose.
Under the NZ Privacy Act, an individual must consent to the collection of their personal information. The consent can be either express or implied.
In NZ, filling in a web form may pass as implied consent to the collection of personal information, even if the form does not explicitly state that data will be collected, and the individual has not given their consent to this collection.
In contrast, the GDPR requires businesses to clearly demonstrate that a person is given appropriate information about the data to be collected, and has given their consent to this collection.
Data Breach Notifications
The GDPR provides an individual with the following rights:
- To be informed
- Of access
- To rectification
- To erasure
- To restrict processing
- To data portability
- To object, and
- Rights in relation to automated decision making and profiling
The GDPR provides a definite time frame for notifying authorities of a breach of an individual’s rights under this regulation. Where there has been a breach, the business must without delay and not later than 72 hours notify:
the relevant supervisory authority in the country of the affected EU resident; and
This general GDPR guide will not apply to every situation. You should seek further legal advice by logging a job in LawVu Legal Advice Request Form if:
- You are unsure whether the GDPR applies to the individual.
- Someone has alleged that their rights under the GDPR have been breached.
If you require further information about the policy or would like to share any feedback, please email [email protected]
Get FREE consultation and experience your business grow onlineStart my free consultation