The purpose of this document is to set out our policies in relation to the collection, holding, use and disclosure of personal information relating to an individual.
Personal information means information (including information or an opinion forming part of a database), whether true or not, and whether recorded in a material form or not, about an individual whose identity is apparent, or can reasonably be ascertained from the information or opinion.
We do not collect Sensitive information (for example your political opinions or health information).
From time to time and in line with customer expectations and any relevant legislative changes, our Privacy Policies and procedures will be reviewed and, if appropriate, updated. This policy was last updated on 29 August 2019.
We recognise that your personal information is important to you and we share your concerns about how and what personal information is collected, used and shared. Your rights to privacy are protected by law, and this policy does not limit those rights.
We are committed to safeguarding your personal information and will always handle your personal information securely and carefully. We comply with all applicable data protection and privacy legislation and codes affecting your personal information.
The personal information collected is in most cases supplied by you when you send an enquiry via the contact form on our website. Personal information may include:
- name and contact details (e.g. phone number, e-mail address); and
- your enquiry; and
- identification of the page you are using, such as the page the form you're contact us is on; and
- date and time of access; and
- the IP address of the computer you are using.
Information is also collected automatically - please see Information collected automatically below for more information about how your information is collected in this way.
In addition to any purpose notified to you at the time of collection, we collect, hold, use and disclose your personal information so we can:
- respond to your questions, comments or feedback in relation to our services;
- better understand your requirements and preferences and improve our service to you;
- monitor activity on our website (for the purpose of maintaining the security of the website); and
- comply with our legal obligations (including in relation to health and safety matters or matters relating to our employees or applicants for employment);
We record your e-mail address as part of a general query via our website contact forms or if you opt into our Mailchimp mailing list.
We will only use it in response to the nature of your enquiry.
It will not be used for any unauthorised purpose or disclosed without your consent (unless permitted by law).
As part of our commitment to maintaining your privacy, IAS does not condone unsolicited electronic messages or ‘spam’.
We will only send electronic messages (i.e. e-mails) with the addressee’s express or inferred consent to receive it.
Whenever you visit our website, our servers automatically record information about your usage of our website through cookies.
Cookies are small pieces of information stored by your browser on your computer or mobile device. Cookies are used to maintain session information between your browser and our website and identify things related to your use of the website such as the time, date and URL of the pages you visit, your IP address, your location and browser software.
Most browsers can notify you when a new cookie is received, or let you turn off cookies or geo-location services altogether. However, turning off these services may mean some features on our website are not available to you.
We use information obtained this way in order to learn about your preferences so that we may improve our website and the service offered through it.
We use two different types of cookies – session cookies and persistent cookies. A session cookie is stored temporarily; it only lasts until you close your browser. A persistent cookie is stored on your device and lasts until you or your browser deletes them.
We use both first party and third party cookies. First party cookies are those which we use. Third party cookies originate from one of our service providers such as Google.
We use a tool called Google Analytics to collect information about use of this site. Google Analytics collects information such as how often users visit this site, what pages they visit when they do so, and what other sites they used prior to coming to this site.
We only use the information we get from Google Analytics to improve this site.
Google Analytics collects the IP address assigned to you on the date you visit this site, rather than your name or other identifying information. We do not combine the information collected through the use of Google Analytics with personally identifiable information. Although Google Analytics plants a permanent cookie on your web browser to identify you as a unique user the next time you visit this site, the cookie cannot be used by anyone but Google.
You can prevent Google Analytics from recognising you on return visits to this site by disabling cookies on your browser.
We use the following third party cookies:
- Google Analytics (see Analytics above and Google's Safeguarding your Data)
In addition we also use Mailchimp to deliver newsletters to subscribers who have opted into the service. Mailchimp usage is bound by the following privacy policies:
We take care to ensure that the personal information you give us on our website is protected from misuse, interference and loss, unauthorised access, modification or disclosure.
You may be able to access external websites by clicking on links we have provided.
It is important to note that those other websites are not necessarily subject to our privacy standards, policies and procedures.
You will need to contact or review those websites directly to determine their privacy standards, policies and procedures.
We will often need to pass your personal information to companies who perform part of our service delivery.
The relevant organisations include those:
- involved in maintaining, reviewing and developing our business systems, procedures and infrastructure including testing or upgrading our computer systems;
- involved in the payments system including financial institutions, merchants and payment organisations;
- as required or authorised by law, for example, to government or regulatory bodies for purposes related to public health or safety, the prevention or detection of unlawful activities or to protect public revenue; or
- where you have given your consent.
Your personal information may be disclosed by us for a secondary purpose:
- where you have been asked and consented to the use or disclosure; and
- if you would reasonably expect us to use or disclose the information for a secondary purpose which is directly related to the primary purpose of collection; or
- if required or permitted by law or by a court/tribunal;
- if we reasonably believe it is necessary for law enforcement related activities.
IAS is based in New Zealand and as noted above because we use third parties to administer some of our service delivery, some of these uses and disclosures may occur outside of your country of residence.
We will take reasonable steps to ensure that any overseas recipient does not breach relevant privacy laws or principles.
You have a right to gain access to your personal information that we hold. This is subject to some exceptions allowed by applicable law. Factors affecting a right to access include:
- access would pose a serious threat to the life or health or safety of any individual or to public health or safety;
- access would have an unreasonable impact on the privacy of others;
- a frivolous or vexatious request;
- access would reveal evaluative information generated by us in connection with a commercially sensitive decision making process;
- access would be unlawful;
- access would prejudice enforcement activities conducted by an enforcement body;
- legal dispute resolution proceedings with you where the information would not be accessible in the process of discovery in those proceedings;
- denying access as required or authorised by or under law or court/tribunal order.
We will give you reasons if we deny access (except to the extent that having regard to the grounds for the refusal, it would be unreasonable to do so).
Requests regarding your personal data must be made in writing.
Please contact me for more information about this process.
We take all reasonable steps to protect all personal or company information from misuse, loss, interference, unauthorised access, modification or disclosure.
Your information is stored securely whether in an electronic or physical form. Only authorised personnel requiring access to the information are allowed access.
All personal, company or confidential information is stored in secured premises and/or in electronic databases requiring logins and passwords.
Some information is kept for a number of years to comply with any applicable legal requirements.