Epi-interactive logo

Privacy Policy

  1. Introduction

a) This Privacy Policy (Policy) governs how Epi-interactive (we, us, our) will handle the personal information we collect about you, including through our website, SaaS solutions, Ripple, Posit or any other service we provide (each a Service and together, the Services). Your privacy is important to us, and we are committed to protecting your personal information in accordance with the Privacy Act 2020 (Privacy Act).

b) This Policy also describes how you can access and update the personal information you provide to us.

  1. What is personal information?
    • In this Policy, personal information has the meaning given to it in the Privacy Act.
  2. Updates to our Privacy Policy
    • We may review this Policy from time to time, including to ensure we are keeping up to date with changing laws, our operations and the changing business environment. We will amend and update the Policy by posting a revised version on our website.
    • By continuing to use our website and Services or by providing us with your personal information, you accept the terms of this Policy and any updates to our Policy. If you do not accept the updates to our Policy, you must not use our website, Services or other communication channels.
  3. When do we collect personal information about you?
    • We collect personal information about you during any interactions you have with us, including when you:
      • upload information to our website or Services;
      • open and operate an account;
      • interact with any of our social media channels;
      • access, browse, view or use our website and Services; and
      • provide information to us, including through our website and Services, over email or the phone.
  1. What kind of personal information do we collect?
    • The personal information we collect may include:
      • your contact details (including, but not limited to, your full name, email address, physical address and phone number);
      • financial information;
      • records of your activity when you use our website, Services and/or social media channels;
      • recordings of calls and copies of other communications with or from you;
      • your activity and notification preferences on our website;
      • information we create in the course of our relationship with you; and
      • information from your computer or device in relation to your use of our website, Services or social media channels, including but not limited to the IP address, domain name, browser type, activity logs, cookie and browser identifiers and location identifiers (for more information about website analytics see below).
    • We collect personal information in different ways, but we collect most of the personal information directly from you.
    • At times, we may collect information about you from a third party that you have authorised, or as permitted by law.
    • If you have provided us with information about another person, you warrant that you are not prohibited by law in doing so. Your obligations under privacy laws may require you to seek permission from the person and/or may mean that you need to tell that person about the disclosure and let them know that they have a right to access their personal information and that we will handle their personal information in accordance with this Privacy Policy.
    • If we indirectly collect your personal information and you have not already been notified, we will take reasonable steps to notify you, in accordance with the Privacy Act and any amendments to it.
  2. Why do we collect personal information and what do we use it for?
    • We collect personal information to:
      • provide you Services;
      • provide you with support in relation to our Services;
      • offer you products or services that may be of interest to you;
      • provide you with products and Services you request;
      • provide you with support, notifications, reminders and offers in relation to the industry, in accordance with your notification preferences;
      • manage our relationship with you;
      • provide general administrative and business purposes; and
      • comply with New Zealand laws and any applicable overseas laws.

 

  • Where your personal information is used for marketing and promotional communications, such as our electronic newsletters, you can choose to stop receiving such communications by using the unsubscribe function.
  1. Sharing your information
    • We may disclose your personal information:
      • for the purpose for which it was collected (or a purpose that is directly related to that purpose);
      • to the third parties we can disclose your information to achieve the purposes set out in clause 6.1;
      • to any other person or organisation that you have authorised us to disclose your personal information to; and
      • to any person or organisation that we are permitted or required to disclose your personal information by law.
    • We may share your personal information in an anonymised aggregate form with others.
  2. Storage and security of your personal information
    • We will store your personal information in accordance with our obligations under the Privacy Act and will take reasonable steps to ensure the security of your personal information.
    • Your personal information may be accessed from and/or stored on our third party service providers servers outside of New Zealand.
    • Protecting the personal information of yours that we hold and process is important to us. Our systems are protected by such security safeguards that are reasonable in the circumstances to prevent the loss, misuse and/or alteration of information under our control.
    • Although we take reasonable steps to ensure personal information held by us (or on our behalf) is protected and held securely, we do not make any warranties in relation to the security of any information you disclose or transmit to us and we are not responsible for the theft, destruction, or inadvertent disclosure of your personal information where our security measures have been breached. Any transmission of personal information is conducted at your own risk.
  3. Access and retention of your own personal information
    • You agree that any information you give to us will be accurate, correct and up to date.
    • You must inform us if any of your personal information changes, to ensure that the details we hold about you are up to date and correct.
    • Subject to any exceptions in the Privacy Act, you have a right to know what information we hold about you. If you’d like to receive a copy of the personal information we hold about you, or request correction of that information, please contact us. If we are not willing to correct errors that you have identified in your personal information, you may request that we take reasonable steps to attach a statement to the personal information noting the correction sought.
    • Please note that we may ask you to verify your identity before responding to such requests.
    • We will only retain your personal information for as long as it is required to achieve the purposes set out in this Policy or as otherwise required or permitted by law.
  4. Third party sites and services
    • Our website and Services may use third party software and services for us to provide our Services to you. These third parties may have their own terms and conditions, and privacy policies. We encourage you to read these documents.
    • We may link or reference to other websites. This Policy does not apply to any other websites and we take no responsibility for the privacy practices of other websites.
  5. Website analytics
  6. Generally, this information is not personally identifiable data, but to the extent that it is considered personal information for the purposes of any applicable law or regulation, we will comply with our obligations under any such law or regulation when processing that information.
    • Cookies
      • We can use analytics tools (including cookies) to collect information and to allow you to log-in to our Services. A cookie is a small text file that is stored on your device when you access a website. Cookies allow us to recognise your internet browser as you move around our website.
      • By using our website with cookies enabled you consent to cookies being used. Some of the ways we use cookies include, but are not limited to, customising our website with your preferences, identifying you for security reasons, allowing you to log into your account, analysing trends on our website, facilitating market research and promotional activities, and measuring the effectiveness of our marketing initiatives.
      • You can disable cookies by adjusting your browser settings.
    • Google Analytics
      • We also use Google Analytics to collect data about the use of our website. We may use Google’s analysis to help us gain a better understanding of our audience demographics and how people interact with our website. We may disclose the information collected by Google Analytics, in an aggregate, anonymised (not personal) form only, to third parties. When we use Google Analytics, Google’s privacy policy will also apply and the data that is collected and stored on the Google server is governed by Google’s privacy policy.
  1. Questions and complaints
    • If you have any questions, comments or concerns about the personal information of yours that we hold or process, or this Policy, please contact us at:

info@epi-interactive.com

Epi-interactive Limited

129 Park Road

Miramar, Wellington, 6022.

  • If you complain to us and you’re not satisfied with the way we’ve handled it, you can raise it with the Privacy Commissioner. The Privacy Commissioner’s contact details are: 

Office of the Privacy Commissioner
PO Box 10094
The Terrace
Wellington 6143
New Zealand

0800 803 909
www.privacy.org.nz

 

1. Why do we collect personal information?

  1. This Privacy Policy (Policy) governs how Epi-interactive (we, us, our) will handle the personal information we collect about you, including through our website, SaaS solutions, Ripple, Posit or any other service we provide (each a Service and together, the Services). Your privacy is important to us, and we are committed to protecting your personal information in accordance with the Privacy Act 2020 (Privacy Act).
  2. This Policy also describes how you can access and update the personal information you provide to us.

How do we collect personal information?

Except as otherwise permitted by law, we will collect personal information:

  • from you directly when you provide your details to us;
  • from you indirectly (through emails, forms, subscription applications, face-to-face meetings, interviews, registration and attendance at seminars, business cards, telephone conversations and through the use of our websites and social media channels);
  • from third parties in some instances, for example:
    • we may use third parties to analyse traffic at our websites and social media channels, which may involve the use of cookies;
    • in some circumstances we might collect personal information about an individual from a third party, such as a report provided by a medical professional or an employment reference from another person;
    • where a third party provides security-related services; and
  • from publicly available websites.

What personal information do we collect?

You can access and use the Website and Services without telling us who you are or revealing any information by which someone could identify you as a specific, identifiable individual. If, however, you wish to use some of the features offered on the Website, you may be asked to provide certain Personal Information (for example, your name and e-mail address).

We receive and store any information you knowingly provide to us, for example when you fill out a form on the website. When required, this information may include the following:

  • Contact information (such as email address, phone number, etc)
  • Basic personal information (such as name, country of residence, etc)
  • Any other materials you willingly submit to us (such as articles, images, feedback, etc)

You can choose not to provide us with your Personal Information, but then you may not be able to take advantage of some of the features on the Website. Users who are uncertain about what information is mandatory are welcome to contact us.

Management of personal information

We take reasonable steps to protect the security of personal information. Epi-interactive’s personnel are required to respect the confidentiality of personal information and the privacy of individuals.

We take reasonable steps to protect personal information held by us from misuse and loss and from unauthorised access, modification or disclosure, for example by use of physical security and restricted access to electronic records.

Subject to the exceptions set out in the Privacy Act, you may seek access to the personal information which we hold about you by contacting our Privacy Officer at info@epi-interactive.com.

Disclosure of information

Depending on the requested Services or as necessary to complete any transaction or provide any Service you have requested, we may share your information with our service providers we rely upon to assist in the operation of the Website and Services available to you and whose privacy policies are consistent with ours or who agree to abide by our policies with respect to Personal Information. We will not share any personally identifiable information with third parties and will not share any information with unaffiliated third parties.

Service Providers are not authorised to use or disclose your information except as necessary to perform services on our behalf or comply with legal requirements. Service Providers are given the information they need only in order to perform their designated functions, and we do not authorise them to use or disclose any of the provided information for their own marketing or other purposes.

We may also disclose any Personal Information we collect, use or receive if required or permitted by law, such as to comply with a subpoena or similar legal process, and when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.

In the event we go through a business transition, such as a merger or acquisition by another company, or sale of all or a portion of its assets, your user account, and your Personal Information will likely be among the assets transferred.

How to exercise your rights

Any requests to exercise your rights can be directed to us through the contact details provided in this document. Please note that we may ask you to verify your identity before responding to such requests. Your request must provide sufficient information that allows us to verify that you are the person you are claiming to be or that you are the authorised representative of such person. If we receive your request from an authorised representative, we may request evidence that you have provided such an authorised representative with power of attorney or that the authorized representative otherwise has valid written authority to submit requests on your behalf.

You must include sufficient details to allow us to properly understand the request and respond to it. We cannot respond to your request or provide you with Personal Information unless we first verify your identity or authority to make such a request and confirm that the Personal Information relates to you.

Cookies

This website uses cookies for the purpose of monitoring website usage. A cookie is a piece of code that creates a file on your computer to track the pages that you view on our website. The cookies do not collect personal information. You can disable them or clear them out of your web browser (using your browser settings) without affecting your ability to use the website.

Google Analytics

We use Google Universal Analytics to collect and analyse details about the use of our website.

The information Google Analytics collects includes:

  • your IP address;
  • the search terms you used;
  • the pages you accessed on the website and the links you clicked on;
  • the date and time you visited the website;
  • the referring website (if any) through which you clicked through to this website;
  • your operating system (eg, Windows XP, Mac OSX) on the device used to access; this website;
  • the type of web browser you use (eg, Internet Explorer, Mozilla Firefox);
  • other incidental matters such as screen resolution and the language setting of your browser.

Individual visitors to the website are not identified. You may opt-out from having Google Analytics collect your information by disabling cookies in your browser, or by installing the Google Analytics Opt-out browser add-on. The data is collected and stored on the Google server and is viewable by authorised staff as detailed in the Google Analytics privacy policy. We do not share this information with any other organisation.

Email marketing

We offer electronic newsletters to which you may voluntarily subscribe at any time. We are committed to keeping your e-mail address confidential and will not disclose your email address to any third parties.

Links to other resources

The Website and Services contain links to other resources that are not owned or controlled by us. Please be aware that we are not responsible for the privacy practices of such other resources or third parties. We encourage you to be aware when you leave the Website and Services and to read the privacy statements of each and every resource that may collect Personal Information.

Information security

We secure information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use, or disclosure. We maintain reasonable administrative, technical, and physical safeguards in an effort to protect against unauthorised access, use, modification, and disclosure of Personal Information in our control and custody. However, no data transmission over the Internet or wireless network can be guaranteed.

Therefore, while we strive to protect your Personal Information, you acknowledge that (i) there are security and privacy limitations of the Internet which are beyond our control; (ii) the security, integrity, and privacy of any and all information and data exchanged between you and the Website and Services cannot be guaranteed; and (iii) any such information and data may be viewed or tampered with in transit by a third party, despite best efforts.

As the security of Personal Information depends in part on the security of the device you use to communicate with us and the security you use to protect your credentials, please take appropriate measures to protect this information.

Data breach

In the event we become aware that the security of the Website and Services has been compromised or Users’ Personal Information has been disclosed to unrelated third parties as a result of external activity, including, but not limited to, security attacks or fraud, we reserve the right to take reasonably appropriate measures, including, but not limited to, investigation and reporting, as well as notification to and cooperation with law enforcement authorities. In the event of a data breach, we will make reasonable efforts to notify affected individuals if we believe that there is a reasonable risk of harm to the User as a result of the breach or if notice is otherwise required by law. When we do, we will send you an email.

Updates to this Policy

This Policy will be reviewed from time to time to take account of new laws and technology, changes to our operations and practices and the changing business environment. The most current version of this Policy is located at epi-interactive.com and can be obtained by contacting our Privacy Officer at info@epi-interactive.com.

Contacting us

If you have any questions, concerns, or complaints regarding this Policy, the information we hold about you, or if you wish to exercise your rights, we encourage you to contact us using the details below:

info@epi-interactive.com

We will attempt to resolve complaints and disputes and make every reasonable effort to honour your wish to exercise your rights as quickly as possible and, in any event, within the timescales provided by applicable data protection laws.

This document was last updated on November 06, 2023