Privacy Policy

Last updated:

1. Who We Are

For the purposes of the Privacy Act 2020 (New Zealand), the agency responsible for your personal information is:

Rinsingluminoush
38 Parker Avenue, Levin 5510, New Zealand
Email: callback@rinsingluminoush.world
Phone: +64 6 368 3549

For any questions regarding data protection, please contact us using the details above.

2. Personal Data We Collect

We may collect and process the following categories of personal data:

  • Identity data: your name
  • Contact data: email address, phone number, postal address
  • Communication data: messages you send through our contact form
  • Technical data: IP address, browser type, device information, pages visited
  • Cookie data: preferences stored via cookies and local storage

We do not collect sensitive personal data such as medical records, financial information, or biometric data.

3. How We Collect Personal Information

We collect personal information directly from you when you submit our contact form, communicate with us by email or phone, or interact with cookie and analytics tools where you have given consent. We may also collect limited technical information automatically when you visit our website, such as your IP address, browser type, and pages viewed.

We collect only information that is reasonably necessary for our stated purposes, in line with Information Privacy Principle 1 (IPP 1) of the Privacy Act 2020 (New Zealand).

4. Purposes and Legal Basis for Processing

We process your personal data for the following purposes:

  • Responding to your inquiries and providing customer support
  • Operating, securing, and improving our website
  • Complying with legal and regulatory obligations
  • Analysing website usage, where you have given consent
  • Sending marketing or promotional communications, only where you have given clear consent

Under the Privacy Act 2020, we must have a lawful purpose for collection and use (IPP 1 and IPP 10). Where the General Data Protection Regulation (GDPR) also applies to you, our legal bases include consent, legitimate interests, and legal obligation as relevant to each activity.

We will not use your personal information for a purpose other than the purpose for which it was collected, except as permitted by the Privacy Act 2020 (IPP 10).

5. Disclosure of Personal Information

We do not sell your personal information. We may disclose personal information to:

  • Service providers who assist us with website hosting, analytics, email delivery, or technical support, subject to confidentiality and data protection obligations
  • Professional advisers or regulators where required by law
  • Law enforcement or government agencies when disclosure is authorised or required by New Zealand law

Before disclosing personal information to an overseas person or entity, we take reasonable steps to ensure that the recipient protects the information in a manner comparable to the Privacy Act 2020, in accordance with IPP 12.

6. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected:

  • Contact form submissions: up to 24 months after the last communication
  • Technical and analytics data: up to 26 months
  • Cookie consent records: up to 12 months
  • Legal compliance records: as required by applicable law

After the retention period expires, data is securely deleted or anonymised.

7. Your Rights Under New Zealand Law

Under the Privacy Act 2020, you have the right to:

  • Request access to personal information we hold about you (IPP 6)
  • Request correction of personal information you believe is inaccurate, out of date, incomplete, irrelevant, or misleading (IPP 7)
  • Be informed about the collection of your personal information, including the purpose of collection and whether disclosure to others is intended (IPP 3)
  • Receive personal information in a form that enables you to take it to another agency, where this is reasonably practicable

To exercise these rights, contact us using the details in section 1. We will respond as soon as reasonably practicable and, in any event, within 20 working days of receiving your request, unless an extension is permitted under the Privacy Act 2020.

If you are not satisfied with our response, you may complain to the Office of the Privacy Commissioner at www.privacy.org.nz.

8. Additional Rights Under the GDPR

Where the GDPR applies to you, you may also have the right to erasure, restriction of processing, data portability, objection to processing based on legitimate interests, and withdrawal of consent. To exercise these rights, contact us at callback@rinsingluminoush.world. You may also lodge a complaint with your local supervisory authority in the European Economic Area.

9. Direct Marketing and Electronic Messages

We will only send you marketing communications where you have given clear consent or where another lawful exception applies. You may opt out of marketing communications at any time by contacting us or using the unsubscribe method provided in the message.

Our electronic marketing practices comply with the Unsolicited Electronic Messages Act 2007 (New Zealand), which requires consent before commercial electronic messages are sent and requires accurate sender information.

10. Privacy Breaches

We maintain procedures to identify, assess, and respond to privacy breaches. Where a breach has caused or is likely to cause serious harm, we will notify the Office of the Privacy Commissioner and affected individuals as required by the Privacy Act 2020.

11. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • HTTPS encryption for all data transmitted between your browser and our servers
  • Access controls limiting data access to authorised personnel
  • Regular review of security practices and data handling procedures
  • Secure storage of contact form data with restricted access

While we take reasonable precautions, no method of transmission over the internet is entirely secure. We cannot guarantee absolute security of your data.

12. International Data Transfers

Your data may be processed in New Zealand and, where applicable, in other countries through our service providers. Before disclosing personal information overseas, we assess whether the recipient will protect the information appropriately, in line with IPP 12 of the Privacy Act 2020.

Where the GDPR applies and data is transferred outside the European Economic Area, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission.

13. Third-Party Services

We may use third-party services for website analytics, font delivery, and content delivery networks. These providers may process technical data on our behalf. Where they handle personal information, we require appropriate contractual protections. For details on cookies used by third parties, see our Cookie Policy.

14. Children

Our website is intended for a general audience and is not directed at children under 16. We do not knowingly collect personal information from children without appropriate parental or guardian consent. If you believe we have collected information from a child, please contact us so we can delete it.

15. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically.

Cookie Settings

Strictly Necessary

Required for the website to function. Always enabled.

Analytics

Help us understand how visitors interact with the site.

Marketing

Used to deliver relevant content and measure campaign effectiveness.