This is the privacy notice of Catherine Stapleton trading as Stapleton Consulting and DIY HR. In this document, “we” or “us” refers to DIY HR. Our NZ business number is 7979837 and is registered in New Zealand. Our registered office is at 556 Anglesea Street, Hamilton, New Zealand.
This is a notice to tell you our policy about all information that we record about you, your organisation and your employees and contractors. It covers both information that could identify you and information that could not.
We are extremely concerned to protect your privacy and confidentiality. We understand that all users of our Website, Course and/or Services are quite rightly concerned to know that their data will not be used for any purpose unintended by them, and will not accidentally fall into the hands of a third party. Our policy is both specific and strict. It complies with New Zealand law. If you think our policy falls short of your expectations or that we are failing to abide by our policy, do please tell us.
Except as set out below, we do not share, or sell, or disclose to a third party, any personally identifiable information collected at this site.
Here is a list of the information we collect from you, either through our Website or our Software or because you give it to us in some other way, and why it is necessary to collect it:
Basic identification and contact information, such as your name and contact details.
This information is used:
- to provide you with the services which you request;
- for verifying your identity for security purposes;
- for marketing our services and products;
- information which does not identify any individual may be used in a general way by us or third parties, to provide class information, for example relating to demographics or usage of a particular page or Service.
Market place information
When we obtain information from you specifically to enable you to buy a Service or Course feature offered on our website by some other person, we assume that in giving us your information, you are also giving us permission to pass it to the relevant person.
Your domain name and email address
Your domain name and e-mail address are recognised by our servers and the pages that you visit are recorded. We shall not under any circumstances divulge your e-mail address to any person who is not an employee or contractor of ours and who does not need to know, either generally or specifically. This information is used:
- to correspond with you or deal with you as you expect;
- in a collective way not referable to any particular individual, for the purpose of quality control and improvement of our site;
- to send you news about our Courses and/or Services or any other information we deem relevant or important to you;
- to tell you about other of our services or services of others we deem relevant to you.
Information you post on our website
Information you send to us by posting to a forum or blog or in your advertisement is stored on our servers. We do not specifically use that information except to allow it to be read, but you will see in our terms and conditions that we reserve a right to use it in any way we decide.
Website usage information
Financial information relating only to your credit cards
This information is never taken by us either through our website or otherwise. At the point of payment, you are transferred to a secure page on the website of DPS, ThriveCart, Stripe or some other reputable payment service provider. That page may be dressed in our “livery”, but it is not controlled by us. Our employees and contractors never have access to it.
Note on padlock symbols and other trust marks
Many companies offer certification and an icon or other small graphic to prove to site visitors that the site is safe. Some certify to a high level of safety. Others are more concerned to take our money than to provide a useful service. We do not handle information about your credit card so do not subscribe to any such service. However, we suggest you assess this notice to judge that we do take your privacy seriously.
Financial information about your direct debit or your credit cards
When you have agreed to set up a direct debit arrangement, the information you have given to us is passed to our own bank for processing according to our instructions. We do not keep a copy.
We retain your information securely
We keep your financial information to provide you with a better shopping experience next time you visit us and to prevent fraud.
We use Secure Sockets Layer (SSL) certificates to verify our identity to your browser, and to encrypt any data you give us when you buy, including financial information such as credit or debit card numbers. Our SSL certificate encryption level is 128-bit. Whenever we ask for financial information, you can check that SSL is being used by looking for a closed padlock symbol or other trust mark in your browser URL bar or toolbar.
We take the following measures to protect your financial information:
- we keep your financial information encrypted on our servers.
- we do not keep all your data, so as to prevent the possibility of our duplicating a transaction without a new instruction from you.
- access to your information is restricted to authorised staff only.
- we automatically delete your information when the card expires.
- if we ask you questions about your financial information, we shall show partial detail the last four digits of the debit or credit card number, only enough to identify the card(s) to which we refer.
To assist in combating fraud, we share information with credit reference agencies so far as it relates to clients who instruct their credit card issuer to cancel payment to us without having first provided an acceptable reason to us and given us the opportunity to refund their money.
Business and personal information
This includes all information given to us in the course of your business and ours, such as information you give us in your capacity as our client. We undertake to preserve the confidentiality of the information and of the terms of our relationship. It is not used for any other purpose. We expect you to reciprocate this policy.
We keep information which forms part of our business record for minimum of seven years. That is because we may need it in some way to support a claim or defence in court. That is also the period within which our tax collecting authorities may demand to know it. This does not include your confidential employee files and correspondence. You release us of all obligations upon terminating the service.
Third party advertising
Cookies are small text files that are placed on your computer’s hard drive through your web browser when you visit any website. They are widely used to make websites work, or work more efficiently, as well as to provide information to the owners of the site.
You can manually disable cookies at any time – check your browser’s ‘Help’ to find out how. This will not affect your ability to view the site.
- to allow essential parts of our website to operate for you.
- to operate our content management system.
- to operate the online notification form – the form that you use to contact us for any reason. This cookie is set on your arrival at our website and deleted when you close your browser.
- to enhance security on our contact form. It is set for use only through the contact form. This cookie is deleted when you close your browser.
- to collect information about how visitors use our site. We use the information to improve your experience of our site and enable us to increase sales. This cookie collects information including the number of visitors to the site, where visitors have come to the site from, and the pages they visited.
- to record that a user has viewed a webcast. It collects information in an anonymous form. This cookie expires when you close your browser.
- to record your activity during a web cast. For example, as to whether you have asked a question or provided an opinion by ticking a box. This information is retained so that we can serve your information to you when you return to the site. This cookie will record an anonymous ID for each user, but it will not use the information for any other purpose.
- to store your personal information so that you do not have to provide it afresh when you visit the site next time.
- to enable you to watch videos we have placed on YouTube. YouTube will not store personally identifiable cookie information when you use YouTube’s privacy-enhanced mode.
Sending a message to our support system
When you send a message, we collect the data you have given to us in that message in order to obtain confirmation that you are entitled to receive the information and to provide to you the information you need. We record your request and our reply in order to increase the efficiency of our business.
When we receive a complaint, we record all the information you have given to us. We use that information to resolve your complaint. If your complaint reasonably requires us to contact some other person, we may decide to give to that other person some of the information contained in your complaint. We do this as infrequently as possible, but it is a matter for our sole discretion as to whether we do give information, and, if we do, what that information is.
We may also compile statistics showing information obtained from this source to assess the level of service we provide, but not in a way that could identify you or any other person.
Third party content
Content you provide to us
If you provide information to us with a view to it being read, copied, downloaded or used by other people, we accept no responsibility for what that third party may do with it. It is up to you to satisfy yourself about the privacy level of every person who might see your information. If it is available to the entire World, you have no control whatever as to how it is used.
With your permission we pass your email address and name to selected associates whom we consider may provide services or products you would find useful. You may opt out of this service at any time by emailing us.
Information we obtain from third parties
Although we do not disclose your personal information to any third party (except as set out in this notice), we do receive data which is indirectly made up from your personal information, from software services. No such information is identifiable to you.
This is information given to us by you in your capacity as an affiliate of us or client of ours. Such information is retained for business use only. We undertake to preserve the confidentiality of the information and of the terms of our relationship. It is not used for any other purpose. We expect any affiliate to agree to reciprocate this policy. As an exception to this, we have the right to disclose your first name and URL of your affiliate connection to other affiliates and to any other person or organisation, on and off site. The reason is solely to enable us to mention winners and others whose performance as an affiliate is in some way outstanding.
Use of site by children
We do not market to children, nor do we sell products or services for purchase by children. If you are under 18, you may use our site only with consent from a parent or guardian.
Disclosure to Government and their agencies
We are subject to the law like everyone else. We may be required to give information to legal authorities if they so request or if they have the proper authorisation such as a search warrant or court order.
At any time you may review or update the personally identifiable information that we hold about you, by contacting us by email. To better safeguard your information, we will also take reasonable steps to verify your identity before granting access or making corrections to your information.
Sale of your personal information
Except as specified above, we do not rent, sell or otherwise disclose any of your information to any person outside our business.
Data may be “processed” outside the New Zealand
We use hosting services in New Zealand and Australia. Accordingly, data obtained within the New Zealand may be processed and stored outside New Zealand and data obtained in any other country may be processed and stored within or outside that country.
Compliance with the law
This policy has been compiled so as to comply with the law of every jurisdiction in which we aim to do business. If you think it fails to satisfy the law of your country, we should like to hear from you, but ultimately it is your choice as to whether you wish to use our website.
Removal of your information
If you wish us to remove personally identifiable information from our website, you may contact us by email. To better safeguard your information, we will also take reasonable steps to verify your identity before granting access or making corrections to your information.