logo

Privacy Policy

Agency: Chodyrexslozarin, 140 Main South Road, Sockburn, Christchurch 8042, Aotearoa New Zealand. Email: customer@chodyrexslozarin.world. Phone: +64 3 341 1301.

Last updated: 11 May 2026

Purpose

This Privacy Policy explains how we collect, use, disclose, store, and protect personal information when you use chodyrexslozarin.world, email us, or attend programmes in Christchurch. It is drafted to comply with the Privacy Act 2020 (New Zealand), including the Information Privacy Principles (IPPs), and to assist visitors who also benefit from comparable rights under the EU or UK GDPR.

Kinds of personal information

We may collect your name, email address, phone number if you provide it, message content, cookie preference JSON stored locally in your browser, technical metadata from web hosting (such as IP address, user agent, and time stamp), and payment-related records if you purchase services.

Why we collect it (lawful basis)

Under the Privacy Act 2020 we collect personal information only for a lawful purpose connected with our functions and where the information is necessary for that purpose. Examples include: responding to enquiries, performing contracts, meeting tax or accounting duties, keeping our website secure, and—where you opt in—analytics or marketing cookies described in the Cookies Policy.

How we use personal information

We use contact details to reply, schedule studio visits, deliver printed materials, and maintain customer service records. We do not sell personal information. We do not use enquiry data to send unrelated electronic marketing unless you have opted in under the Unsolicited Electronic Messages Act 2007.

Disclosure to third parties

We may disclose limited information to processors who provide hosting, email delivery, payment gateways, or analytics (if enabled). Processors must protect information and use it only on our instructions. Some processors may store data overseas; we assess safeguards required by the Privacy Act 2020 before authorising offshore disclosure.

Overseas disclosure

If information is transferred outside New Zealand, we take reasonable steps to ensure the receiving organisation or jurisdiction maintains safeguards comparable to New Zealand law, or we rely on exceptions permitted by the Act where appropriate.

Retention

Contact form submissions are retained for up to twenty-four months after our last meaningful exchange unless a longer period is required for tax, audit, or ongoing services. Server logs are rotated according to hosting defaults, typically thirty to ninety days. Financial records follow Inland Revenue retention guidance.

Security

We apply access controls, staff confidentiality expectations, HTTPS transport where available, and vendor security reviews. No internet transmission is perfectly secure; avoid sending highly sensitive health or financial information through ordinary email unless encrypted channels are agreed first.

Notifiable privacy breaches

If a privacy breach is likely to cause serious harm, we will assess reporting obligations to the Office of the Privacy Commissioner and notify affected individuals where required by the Privacy Act 2020.

Your rights (New Zealand)

You may request access to personal information we hold about you and ask us to correct it if it is inaccurate. You may complain to the Office of the Privacy Commissioner if you believe we have interfered with your privacy: privacy.org.nz. We will verify your identity before releasing sensitive records.

GDPR addendum (EEA, UK, Swiss visitors)

Where the GDPR applies, we provide additional rights such as erasure, restriction, objection, and portability in line with our role as controller. You may lodge a complaint with your local supervisory authority. Our lawful bases may include contract, legitimate interests balanced against your rights, consent for non-essential cookies, and legal obligation.

Children and young people

This site targets adults coordinating households. If we learn we have collected personal information directly from a child without appropriate guardian involvement, we will delete it promptly.

Automated decision-making

We do not make solely automated decisions that produce legal or similarly significant effects about you.

Updates

We may revise this policy when practices or law change. Material updates appear on this page with a refreshed date.