Paul Sumich for Harcourts is committed to protecting the privacy of your personal information.
Paul Sumich is required to comply with the Privacy Act 1993 (Privacy Act) in New Zealand.
COLLECTION OF YOUR PERSONAL INFORMATION
The kinds of personal information we collect and hold about you, and our use of that information, is dependent on the products and services we provide to you.
The products and services that we provide include providing real estate agency services for the buying, selling, leasing, development and advertising of residential properties, and providing services in connection with arranging utility connection, removalists, cleaners, conveyancing, financing and insurance.
Generally, this personal information may include (but is not limited to) your name, address, date of birth, telephone number, email address, details of the products or services you have enquired about, property value. There may be additional personal information collected by us in order to meet our obligations under the Anti-Money Laundering and Countering Financing of Terrorism Act 2009 and its regulations, including (but not limited to) your name, address, date of birth, trust deed(s), and source of wealth.
Generally, we collect your personal information directly from you. From time to time, we may collect personal information about you from third parties (for example, from your representative, from publicly available sources).
When collecting your personal information, we will take reasonable steps to provide you with certain information as required under the Privacy Act, including the purpose of collection, who we may disclose your personal information to, any law that requires or authorises us to collect the information and the main consequences if we do not collect all of the personal information we require. If we collect your personal information from another source, we will take reasonable steps to ensure you are aware of the fact and the circumstances of that collection.
Generally, if we are unable to collect the personal information we require we may not be able to provide you with the products and services you seek. If the information provided is incorrect or incomplete, this may also prevent, limit or otherwise affect our ability to provide products or services to you.
ACCESS AND CORRECTION OF YOUR PERSONAL INFORMATION
The Privacy Act and the GDPR give you the right to access information held about you by us. You may lodge a request to access and correct personal information that we hold about you if you believe it is inaccurate, incomplete, out-of-date, irrelevant or misleading by contacting our Privacy Officer via the contact details shown below.
You may request that we provide you with access to the personal information we hold about you. Generally, we will provide you with access, except in limited circumstances where the Privacy Act permits us to deny access. Any such requests must be made in writing and directed to our Privacy Officer via the details shown below. Under the Privacy Act, we are permitted to charge you a reasonable fee for providing access to your personal information. Please note that no fee will be incurred for requesting access, and if your request for access is accepted we will inform you of the fee (if any) that will be payable for providing access if you proceed with your request.
You may ask us to inform you of the source of any personal information about you that we have collected from a third party. We will provide this at no cost, except in limited circumstances where laws permit us to withhold this information.
You have the right to change the permissions that you have given us in relation to how we may use your data. You also have the right to request that we cease using your data or that we delete all personal data records that we hold relating to you. You can exercise these rights at any time by writing to our Privacy Officer at the address detailed below.
MAKING A COMPLAINT
You may lodge a complaint with us if you believe we have handled your personal information other than in accordance with the Privacy Act. To do so please contact our Privacy Officer via the contact details below. We will confirm receipt of your complaint and set out the time frame we require to investigate your complaint and provide you with a response. We will endeavor to respond as quickly as possible, which will typically be within 14 days of receiving your complaint.
THE PAUL SUMICH WEBSITE
OVERSEAS DISCLOSURE OF YOUR PERSONAL INFORMATION
Generally, we will not disclose your personal information to overseas recipients, except upon your request, or if we are authorised or required to do so by law. Generally, such disclosures will be to members of our international corporate group.
If you consent to the disclosure of your personal information to an overseas entity you understand and agree that:
- the overseas recipient is unlikely to be required to comply with the Privacy Act;
- the overseas recipient may not be subject to privacy laws that are similar to the Privacy Act (and may even be compelled to make certain disclosures of your personal information under the privacy regime applicable to them, for example disclosure to the overseas government authorities);
- Paul Sumich may not take steps to ensure that the overseas recipient handles your personal information in accordance with the Privacy Act;
- the overseas recipient may handle your personal information other than in accordance with the Privacy Act, in which case you will not be able to seek redress for such acts or practices under the Privacy Act; and
- Paul Sumich will not be responsible for, or otherwise liable for the way in which the overseas recipient handles your personal information.
As part of the services offered to you, for example through our Website, the information you provide to us may be transferred to and stored in countries outside of the European Economic Area (EEA) as we use remote website server hosts to provide the website and some aspects of our service, which may be based outside of the EEA, or use servers based outside of the EEA - this is generally the nature of data stored in "the Cloud". It may also be processed by staff operating outside the EEA who work for one of our suppliers, e.g. our website server host, or work for us when temporarily outside of the EEA.
For the purpose of the GDPR, we are the data controller and any enquiry regarding the collection or processing of your data should be addressed to our Privacy Officer at the contact details below.
If you would like further information about the way we manage your personal information, or if you have a privacy-related complaint, please contact our Privacy Officer by telephone on +6421 606 460, by mail at 33-35 Robert St, Whangarei 0110, New Zealand or by email at firstname.lastname@example.org.
OFFICE OF THE PRIVACY COMMISSIONER
More information about your rights and our obligations in connection with your personal information are available from the Office of the Privacy Commissioner at www.privacy.org.nz