Staffsale Group Privacy Policy
INTRODUCTION
Staffsale is strongly committed to protecting your privacy. This privacy notice and statement ("Privacy Policy") explains how we, Staffsale Limited and its group entities (referred to as "Staffsale," "we," "our," or "us") collect, store, use, and share your personal data (each is "processing"). It also explains the rights you have and control you can exercise over your personal data.
"Personal data or personal information" means any information relating to an identified or identifiable living person. This Privacy Policy does not apply to non-individual’s data. Please read this Privacy Policy in conjunction with our Terms and Conditions of Use on our website.
DATA COLLECTION
When and how Staffsale collects personal data: When you supply stock or other goods to us, purchase our products, use our services, or interact with us, you may share some personal data with us. We may collect information directly from you when you do business or interact with us or through third parties such as your employer or organization. The personal data we collect may be provided in forms/documents that you have completed (including contracts), face-to-face meetings, email messages, telephone conversations, or when you use our websites, apps, or our social media platforms or other platforms.
Types of Personal Data Collected: Staffsale may collect the following types of personal data (the list is not exhaustive):
● Contact information: your name, position, role, organization, telephone number, email, and postal address;
● Business information: data identifying you in relation to matters in which you are involved;
● Your logon ID and password: for access to our website, apps, or other platforms;
● Attendance records: to record your attendance at our offices for security purposes;
● Subscriptions/preferences: when you subscribe to receive marketing materials, other updates, briefs, newsletters, or other information as well as consent preferences to help us identify which materials you are interested in receiving;
● Events data: attendance at and provision of feedback forms in relation to our events;
● Supplier data: contact details and other information about you or your organization where you supply stock/goods and/or services to us;
● Customer data: contact details and other information about you or your organization where you purchase or receive stock/goods and/or services from us;
● Social media: posts, likes, tweets, and other interactions with our social media presence;
● Information from public sources: e.g., LinkedIn and similar professional networks, directories, or internet publications;
● Online data: when you access this website and our technology services, information about your visit including URL clickstream to, through and from our website (including date and time), information about your network as such as information about devices, nodes, configurations, connection speeds, and network application performance; pages viewed or searched for, page response times, download errors, length of visits and interaction information (such as scrolling, clicks, mouse-overs) and whether you click on particular links or open our emails;
● Special categories of personal data: such as dietary, disability, or similar requirements for events and meetings only to the extent necessary for a specific purpose. If you do not provide this data, we may not be able to respond to your particular needs or preferences; and
● Criminal record data: where permitted by national law and appropriate to do so, such as the existence of prior criminal offenses (or confirmation of a clean criminal record). We may seek your consent in a pre-employment process to ensure the safety and security of Staffsale and the workplace.
● Biometric data: to the extent permitted by law, we may collect, use, or otherwise process fully or partially automated recognition of individuals based on biological or behavioral characteristics, such as facial recognition technology.
Generally, we do not collect any special categories of personal data such as race, nationality, political opinions or political affiliations, religious or philosophical beliefs, medical health, financial accounts, location tracking data that uniquely identifies someone, or sexual orientation. If you choose to provide such data for any reason, you are deemed to have given your explicit consent to us to process that information in accordance with this Privacy Policy. We will only process such data when such processing has specific purposes and otherwise in accordance with this Privacy Policy.
Children and young persons We treat the safety of children and young persons seriously when they use the internet. Our websites, applications, and other online platforms are not intended for use by children or young persons. Therefore, we do not intend to collect personal data from individuals under the age of 16 years of age. If you have any concerns about the collection of personal data from children and young persons, please do not hesitate to contact us at Staffsale.
LEGAL REASONS FOR PROCESSING YOUR PERSONAL DATA
We will process your personal data if and to the extent permitted by law. The legal basis for processing your personal data may vary depending on the jurisdiction.
● We will process your personal data if you have given us explicit consent for a particular purpose(s).
● We may process your personal data if it is necessary to perform our obligations under a contractual relationship with you.
● We may process your personal data if it is necessary to comply with a legal or regulatory obligation.
● We may process your personal data if it is necessary to deal with a legal claim.
● We may process your personal data if it is necessary for our legitimate business interests or those of a third party, provided these interests do not interfere with your fundamental rights.
Please note that the specific legal basis for processing your personal data may depend on the circumstances and applicable laws in your jurisdiction.
WHY WE NEED TO PROCESS YOUR PERSONAL DATA
We may process your personal data for any or all of the following purposes:
● Buying, selling, or supplying services and/or goods and managing suppliers and customers.
● Managing and administering our business relationship with you, your company, or organization, including keeping records about business contacts, services, and payments. This allows us to customize our offerings/products and/or services for you, develop our relationship, and target our marketing and promotional campaigns.
● Sending emails, newsletters, and other messages to keep you informed of market insights, our product offerings, and services.
● Running briefings, roundtables, and other events.
● Conducting customer surveys and gathering feedback.
● Carrying out Know-Your-Client (KYC) due diligence under anti-money laundering, sanctions screening, and other crime prevention and detection laws and regulatory requirements.
● Monitoring our website, apps, platforms, and other technology services to ensure appropriate usage and optimize their functionality.
● Providing security to our offices and other premises by collecting your name and contact details on entry.
● Protecting our information assets and technology platforms from unauthorized access or usage, as well as monitoring for malware and other security threats.
● Complying with our legal and regulatory obligations.
● Pursuing our legitimate business interests, which may include operating, developing, and improving our businesses, offerings, and operations; maintaining data security; processing and marketing meat products and other offerings; managing our business and relationship with you, your company, or organization; understanding and responding to inquiries and client feedback; understanding how our customers use our services and websites; improving our services and product offerings; enforcing our terms of business and website, ensuring system and premises security; managing our supply chain; developing relationships with suppliers, customers, and business partners; ensuring payment of debts; and sharing data in connection with acquisitions and transfers of our business.
In cases where we need to transfer your personal data due to a merger, division, dissolution, bankruptcy, or other reasons, we will inform you of the name and contact information of the data recipient. The recipient will continue to adhere to the obligations stated in this Privacy Policy. If the data recipient changes the original processing purposes or methods, we will obtain the necessary consent from you again.
WHO CAN WE SHARE YOUR PERSONAL DATA WITH
We will only share your personal data in strict accordance with the terms of this Privacy Policy.
Transferring your personal data: As a global organization, the personal data we collect may be transferred internationally within our worldwide organization. When we transfer or share your personal data, we will seek your express consent (including separate consent if the transfer is out of Mainland China) to do so, or we will anonymize your personal data. Your personal data may be exchanged within Staffsale and among its group entities for administrative purposes and to have a complete overview of your contacts and contracts. We may also exchange your data to offer you a complete package of services and products.
Cross-border transfers of personal data: As a general policy, we will not transfer your personal data to any recipient in a country outside of New Zealand or the European Economic Area (EEA) unless the recipient country has sufficiently comparable privacy or data protection laws and regulations that recognize your individual privacy rights in a similar way to the New Zealand Privacy Act 2020 (in the case of transfer out of NZ) or the General Data Protection Regulation (GDPR) (in the case of transfer out of the EEA).
If your personal data is transferred to a recipient in a country that does not provide the same level of protection for personal data as New Zealand or the European union, we will take measures to ensure that your personal data is adequately protected in line with locally applicable data protection requirements. For example, we may use Standard Contractual Clauses approved by the European Commission (for transfers out of the EEA) or model contractual clauses approved by the Privacy Commissioner (for transfers out of New Zealand).
For personal data collected by our Chinese entities, we will not transfer your personal data to any recipient in a country outside of Mainland China unless the data export is in compliance with the requirements of the PRC's Personal Information Protection Law.
Access to your personal data by external parties: The following types of external parties may have access to your personal data when necessary:
● Partners, suppliers, distributors, vendors, or agents involved in delivering the products and services you have ordered from us.
● Our customers.
● Companies engaged to perform services for us or on our behalf.
● Law enforcement bodies, regulators, or other competent authorities in accordance with legal requirements.
● Debt-recovery organizations, credit reference agencies, fraud-prevention agencies, business-scoring agencies, or other credit scoring agencies.
● Third parties for joint promotions, responsible for their own compliance with applicable privacy laws.
● Third parties that we use for marketing, such as approved media agencies and advertising platforms like Facebook, to serve you online advertisements.
● Third parties in the context of the acquisition or transfer of any part of our business or in connection with business reorganization.
● Other delegates, where your name will appear on the attendee list for events where you have expressed your intention to attend.
The use of your personal data by data processors: When we grant third parties access to your personal data, we will take all reasonable measures to ensure that they only process your personal data to the extent necessary. These external parties will only process your personal data as data processors in accordance with applicable law.
DISCLOSURE TO OTHERS
We may provide your personal data to regulatory bodies, tax authorities and/or investigating authorities in New Zealand in limited circumstances. We will do so only if we are obliged by law or regulation, or if you consent to us disclosing this information.
PERSONAL DATA ABOUT OTHERS
In some cases, you may provide personal data to us about other people (such as your customers, directors, officers, shareholders or beneficial owners). You must ensure that you have given those individuals an appropriate notice that you are providing their information to us and have obtained their consent to that disclosure.
SECURITY
We prioritize the security of all the data we hold and will make every reasonable effort to keep your information secure in accordance with best practices. This includes taking reasonable steps to prevent unauthorized use or disclosure of your information. However, it's important to note that the transmission of information over the internet is not entirely secure. While we will implement reasonable measures to protect your personal data, we cannot guarantee the security of any data transmitted, and any transmission is done at your own risk.
We have both ethical and legal obligations to securely hold information and use it appropriately, as outlined in our Privacy Statement. If you believe that we have violated these obligations, please contact our Privacy Officer by emailing privacy@staffsale.co.nz
where WILL YOUR INFORMATION BE HELD?
Because we have global business operations and interests, we may transfer and hold your personal data out of your local jurisdiction or region. Privacy laws vary by country. We will take all reasonable steps to protect your information in line with locally applicable privacy or data protection requirements.
STORAGE OF INFORMATION IN CLOUD SYSTEMS
We may store your personal data within services provided by New Zealand or offshore cloud service providers. When we do so, this makes no difference to our obligation to respect and protect your privacy and our cloud service providers must only use the data for purposes lawfully authorised by us.
HOW LONG DO WE KEEP YOUR DATA?
We retain your personal data for as long as is necessary for the purpose for which it was collected. We may hold personal data for such longer periods as may be required by law or regulation or as may be necessary to fulfil our legal obligations or defend our legal rights. When the personal data that we collect is no longer required by law or otherwise, we destroy, delete or permanently anonymise it.
YOUR RIGHTS
You have the right to:
● Access: ask us if we hold personal data about you or are processing your personal data and, if we are, you can request access to your personal data. For your own privacy and security, we may, at our discretion, require you to prove your identity before providing the requested information. If you wish to make a request you can email us directly.
● Rectification: request that any incomplete or inaccurate personal data we hold about you is rectified. If we do not agree with your request, you have the right to have a statement of correction added to the information we hold about you.
● Deletion: ask us to delete or remove personal data in certain circumstances. There are also certain exceptions where we may refuse a request for erasure, for example, where the personal data is required for compliance with law or in connection with claims.
● Suspension: ask us to suspend the processing of certain of your personal data about you, for example if you want us to establish its accuracy or the reason for processing it.
● Transfer: ask us to help you request the transfer of your personal data to another party.
● Objection: where we are processing your personal data based on a legitimate interest (or those of a third party), you may challenge this. However, we may be entitled to continue processing your data. You also have the right to object where we are processing your personal data for direct marketing purposes.
● Withdraw consent: where you have consented to our processing your personal information, you may withdraw such consent at any time.
If you want to exercise any of these rights, please contact us.
PRIVACY BREACH
We are committed to protecting the personal data we collect and take privacy very seriously. We have strict privacy breach policies and procedures we will enact if a privacy breach occurs. If you have any concerns or become aware of a privacy breach affecting us, please bring this to our attention immediately by contacting us through our privacy officer at privacy@staffsale.co.nz
If you have any concerns, please let us know so that we can do our best to resolve your questions or concerns. Raising your concerns early will help us sort out any problems quickly, saving you time and stress. If you still have concerns about our Privacy Policy, or how we have responded to your requests, you have a right to lodge a complaint with the Office of the Privacy Commissioner here.
https://www.privacy.org.nz/your-rights/making-a-complaint/
DIRECT MARKETING
We may use the information you give us on our website or other means for direct marketing purposes to provide emails, newsletters and other messages to keep you informed of legal developments, market insights and of our services including events that we think may interest you.
You can opt-out of receiving direct marketing from us at any time by changing your marketing preferences on your online accounts settings page, clicking on the "unsubscribe" link included at the end of any marketing email we send to you, or by contacting us.
LINKS TO THIRD PARTY WEBSITES
Our website, newsletters, email updates and other communications may, from time-to-time, contain links to and from the websites of others. The personal data that you provide through these websites is not subject to this privacy notice and the treatment of your personal data by such websites is not our responsibility.
If you follow a link to any other websites, please note that these websites have their own privacy notices which will set out how your information is collected and processed when visiting those sites.
CHANGES TO OUR PRIVACY POLICY
We may change this Privacy Policy notice from time-to-time by publishing an updated version here. Please review this policy periodically to stay informed about how we are protecting your data.
This Privacy Policy was last updated in June 2023.
CONTACT US
If you have any questions or complaint about how we use your personal data, please contact us by contacting our privacy officer by emailing: privacy@staffsale.co.nz