Diana McIntyre, (referred to as “we,” “our,” or “us”) is committed to protecting your privacy and handling your personal information in accordance with the New Zealand Privacy Act 2020 (“the Act”).

This policy explains how we collect, store, use, and share your personal information, and outlines your rights under the Act.

Please note that you are not required to provide personal information, but we may be unable to deliver certain services without it.

For more details about your privacy rights in New Zealand, visit www.privacy.org.nz.

What Is Personal Information?

Personal information means any data that can identify you as an individual. This may include (but is not limited to):

-   Your name, contact details, and address
-   Date of birth and occupation
-   Employment or financial information
-   Banking and payment details
-   Insurance or investment-related data
-   Identity verification documents or evidence
     of source of funds
-   Feedback, reviews, or communications you
     provide.

How We Use Your Information

We may use your personal information to:

-    Verify your identity
-    Deliver financial services and
      communicate with you
-    Recommend relevant products or services
-    Respond to enquiries, requests, or
      complaints
-    Improve our service offerings and
      operations
-    Fulfill our legal and regulatory obligations
-    Any purpose you’ve agreed to, or as
      permitted under the Act.

Who We May Share Your Information With

Your personal information may be shared with:

-    Service providers (e.g. IT, legal, or
      compliance professionals)
-    Insurance companies, or financial product
      providers
-    Financial advisers working through our
      network
-    Compliance reviewers, auditors, or
      regulators
-    Identity verification services such as NZTA
      or DIA
-    Government and regulatory bodies like the
      FMA, Ministry of Justice, or Privacy
      Commissioner
-    CERT NZ or Human Rights Commission, if
      applicable
-    Overseas regulators where needed
-    Any person or organisation you have
      authorised.

We will not share your personal information beyond these circumstances unless legally required or with your consent.

Protecting Your Personal Information

We take steps to keep your data safe, including:

-    Using secure digital platforms
-    Applying encryption, passwords, and
      access controls
-    Storing physical records securely (if \.
      needed).

We retain client data for seven years after our relationship ends, after which it is securely deleted or de-identified.

Accessing or Correcting Your Information

You have the right to access and request corrections to your personal information (subject to any lawful limitations).

To make a request, please contact diana@rapson.co.nz with your ID and details of what you’re requesting.

Data Breaches

If a data breach occurs that may seriously harm you, we will take immediate steps to assess and respond, and will notify you promptly.

Website and Online Use

While we secure our website, sharing personal information online carries some risk. If you visit external websites via links from ours, their privacy policies will apply.

We use cookies and analytics tools to improve performance and personalise content. You can manage these in your browser or opt out via Google Ads settings.

Staying Compliant

We stay current by:

-    Reviewing Privacy Commissioner updates
-    Following CERT NZ recommendation
-    Checking the privacy terms of our
      providers
-    Training staff on data protection.

Policy Updates

We may revise this policy from time to time. Any updates will be posted on our website with a new date. Prior versions are securely stored.

Questions or Concerns

If you have questions about how your personal data is handled or think your privacy has been breached, contact diana@rapson.co.nz. We aim to resolve all concerns promptly.