The Fred Hollows Foundation NZ, incorporated as a charitable trust and registered as a charitable entity (CC23722), and its related entities are totally committed to protecting your personal information. Please read this statement carefully as it describes how we handle your personal information.
In accordance with the New Zealand Privacy Act 2020, we at The Fred Hollows Foundation NZ maintain high standards for the protection of data to ensure that donor information remains private and is only used for the purpose it was collected.
Your personal information is stored in secure databases in New Zealand and overseas.
As required by the Privacy Act 2020, we follow strict security procedures in the storage and disclosure of your personal information. These security procedures mean that we may occasionally request proof of identity before we are able to disclose sensitive information to you.
This Statement is regularly reviewed and if necessary updated to meet legal requirements for privacy. We may revise this Privacy Statement by publishing a revised version on our website. That revised version takes effect from the time it is published.
‘Personal information’ simply put is any information or opinion that can identify or be used to identify you. We collect and hold personal information from our donors, supporters, volunteers, contractors, visitors to our field programmes, and other individuals. For example, if you are a donor, we would collect and hold your name, address, e-mail address, phone number and credit card or bank account details. From time to time, we may collect more detailed personal information, such as when we conduct surveys, but provision of more detailed information is purely voluntary.
Personal information about you may also be collected by us when you speak to someone in our contact centre or send us information via email or postal mail.
Rest assured, we’ll only gather your data when you supply this to us voluntarily. We use this information to ensure we fulfil your request(s).
Collection of personal information
Most of the time, we collect personal information directly from individuals like you at the time you deal with us. For example when you make a donation, send us an email or use our website. From time to time we may obtain personal information from third parties. When we do so, we will take reasonable steps to ensure that we make you aware of the collection of your information in accordance with New Zealand privacy law.
We collect information about our supporters and website users, including:
Use of personal information
We use your personal information primarily to:
Consequences of not providing requested personal information
Where a person does not provide all personal information which may be requested by the Foundation for the purposes outlined above, it may not be possible to process the donation or other matter (as applicable) or carry out the other activities outlined above in relation to that person.
Communications from us
We may use your personal information to send direct marketing messages or telemarketing if we feel it is appropriate to the nature of your relationship with us, e.g. if you make a donation to an appeal, you will receive information about future appeals.
We do not wish to send communications to you that you do not want to receive.
Any electronic communication we send you (either by email or text), except for messages confirming a transaction with us, will always have an unsubscribe facility.
If at any stage you feel that you are receiving communications of any kind from us that you do not want, please contact us. Please allow seven days for us to process your request.
We do not sell your personal information to third parties and, except as provided for in this Privacy Statement we do not make your personal information available to third parties.
Use of email or mobile number for donor communications
During your interactions with us via the website or contact centre, you can supply an email address which we will use to contact you about our service. We do not sell or rent email addresses to third-party organisations.
By default, a visitor/donor is:
If you’d rather not receive these types of communications please contact us
Disclosure of personal information
We generally do not disclose personal information to other organisations unless we believe it is reasonably necessary to conduct the functions and activities of The Foundation, if you give your consent or if it is required or authorised by law including in emergency situations or to assist law enforcement.
We use a range of suppliers, service providers, contractors and partners to enable the activities and functions of The Foundation. They include information technology service providers, direct marketing agencies, banks, credit card companies and recruitment agencies. This means that organisations, and individuals other than us may collect, access and use personal information held by us. We require these third party providers through our agreements with them to comply with our security guidelines and privacy laws.
Security of personal information
We take all reasonable steps to ensure the security of personal information by storing it in a secure environment. If contract service providers are used they will be bound by our Confidentiality Policy. We require our employees, contractors, volunteers, and third party service providers to respect and protect the confidentiality of personal information we hold.
Our electronic database is secured by a firewall to ensure, so far as practicable, that it is not accessed by unauthorised parties. This website has security measures (minimum 128-bit secure sockets layer encryption) designed to protect against the loss, misuse and/or alteration to your personal information under our control. Secure pages on our website are protected by an SSL certificate. A security icon visible on your screen, for example a padlock, confirms that your browser supports SSL security. Click on the security icon to verify the security certificate on this website.
However, all unencrypted information exchanged via the internet may be accessed and used by people other than those for whom it is intended, for example if you send us any personal information by email it is sent at your own risk.
Access to, correction of and deletion of personal information
You may at any time request access to, correction of or deletion of any personal information about you held by us.
Please feel free to contact us to talk about your personal information or the communication we send you.
We are happy to provide you with any personal information that we hold about you, at any time. If it is wrong we will correct it.
Access to personal information outside New Zealand
Some of these external contractors are located or have information handling facilities outside New Zealand. By providing your personal information you give us your consent to disclose your personal information and sensitive information outside New Zealand. You understand that by giving us this consent, we will not be accountable and you will not be able to seek redress under the Privacy Act if the overseas recipient handles information in breach of the New Zealand Privacy Principles. You may also not be able to seek redress in the overseas jurisdiction. Your consent however does not in any way lessen our commitment and the measures we take to protect and secure your personal information and sensitive information.
Dealing with us anonymously
You may request us to deal with you anonymously or through a pseudonym. We will accommodate your request if it is lawful and practical for us to do so. For example, it may not be possible for us to process your donations or accept you as a volunteer if you do not provide the necessary personal information.
We use third party website trackers, such as Google Analytics and Crazy Egg, to collect information on how you use our website. On occasion, random short surveys may also be used to collect further information about our users — participation in these surveys will be entirely voluntary.
Our Website uses a technology called ‘cookies’. A cookie is a small amount of data that is sent to your browser from a web server and stored on your computer’s hard drive to facilitate your shopping experience. The cookies used by us do not collect personal information and we do not combine information collected through cookies with other personal information to tell us who you are, your screen name or e-mail address. Credit card information is never stored in the cookie.
We use services such as Google Analytics, which will issue cookies from their own servers and which will be able to track website visitors throughout our website and through any other sites that use those services.
The services are used to aggregate website statistics anonymously, such as number of page views, the number of unique visitors, time spent on our site, and to determine advertising effectiveness.
We use third party vendors, such as Google, to display advertising on websites across the internet.
For further information and details of how you can opt out of these third party cookies via the Network Advertising Initiative, click here.
Links to other websites
Donations made online on The Foundation's website are processed in real time using a secure payment gateway. Donations are processed in New Zealand (and for all other countries) in New Zealand Dollars. If you have any questions or concerns about making an online donation to The Foundation please contact us.
We will always ensure that your privacy is protected when using our website or when personal data is provided to us by you or another party.
Our website has layers of security to protect it against malicious activity, possible breaches of the system ('cracking') and unauthorised access to customer data.
Your data is not permanently stored on our website.
When you send us an email, it is not encrypted and is therefore not secure.
Credit and debit card security
We work diligently to protect the security of your personal cardholder information, including credit and debit card information.
When you submit personal information including credit card details, a secure server is used. Our electronic database is secured by a firewall to ensure, so far as practicable, that it is not accessed by unauthorised parties. This website has security measures (minimum 128-bit secure sockets layer encryption) designed to protect against the loss, misuse and/or alteration to your personal information under our control. Secure pages on our website are protected by an SSL certificate. A security icon visible on your screen, for example a padlock, confirms that your browser supports SSL security. Click on the security icon to verify the security certificate on this website.
It is important for you to protect against unauthorised access to your information and to your computer. Ensure you logout when you have finished, especially if using a shared computer.
If you send us personal cardholder data by email or by postal mail or provide us with this information over the phone, we have strict processes in place to ensure that we meet the Payment Card Industry Security Standard Council’s payment card industry data security standards and only store cardholder data in a secure encrypted environment.
When The Foundation receive an application for employment personal information that was included in the application may be collected, such as your contact details, career history, education details, eligibility to work in New Zealand, written references and other career-related information. This may also include sensitive information, such as medical information or criminal history.
The following personal information may also be obtained from third parties:
If personal information is obtained from third parties, reasonable and practicable steps will be taken at or before the time of collection (or as soon as practicable after collection) to notify an individual, or otherwise to ensure awareness of the collection of personal information.
Personal information may be collected during the recruitment process for the purpose of assessing and progressing an application, inviting applicants to apply for future positions of interest at The Foundation and conducting statistical reporting and analysis in relation to the recruitment processes. Your personal information for future job opportunities may be held, unless specifically requested to be deleted.
By applying for a job and providing your personal information, an individual is providing consent to collect personal information, using and disclosing it for the purposes set out in this Privacy Statement. This may include disclosing your personal information to referees and also to other third parties that we use to help with the recruitment process. Personal information may also be disclosed to law enforcement agencies to verify whether an individual has a criminal record.
The Fred Hollows Foundation NZ (The Foundation) is committed is committed to upholding the international Donor Bill of Rights.
Philanthropy is based on voluntary action for the common good. It is a tradition of giving and sharing that is primary to the quality of life. To assure that philanthropy merits the respect and trust of the general public, and that donors and prospective donors can have full confidence in the not-for-profit organisations and causes they are asked to support, we declare that all donors have these rights:
We have appointed a designated Privacy Officer who is responsible for investigating any complaints or concerns any person may have about our protection of their privacy. If we become aware of any ongoing concerns or problems concerning our privacy practices, we will take these issues seriously and work to address these concerns.
There are no fees for lodging a complaint. If you wish to make a complaint about how we handle your personal information, please contact our Privacy Officer at The Fred Hollows Foundation NZ, Private Bag 99909, Newmarket, Auckland 1149, New Zealand or firstname.lastname@example.org or 0800 227 229 and ask for the Privacy Officer. Please provide as much detail about the facts surrounding your complaint so we can resolve it accordingly, and allow us at least seven days to respond to your complaint. If we fail to resolve your complaint, you may refer the matter to the New Zealand Privacy Commissioner.
If you have feedback or complaints on any other matter please contact us at email@example.com.
The PCI DSS (Payment Card Industry Data Security Standard) is a set of security standards designed to ensure that companies that accept, process, store or transmit credit card information maintain a secure environment.
The Fred Hollows Foundation NZ is compliant against version 3.2.1 of the PCI Data Security Standards, endorsed by Visa, MasterCard, American Express, and all other leading card brands.