Privacy Policy

Protecting your personal information is important to us, and we comply with New Zealand’s privacy laws. This Privacy Policy explains how iGadget Limited (“iGadget”, “we”, “us” or “our”) collects, uses, and protects your personal information when you use our website iGadget.co.nz (the “Website”). By using our Website, you agree to the terms of this Privacy Policy. If you do not agree, please do not use our Website.

1. What Personal Information We Collect

We only collect personal information that is necessary for our business. The types of personal information we may collect include:

  • Contact Information: Your name, email address, phone number, and shipping/billing address (for example, when you place an order or contact us). This also includes your email if you sign up for our newsletter or marketing emails (you might see a “Enter Your Email Address” subscription box on our site).
  • Account Details: If you choose to create an account, we collect the information you provide for registration, such as your email address and a password. (Creating an account is optional – you may also check out as a guest without an account.)
  • Order and Transaction Information: When you make a purchase, we collect details related to your order. This includes the products you ordered, any specific requests or notes, and transaction details (e.g. payment method and payment confirmations). Note: We do not store full credit card numbers on our servers – payments are processed securely by third-party payment providers (see Section 4).
  • Feedback and Communications: Any information you choose to provide when contacting us or interacting with us – for example, queries you send via our contact form (which asks for your name, email, phone number, and message), emails you send to our support, or feedback/responses you give in surveys.
  • Device and Usage Information: When you visit our site, we automatically collect certain technical information such as your IP address, browser type, device type, and browsing behavior on our site. For instance, we may log what pages you looked at and for how long. We collect this through cookies and analytics tools (see our “Cookies Policy”). This information helps us understand how people use our Website and does not usually identify you by name.

Note: Please do not provide us with personal information about someone else (e.g. ordering on behalf of another person) unless you have their permission to do so and they are aware of this Privacy Policy.

2. How We Collect Personal Information

We collect personal information in a few ways, and for clear purposes:

  • Directly from You: Most information is collected when you directly provide it to us. For example, we ask for your contact and payment details when you place an order on our site so we can process and fulfill your purchase. We also collect information when you create an account, sign up for our newsletter, fill out our contact/wholesale inquiry forms, or communicate with us via email or phone. You provide this information voluntarily so that we can serve you (for instance, we need your address to deliver products to you).
  • Automatically through Your Use of the Website: When you browse or shop on iGadget.co.nz, we use cookies and similar technologies to automatically collect certain technical data (like IP address and device type) and information about your browsing actions (such as pages viewed or products added to cart). We collect this to improve your experience (for example, to remember your cart, or to recommend products) and to help us understand usage patterns (through analytics). See our Cookies Policy for more details on this.
  • From Third Parties: In some cases, we may obtain information about you from other sources. For example, if you use a third-party payment service (like Afterpay or PayPal) during checkout, those services might share with us confirmation of your payment and your name or address to complete the order. If a friend sends you a gift from our site, we might receive your address from them to deliver it. We might also receive information from social media platforms if you interact with our pages (according to your privacy settings on those platforms).

3. How We Use Your Personal Information

We use the personal information we collect to operate our business, to provide and improve our services, and to communicate with you. In particular, we use your information for the following purposes:

  • To Process Orders and Provide Services: We use your information to process transactions and fulfill your orders – for example, using your name and address to ship products to you, and your email to send order confirmations and invoices. We also use contact details to inform you about the status of your order (such as sending you tracking numbers for delivery).
  • To Respond to You: We use your contact information to respond to your inquiries, requests, or issues. If you contact us with a question about a product or a problem with an order, we will use the details you provided to help resolve it and get back to you. We also use information you provide (like feedback or survey responses) to address your comments and improve our customer service.
  • For Account Management: If you create an account, we use your information to maintain your account and allow you to log in, track orders, save addresses, and view your purchase history. This makes future interactions easier and personalized.
  • Marketing and Newsletters: If you have opted in (for example, by entering your email in our newsletter sign-up or by explicitly consenting during a purchase), we will use your name and email to send you promotional communications. These may include news about new products, special offers, or other updates we think may interest you. You can opt out of marketing emails at any time by clicking the “unsubscribe” link in any promotional email or contacting us. We will not send you marketing communications if you have not subscribed or if you opt out.
  • Website Improvement and Analytics: We use data about how visitors use our Website to improve our site’s design, products, and services. For example, we might look at aggregate data from Google Analytics (such as which pages are most visited or how users navigate the site) to make our Website easier to use. This usage information helps us understand what our customers find useful and what might need enhancement.
  • Security and Fraud Prevention: We may use personal and technical information to keep our Website and customers secure. For instance, we might use certain data to verify logins, to monitor for fraudulent transactions, or to detect and prevent suspicious or malicious activity.
  • Legal Compliance and Records: We use and retain personal information to comply with our legal obligations. For example, we keep transaction records for accounting and tax purposes as required by law. If necessary, we might use information to enforce our Terms and Conditions or to comply with a law enforcement request or court order.
  • Internal Records: We maintain internal records of our customers and transactions (e.g. a database of orders, communications, and any service issues). This helps us manage our business (for example, keeping track of inventory warranty claims or returns) and provide you with customer support.

We will only use your personal information for the purposes we collected it for (or closely related purposes). If we no longer need your information for those purposes, we will stop using it or will anonymize it so you can no longer be identified. We do not sell your personal information to third parties.

4. Disclosure of Information to Third Parties

We do not share your personal information with third parties except where it is necessary to carry out our business or as required by law. When we do share data, we limit it to what is needed for that third party to perform their services. Here are the types of third parties we share information with and why:

  • Couriers and Delivery Services: In order to deliver your orders, we provide your name, delivery address, and phone number (if required for delivery) to our courier or postal service. For example, we primarily use CourierPost (NZ Post) for shipping, so your contact details are shared with them (or any alternate courier we use) to get your package to you.
  • Payment Processors and Financial Services: We use trusted third-party payment providers to process payments on our Website. This means when you pay by credit/debit card or other methods, your payment details are handled by companies like Stripe/Shopify Payments (for Visa, MasterCard, American Express, etc.), Afterpay, POLi, Shop Pay, Apple Pay, Google Pay, or PayPal – depending on which payment method you choose. These payment processors receive the necessary personal information to verify and complete the transaction (such as your name, card details or account info, and payment amount). We do not receive or store your full credit card number; for example, if you pay via PayPal or Afterpay, we get a confirmation from them, but we do not see your login credentials for those services.
  • Email and Marketing Platforms: If we send out email newsletters or promotions, we may use an email service provider (a third-party platform) to manage our subscriber list and dispatch emails. If you are subscribed to our marketing emails, your name and email address may be stored on such a platform (for instance, MailChimp, Campaign Monitor, or a similar service). This allows us to design and send our newsletters efficiently. These providers are not allowed to use your email for their own purposes.
  • Analytics and Advertising Partners: We use third-party analytics and advertising tools to understand usage of our site and to reach out to customers. For example, we use Google Analytics to collect information on how users navigate our site, and we use the Meta (Facebook) Pixel for advertising and re-targeting purposes. These tools set their own cookies on our site and may receive certain information about your visit (see our Cookies Policy for details). Third-party vendors like Google and Facebook may use cookies to show you ads based on your past visits to our site. We might use features such as Google Analytics’ remarketing and Facebook Ads targeting, which allow us to advertise to you (or others like you) on other websites or social media after you’ve visited our site. 
  • Important: Any data collected by these analytics and ad partners is used only for the purposes of our site’s analytics and advertising, in accordance with this Privacy Policy and with Google’s and Facebook’s privacy policies. These companies do not get your name or contact details from us, but they may track your browsing information via cookies.
  • Service Providers and Contractors: We employ other companies and individuals to perform functions on our behalf. For example, this can include website hosting providers, cloud storage services, IT support, or customer service tools. These service providers may process or hold personal information only for the purpose of providing their services to us. For instance, our Website might be hosted on secure servers provided by a third-party hosting company, which means personal data is stored on their servers (under strict protections and contractual obligations). We ensure any such contractor is subject to confidentiality and data protection requirements.
  • Business Transfers: If in the future our business is involved in a merger, acquisition, or sale of assets, personal information may be disclosed to the parties involved (e.g., to prospective buyers and their professional advisors) as part of that process. We would ensure that those parties agree to keep the information confidential and use it only for evaluating the business transaction. If a transfer occurs, the successor entity would be bound to the same protections described in this policy.
  • Legal Requirements and Protection: We may disclose personal information where required by law, or when we believe in good faith that such disclosure is necessary to comply with legal obligations. For example, we might have to share information in response to a lawful request by government authorities or to comply with a court order. We may also share information if necessary to enforce our Terms and Conditions or to protect our rights, property, or safety (or that of our customers or others). This could include sharing information with law enforcement or fraud prevention agencies in cases of suspected fraud or security threats.
    Aside from the situations above, we will not share your personal information with any other third parties unless you have given us your consent. We do not sell or rent your personal data to third parties for their own marketing. In all cases where we do share your information with third parties (like those listed above), we ensure it’s only done for the purposes outlined in this policy (or as required by law). Any third party that receives your personal information is expected to safeguard it and only use it for the reasons we provided it to them.

5. International Data Transfers

iGadget is based in New Zealand and most of our operations and data storage occur in New Zealand. In general, we primarily market to and serve customers in New Zealand. For example, our shipping options and free shipping promotions apply to New Zealand addresses. However, in today’s digital business, some of the personal information we collect may be transferred, stored, or processed in other countries. This can happen in a few scenarios:

    • Use of Overseas Service Providers: Some of our third-party service providers (mentioned in Section 4) are located overseas or use servers located outside New Zealand. For instance, if our website is hosted on servers in another country, or if we use an email newsletter service based overseas, your personal data may be stored on those foreign servers. Similarly, analytics and advertising tools like Google and Facebook will transmit data to the United States or other countries where those companies’ servers are located.
    • International Customers: While our store is intended for New Zealand customers, it is accessible online worldwide. If you are located outside New Zealand and choose to provide personal information to us (for example, you place an order from overseas to be shipped to someone in NZ, or you simply browse our site from abroad), then your information will be transferred to New Zealand (where we are) in order for us to process it. We will handle that information in accordance with this Privacy Policy regardless of your country.

Whenever we transfer personal information outside of New Zealand, we take steps to ensure your information remains protected. New Zealand’s Privacy Act 2020 includes rules (Information Privacy Principle 12) for disclosures of personal info overseas. In line with those rules, we will only send or store your personal information in another country if we believe it will be adequately safeguarded there. This may mean the recipient is in a country with privacy laws that the New Zealand Privacy Commissioner has deemed comparable to ours, or we have a contract in place with them requiring your information to be protected to NZ standards. In cases where neither of those applies, we would otherwise seek your consent or use another justification permitted by law before transferring the data overseas.

In simple terms, no matter where your information is held, we will ensure it’s handled securely and in accordance with this Privacy Policy. We remain responsible for its protection. If you have questions about overseas storage or transfers of your personal data, please contact us (see Section 9).

6. Storage and Security of Your Information

We take the security of your personal information seriously. We have implemented reasonable security measures to protect your data from unauthorized access, use, modification, disclosure, or loss. These measures include technical, physical, and administrative safeguards:

  • Secure Systems: Our website uses encryption (HTTPS/SSL) to protect data transmitted between your browser and our site – for example, the personal information you enter during checkout is encrypted in transit. We store personal information on secure servers that have up-to-date protections (such as firewalls, intrusion detection, and regular security audits).
  • Payment Security: All credit card payments are processed through PCI-DSS compliant payment processors. This means we rely on industry-standard security provided by companies like Stripe or PayPal to handle your sensitive payment details. We do not store your full card numbers on our systems to reduce risk.
  • Access Controls: Personal information is only accessible to those on our team (or authorized service providers) who need it to perform their duties. For example, our customer service staff can view your order details to assist you, but they would not have access to your payment card details. We limit administrative access to our systems and use strong authentication methods to prevent unauthorized logins.
  • Employee and Contractor Obligations: All our employees and any contractors with potential access to personal data are bound by confidentiality obligations. They are trained on the importance of privacy and security.
  • Data Retention and Disposal: We retain personal information only for as long as it is needed for our business purposes and as required by law. For instance, we may keep your purchase records for a number of years to satisfy tax and accounting requirements. When we no longer have a legitimate reason or legal obligation to retain your personal data, we will securely delete it or anonymize it. Paper records (if any) are shredded or securely disposed of, and electronic data is securely erased or overwritten.
  • Monitoring and Testing: We monitor our systems for potential vulnerabilities and attacks. We also periodically review our security procedures and update them in line with technological advancements and new threats.

While we strive to protect your information, it’s important to understand that no method of transmission over the internet or electronic storage is 100% secure. We therefore cannot guarantee absolute security. However, we follow best practices and will promptly notify you and the appropriate authorities if any data breach occurs that may compromise your privacy (as required by the Privacy Act 2020). By using our site, you also play a role in security – please keep your account password confidential and notify us immediately if you suspect any unauthorized use of your account.

7. Your Rights: Access and Correction

It’s your personal information, and you have rights regarding it under the New Zealand Privacy Act 2020:

  • Right to Access: You have the right to request confirmation of whether we hold personal information about you, and to access that information. In practice, this means you can ask us to provide you with a copy of the personal data we have about you. For example, you can request details of your customer record or order history that we hold.
  • Right to Correction: If you believe that any personal information we hold about you is inaccurate, incomplete, or out-of-date, you have the right to ask us to correct it. We encourage you to keep your details (such as your contact information) up to date, and we will happily correct any errors. If you have an account on our Website, you can also log in and update certain information yourself (like your contact details).

To exercise these rights, please contact us (see Section 9 for how to reach us). For security, we may need to verify your identity before releasing or correcting any information – this is to ensure we don’t accidentally give your data to someone else. We will respond to your request as soon as reasonably possible, and in any event within the time frames required by law (typically within 20 working days).

If we cannot give you the information you’ve asked for, or we cannot make the correction you request, we will let you know the reason. Sometimes we might have a legal or administrative reason to decline access (for example, if the information also relates to other individuals and can’t be separated, or it’s subject to legal privilege). If we refuse a correction request, you can ask us to attach a statement of correction to the information noting the request and our refusal. We will also inform you of any further steps you can take. Rest assured, aside from these exceptional cases, you will always be able to access and correct your own personal information that we hold about you.

8. Contact Us and Privacy Queries or Complaints

We welcome your questions or concerns about privacy. If you have any questions about this Privacy Policy or about how we handle your personal information, or if you want to request access to/correction of your information, please get in touch with us:

Privacy Officer – iGadget Limited
Email: admin@igadget.co.nz
Phone: 0508 IGADGET (0508 442343) (available Mon–Fri, 9am–5pm) – ask for the Privacy Officer.
Postal Address: (If you prefer to write to us by mail, please send to) iGadget Limited, Attn: Privacy Officer, PO Box [ (address to be inserted) ], New Zealand. (Please check our Website or contact us by email/phone to get our current mailing address.)

Complaints: If you believe that we have not handled your personal information properly or have breached the New Zealand Privacy Act, please contact us and let us know. You can address your complaint to our Privacy Officer at the contacts above. We take privacy complaints seriously and will investigate your complaint and respond to you. We will do our best to resolve any issue with you directly.

If you are not satisfied with our response to any privacy-related concern or complaint, you have the right to escalate the matter to the New Zealand Office of the Privacy Commissioner. The Privacy Commissioner is the independent regulator for privacy law. You can contact the Office of the Privacy Commissioner to report a concern or lodge a formal complaint. For more information, visit the Privacy Commissioner’s website at privacy.org.nz or call them at 0800 803 909.

We encourage you to reach out to us first, so we have the opportunity to address your concerns, but you are free to contact the Commissioner at any time.

9. Changes to This Privacy Policy

From time to time, we may update or revise this Privacy Policy to reflect changes in our practices or for other operational, legal, or regulatory reasons. If we make changes, we will post the updated policy on our Website and update the “Last Updated” date (see below). We will notify you of any significant changes by adding a notice on our Website (for example, a banner or pop-up notification). Any changes will take effect 14 days after we post the updated policy on our site. This gives you time to review the changes. If you do not agree with the updated policy, you should stop using our Website before the changes take effect. If you continue to use our Website after the effective date of the changes, that will indicate your acceptance of the revised policy.
We encourage you to check this page periodically to stay informed about how we are protecting your information.

Last Updated: (This Privacy Policy was last updated on 12 August 2025.)