Privacy Policy

Last updated:

1. Introduction

Ximthorebrbrizeu ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website ximthorebrbrizeu.ddd.

If you are in New Zealand, the primary law governing our handling of your personal information is the Privacy Act 2020. If you are in the European Economic Area, the UK, or Switzerland, the General Data Protection Regulation (GDPR) or equivalent may also apply. We handle personal information in line with these frameworks where they apply.

2. Who We Are

For the purposes of the Privacy Act 2020, we are the agency responsible for the personal information we hold. For GDPR purposes, where applicable, we act as the data controller. Our contact details are:

  • Company Name: Ximthorebrbrizeu
  • Address: 26 Hansen Road, Frankton, Queenstown 9300, New Zealand
  • Phone: +64 274 426 161
  • Email: question@ximthorebrbrizeu.ink

3. Information We Collect

3.1 Information You Provide

We may collect personal information that you voluntarily provide when you:

  • Fill out our contact form (name, email address, message content)
  • Interact with our website features

3.2 Automatically Collected Information

When you visit our website, we may automatically collect:

  • IP address and general location information
  • Browser type and version
  • Operating system
  • Pages visited and time spent on pages
  • Referring website addresses

4. Legal Basis for Processing

New Zealand: We collect and use personal information only for lawful purposes connected with our business, and we believe collection is necessary for those purposes (as required by the Information Privacy Principles in the Privacy Act 2020). Where the Privacy Act requires consent (for example, certain uses of your information), we will ask for it before we proceed.

European Economic Area, UK, and similar jurisdictions: Where GDPR or equivalent law applies, we may rely on the following legal grounds:

  • Consent: When you have given clear consent for us to process your personal data for specific purposes
  • Legitimate Interests: When processing is necessary for our legitimate interests (such as improving our website), except where overridden by your rights
  • Contractual Necessity: When processing is necessary to respond to your inquiries
  • Legal Obligation: When we must process data to comply with legal requirements

5. How We Use Your Information

We use the information we collect to:

  • Respond to your inquiries and provide customer support
  • Improve and optimize our website experience
  • Understand how the site is used when we enable analytics or similar tools
  • Protect against fraudulent or unauthorized activity
  • Comply with legal obligations

6. Data Sharing and Disclosure

We do not sell your personal information. We may share your data with:

  • Service Providers: Third parties who assist in operating our website and conducting our business (for example hosting, email delivery, or IT support), subject to confidentiality and privacy obligations
  • Advertising and analytics platforms: If we use services such as Google Ads, Google Analytics, or similar tools, those providers may process limited technical or usage information according to their policies and your choices (including cookie preferences where applicable)
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with any merger, sale, or transfer of assets

7. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law. Specifically:

  • Contact form submissions: up to 2 years from the date of submission, unless a shorter or longer period is required for legal, operational, or security reasons
  • Usage or analytics information (if collected): in line with the retention periods of any tools we use, or as described when that collection occurs
  • Records of cookie or preference choices: stored in your browser (for example local storage) as described in our Cookie Policy until you clear site data or withdraw consent

8. Your Rights Under the New Zealand Privacy Act 2020

If you are in New Zealand (or our practices relate to your personal information here), you have rights under the Privacy Act 2020, including to:

  • Access: Ask whether we hold personal information about you, and request access to that information, subject to statutory exceptions
  • Correction: Ask us to correct your personal information if you think it is inaccurate
  • Complaint: Complain to us if you believe we have interfered with your privacy. If you are not satisfied with how we resolve your complaint, you may complain to the Office of the Privacy Commissioner (see below)

We may need to verify your identity before we provide access or make corrections.

9. Your Rights Under GDPR (Where Applicable)

If you are located in the European Economic Area or the United Kingdom, you have the following rights (subject to legal limits):

  • Right of Access: Request copies of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of data processing
  • Right to Data Portability: Request transfer of your data
  • Right to Object: Object to processing of your personal data
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, please contact us using the details provided in this policy.

10. Privacy Breaches (New Zealand)

If a notifiable privacy breach occurs (as defined in the Privacy Act 2020), we will comply with our obligation to notify the Office of the Privacy Commissioner and affected individuals where the law requires us to do so.

11. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

  • SSL/TLS encryption for data transmission
  • Secure server infrastructure
  • Regular security assessments
  • Access controls and authentication procedures

12. Overseas Disclosure

Our website or service providers may be located in or use systems based outside New Zealand. If we disclose personal information to an overseas person or entity, we will take steps that are reasonable in the circumstances to ensure the recipient meets standards comparable to the Information Privacy Principles, where required by the Privacy Act 2020. If GDPR or other laws apply, we will ensure appropriate safeguards (such as contractual clauses) where required.

13. Children's Privacy

Our website is not intended for individuals under the age of 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

14. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Where the law requires us to seek fresh consent or give specific notice, we will do so.

15. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact us:

  • Address: 26 Hansen Road, Frankton, Queenstown 9300, New Zealand
  • Phone: +64 274 426 161
  • Email: question@ximthorebrbrizeu.ink

16. Privacy Regulators

If you are not satisfied with our response to your privacy concerns, you may contact:

  • New Zealand: Office of the Privacy Commissioner — privacy.org.nz
  • European Economic Area / UK: Your local data protection authority, where GDPR or UK GDPR applies