Privacy Policy
Privacy Policy
Donorbees
Date of last revision: July 2025
Introduction
This is the privacy policy (Privacy Policy) for Donorbees Limited (Donorbees).
Donorbees is also referred to as “we” and “us” in this Privacy Policy and when referred to, such reference includes any person or organisation to which it has licensed or assigned its rights and obligations.
When we refer to “Personal Information” throughout this Privacy Policy, we mean personal information as defined in the Privacy Act 2020 (Privacy Act), being any information about an identifiable individual.
When we refer to “our Website” we mean donorbees.org.nz.
When we refer to “our Webapp” we mean app.donorbees.buzz
When we refer to services provided by Donorbees (Services) through our Webapp, we mean, among other things:
- Your giving wallet;
- Your donations summary;
- Your donation preferences; and
- Charity news,
as these things are described in our Terms of Use (which you can view here).
We recognise that donating is a very personal process and Donorbees is committed to protecting Personal Information and privacy rights generally. Please read this Privacy Policy and find out how to contact us if you have concerns about the handling of your Personal Information.
This Privacy Policy applies to all of your Personal Information held by Donorbees, whether provided by you or collected from you or another source in accordance with this Privacy Policy.
This Privacy Policy sets out how we will collect, use, disclose, and protect Personal Information. It also covers how we make the Personal Information that we hold available to you for access and/or correction by you.
When dealing with Personal Information, Donorbees will comply with this Privacy Policy and with the Privacy Act. If you live elsewhere in the world and provide us with Personal Information, you do so at your own risk knowing that you are providing us with Personal Information (which we will deal with as if you were subject to the New Zealand Privacy Act).
This Privacy Policy does not limit or exclude any of your rights under the Privacy Act.
Collection of Personal Information
We will collect and store any Personal Information that you submit to us in the course of your interaction and/or engagement with us, which may include without limitation, your name, email address, other information you choose to provide to us (including your phone number and physical address and IRD number).
We will also collect and store any Personal Information (which may include without limitation, your name, email address, and IRD number) supplied to us by your employer in line with the agreement entered in to, to provide payroll giving services.
We will collect Personal Information when you contact us, visit our Website, make an enquiry, sign up as a registered user, use or request to use our Services or otherwise provide us with your Personal Information.
Donorbees will not collect, store or process any personal banking information.
When you visit our Website
We do not automatically collect Personal Information when you visit our Website.
We may however, collect non-identifying information about your use of our Website, for the purposes of improving our Services in order to increase the positive impact of Donorbees. This user information is collected by using analytics, cookies, web beacons or other similar tracking technologies and includes:
- Internet protocol (IP) addresses;
- User location by city;
- Operating system, browser type, screen resolution and other system information;
- High-level anonymised data about browsing activity on our Website and the sites you visit before and after visiting our Website; and
- High-level anonymised data about interaction with the emails we send (for example, how many people opened an email, how many people clicked on links within an email).
A cookie is a small text file that our Website may store on your device, which helps us to improve your user experience when you use our Website. Cookies will not collect identifiable information about you but will identify your device. You can modify the security settings in your internet browser to disallow the placement of Cookies on your electronic device, although this may impact your experience of our Website.
How we may use Personal Information
We may use your Personal Information:
- to provide you with our Services;
- to facilitate your use of our Services;
- to communicate with you
- to provide you with information about Donorbees or changes on our Website or our Webapp;
- to respond to your requests, enquiries, feedback, or other customer service-related activities;
- to analyse and improve our Website or our Webapp from time to time;
- to further our relationship with you, including for our own marketing purposes, if you have subscribed to receive marketing communications from us;
- to conduct research and statistical analysis (on an anonymised basis);
- to protect and/or enforce our legal rights and interests, including defending any claim; and
- for any other purpose authorised by you or permitted by law.
You may choose not to provide any Personal Information to us or not to provide complete information. However, as a result we may not be able to provide our Services and/or our Website or Webapp to you, communicate with you including providing receipts or donation confirmation, inform you of changes to our Services, or respond to any related queries.
We may use aggregated information to improve and develop our Services, undertake statistical analysis, and meet our legal obligations. This aggregated information is not associated with any individual person and will not be used in a manner that would identify any individual personally.
Storage and security of Personal Information
We take the security of your Personal Information seriously and require our personnel to comply with their legal obligations to protect your Personal Information.
We store information in electronic records, which may include storage on the cloud. We take reasonable steps to ensure the safety of your Personal Information, to protect Personal Information against loss, unauthorised access, use, modification, disclosure, or other misuse.
Any organisations that provide us with support services are required to appropriately safeguard the privacy of any Personal Information provided to them. Without limiting the foregoing, we or our service providers may store your Personal Information using third party cloud-based services and storage subject to appropriate safeguards.
Donorbees may provide links to third party websites for the benefit of users. Donorbees does not control the content or privacy policies of these sites, nor do we endorse these organisations except where expressly stated.
Disclosing Personal Information
We will not sell, lend, or trade Personal Information to any third party, including the charities you support or donate to unless you give us explicit permission to do so.
We will not disclose your individual donation information, except as set out in this Privacy Policy as updated from time to time. Donorbees will always aggregate and de-personalise donation and fundraising data for the purposes of promotion and public reporting of Donorbees activity, including reporting to charities about donations received and employers about payroll giving activity.
We will not disclose Personal Information to any third party, except for the purposes for which it was collected, and for directly related purposes, including:
- providing our Services to you;
- communicating with you;
- independent audits as required from time to time for Donorbees reporting requirements;
- ensuring compliance with legal obligations (which will be done on an anonymised basis where possible);
- for internal purposes relating to maintaining and improving our Services;
- engaging any third-party services or service providers required in connection with our Services;
- when you have authorised us to do so;
- when we reasonably believe we are required or permitted to do so by law;
- if we believe that the disclosure is reasonably necessary to enforce any legal rights or obligations we may have;
- if we sell/transfer our business to a third party;
- where it is necessary to do so to resolve a complaint you make about us; and
- if, in an emergency situation, it is necessary or desirable to share your Personal Information with a civil defence or government organisation, or another emergency service.
If at any time we need to send Personal Information outside of New Zealand to an overseas agency that may use the information for its own purposes, we will:
- take steps to ensure that we believe on reasonable grounds that the overseas agency receiving the Personal Information is subject to privacy protections that, overall, provide comparable safeguards to those provided under New Zealand privacy laws; or
- enter into a binding contractual agreement with the overseas agency receiving the Personal Information confirming that it will protect the Personal Information in a way that, overall, provides comparable safeguards to those provided under New Zealand privacy laws; or
- obtain the express authorisation of the individual concerned to disclose their Personal Information overseas after expressly informing them that the overseas agency may not be required to protect the information in a way that, overall, provides comparable safeguards to those provided under New Zealand privacy law.
Accuracy, accessing and correcting Personal Information
We will take reasonable steps to ensure that your Personal Information is accurate, up to date, complete, relevant, and not misleading before using or disclosing it in accordance with this Privacy Policy.
You may request access to the Personal Information we hold about you. You may also request an update to, or the correction of, any Personal Information we hold about you.
We will comply with the provisions of the Privacy Act in responding to your request. Where we decide not to make a requested correction to your Personal Information, you may ask us to attach a statement of your requested correction to the information.
In accordance with the Privacy Act, we have the right to, and may, charge a reasonable fee for processing or responding to any request to access or correct Personal Information.
Retention of Personal Information
We will only retain Personal Information for as long as it is required for the purposes for which it may be lawfully used. Where the Personal Information we collect is no longer required, we will securely destroy or delete the information or permanently de-identify it.
If you would like to delete your user account with Donorbees, please contact us using the details in the Contact Us section. When a user account is deleted, all personal information provided in relation to the account will be deleted
Mandatory reporting of Notifiable Privacy Breaches
If your Personal Information is involved in a privacy breach which we reasonably believe has caused or is likely to cause serious harm to you (a Notifiable Privacy Breach), we will comply with our obligations under the Privacy Act, which may involve informing you and recommending what steps you should take in response, and reporting the Notifiable Privacy Breach to the Office of the Privacy Commissioner.
Changes to our Privacy Policy
We may update or change our Privacy Policy at any time by providing you with at least 30 days’ notice, which will be displayed on our Website along with reasons for any change. If you have any questions about our Privacy Policy, or any intended changes, please contact us.
Contact us
If you have any questions, concerns, or a complaint regarding privacy or information handling, please contact us at:
Address: 122 Gardiners Road, Harewood, Christchurch 8051
Phone: +64 27 224 9763
Email: hello@donorbees.org.nz
We will respond to let you know who will be handling your matter and when you can expect a further response.
If you are not satisfied with how we have handled your complaint, you can contact the Office of the Privacy Commissioner on 0800 803 909 or www.privacy.org.nz.