This policy governs the use of your personal information by OneLend Limited and the OneLend Limited group of entities, referred to as we, us, our or OneLend in this Privacy Policy. References to you or your refer to our clients and any users of our digital platforms (i.e. our website)

Acceptance of this privacy policy

1.You accept this Privacy Policy, and consent to the collection, use, disclosure, storage and retention of your personal information as described in this Privacy Policy when you access or use any our products, services or digital platforms (Services), or otherwise provide us with any of your personal information.

2.We may amend and update this Privacy Policy from time to time by posting a revised version on our website. If the changes are significant, we will notify you directly in writing, including by email. Any amendments will be effective immediately from the date the updated Privacy Policy is posted on our website or from the date we send our notification (as applicable). You may also obtain a copy of the latest version by calling us on 0800 160116.

Your privacy rights

3.OneLend is committed to protecting your privacy and takes its obligations under the Privacy Act 1993 seriously. Any personal information you provide to us will be collected, stored, used and disclosed by OneLend in accordance with this Privacy Policy and otherwise in compliance with the Privacy Act 1993.

4.If you have any questions regarding our Privacy Policy or wish to access or amend the personal information that we hold about you, please contact us using the following details:

OneLend Limited

PO Box 17 163

Greenlane

Auckland, New Zealand

Email: info@onelend.co.nz

How we collect information about you?

5.The types of personal information we collect will vary depending on the nature of your dealings with us. We only collect personal information that is necessary. Where reasonable and practicable, we will collect your personal information directly from you and inform you that we are collecting it.

6.When you use or apply to use one of our Services, enquire about our products and services, or participate in any of our marketing campaigns, promotions or competitions, we may ask you to provide us with personal information, including:

(a)your name, date of birth and contact details, (including your email address, phone number and/or residential address);

(b)banking details and transaction history information;

(c)financial information and supporting documentation (including income, expenses and debts);

(d)credit information such as credit history;

(e)business details and employment information; and

(f)personal references;

(g)details relating to your use of our Services;

(h)details of your enquiry; and

(i)details of any preferences you tell us about (such as subscription preferences).

7.We may also collect information about you from third party credit reporting agencies or publicly available sources (e.g. the internet). Where we have received your express consent to do so, we may also collect personal information about you from your professional advisers, such as a sharebroker or accountant. We are not responsible for the privacy or security practices of those parties and they are not covered by this Privacy Policy.

What happens if you do not provide us your information?

8.If you do not provide information we have requested, you may be unable to obtain or access our Services for which the information is required. Please ask us if you are unsure what information is important and how this might affect you.

Online device information and cookies

9.If you are visiting us through our website, we collect information about your use and experience on these by using cookies. Cookies are small pieces of information stored on your hard drive or on your mobile browser. They can record information about your visit to the site, allowing it to remember you the next time you visit and provide a more meaningful experience.

10.The cookies we send to your computer, mobile phone or other device cannot read your hard drive, obtain any information from your browser or command your device to perform any action. They are designed so that they cannot be sent to another site or be retrieved by any non-Onelend website.

11.When you interact with us through our website, the information collected through the cookies may include:

(a)The date and time of visits;

(b)Website page (or pages) viewed;

(c)The website from which you accessed the internet and our website or other digital platform;

(d)How you navigate through the website and interact with pages (including any fields completed in forms and applications completed (where applicable));

(e)Information about your location;

(f)Information about the device used to visit our digital platform; and

(g)IP address (or addresses), and the type of web browser used.

12.We will not ask you to supply personal information publicly over Facebook, Twitter, or any other social media platform that we use. Sometimes we may invite you to send your details to us through a private message, for example, to answer a question. You may also be invited to share your personal information through secure channels to participate in other activities, such as competitions, but we would obtain your express consent prior to us including you in such activities.

How we use and disclose information that we collect about you?

13.We use and disclose your personal information for the following purposes:

(a)to assess whether you are eligible for our Services;

(b)confirm your identity and register you for the use of our Services;

(c)to facilitate and provide you with our Services;

(d)to communicate with you (for example to provide customer support, or respond to your request for information);

(e)to assess your creditworthiness and your ability to meet your obligations in respect of the use of our Services;

to improve our Services and conduct market and business analysis;

(g)to provide you with information and keep you informed about our Services; and

(h)to comply with any legal or regulatory obligations, including audit requirements.

Who we may disclose your personal information to?

14.We may disclose your personal information to third parties where it is necessary to enable us to achieve the purpose for which the information was collected or the disclosure is directly related to one of the purposes of use set out in this Privacy Policy, where we are required or authorised by law to do so, where we have your authorisation to do so, or where we are otherwise permitted to disclose the information under the Privacy Act 2020. These third parties may include:

(a)our related companies;

(b)our service providers that we have engaged to provide a service to us or who assist us in in providing Services to you, including auditors and external compliance reviewers;

(c)credit reporting and debt collection agencies;

(d)our external dispute resolution service;

(e)courts, tribunals, and regulatory authorities; and/or

(f)any other person or organisation that you have authorised us to disclose your information to.

15.We use third party service providers to store and process most of the information we collect, which may include overseas service providers. Where we do this, it does not change any of our commitments to you to safeguard your privacy. We take reasonable steps to ensure that our service providers are subject to appropriate security and information handling arrangements and the information remains subject to confidentiality obligations. We currently use Microsoft Azure cloud servers located in New Zealand.

16.All countries have different privacy laws and information protection standards. If we disclose your personal information to a third party outside of New Zealand who will use the information for their own purposes, we will take appropriate measures to protect your personal information in accordance with our obligations under the Privacy Act 2020. Where it is not possible to ensure that appropriate security and information handling arrangements are in place, we will let you know and gain your consent prior to disclosing your personal information to an overseas third party.

17.Under no circumstances will we sell or receive payment for disclosing your personal information.

Access, correction and retention of your personal information

18.You agree that any information you give to OneLend will be accurate, correct and up to date, and that when acting on behalf of a business or another person, you are authorised to give such information to us.

19.You must inform us if any of your personal information changes, to ensure that the details we hold about you are up to date and correct.

20.You have the right to request access to and correction of the personal information we hold about you. You can do so by contacting us at:

PO Box 17 163, Greenlane Auckland, New Zealand

Or via email at info@onelend.co.nz

21.When you contact us with such a request, we will take steps to update your personal information, provide you with access to your personal information and/or otherwise address your query within a reasonable period of time after we receive your request (and in any case within 20 working days). To protect the security of your personal information, you may be required to provide identification before we update or provide you with access to your personal information.

22.There is no fee for requesting that your personal information is corrected or for us to make corrections. In processing your request for access to your personal information, a reasonable cost may be charged. This charge covers such things as locating the information and supplying it to you.

23.There are some circumstances where we are not required to give you access to your personal information. If we refuse to give you access or to correct your personal information, we will let you know our reasons, except if the law prevents us from doing so.

24.If we refuse your request to correct your personal information, you also have the right to request that a statement be associated with your personal information noting the correction sought.

25.If we refuse your request to access or correct your personal information, we will also provide you with information on how you can complain about the refusal.

26.We will only retain your personal information for as long as it is required to achieve the purposes set out in this Privacy Policy. In the case of information that relates to our advice services or products or services we have provided, we are required by law to hold this information for seven years. After this time, provided that the personal information is no longer relevant to any other service we are providing you, we will take reasonable steps to safely destroy or de-identify your personal information. We have a records management policy that governs how we manage our information and records to enable us to destroy any information that is outdated, irrelevant or no longer necessary.

Security of information

27.We strive to ensure your personal information and privacy is safeguarded in accordance with our obligations under the Privacy Act 2020. Despite this, we do not make any warranties in relation to the security of any information you disclose or transmit to us. We are not responsible for the theft, destruction, or inadvertent disclosure of your personal information where our security measures have been breached.

28.Some information we hold about you will be stored in paper files, but most of your information will be stored electronically on physical hard drives and/or on the cloud, by our cloud service providers.

29.If we experience a privacy breach, where there is a loss or unauthorised access or disclosure of your personal information that is likely to cause you serious harm, we will, as soon as practicable after becoming aware of the breach:

(a)Seek to quickly identify and secure the breach to prevent any further breaches and reduce the harm caused;

(b)Assess the nature and severity of the breach, including the type of personal information involved and the risk of harm to affected individuals;

(c)Advise and involve the appropriate authorities where criminal activity is suspected;

(d)Where appropriate, directly notify any individuals who are affected by the breach or place a notice on our website advising our clients of the breach; and

(e)Notify the Privacy Commissioner.

30.If we provide you with any passwords or other security devices, it is important that you keep these confidential and do not allow them to be used by any other person. You should notify us immediately if the security of your password or security device is breached, this will help prevent the unauthorised disclosure of your personal information.

Public statements

31.We reserve the right to make such public comments as may be necessary to respond to any statements you make in relation to us, the Service, or the relationship we have with you, and/or correct any misconceptions or errors of fact.

Participants outside New Zealand

32.By using the Service and providing us with your personal information, you acknowledge and agree that your personal information may be processed for the purposes set out in this Privacy Policy and otherwise in accordance with New Zealand law.

Third party websites

33.Through our website or our other social media pages, you may be able to link to other websites which are not under our control. We are not responsible for the privacy or security practices of those third-party websites and the sites are not covered by this Privacy Policy. Third party websites should have their own privacy and security policies and we encourage you to read them.

34.In addition, we have no knowledge of (or control over) the nature, content, and availability of those websites. We do not sponsor, recommend, or endorse anything contained on these linked websites. We do not accept any liability of any description for any loss suffered by you by relying on anything contained or not contained on these linked websites.

Public statements

35.If you are concerned about how your personal information is being handled or if you feel that we have compromised your privacy in some way, please contact us at:

PO Box 17 163, Greenlane Auckland, New Zealand
Phone: 0800 160 116
>Email: info@onelend.co.nz

36.We will acknowledge your complaint within three working days of its receipt. We will let you know if we need any further information from you to investigate your complaint.

37.We aim to resolve complaints as quickly as possible. We strive to resolve complaints within five working days, but some complaints take longer to resolve. If your complaint is taking longer, we will let you know what is happening and a date by which you can reasonably expect a response.

38.If you are not satisfied with our response to any privacy related concern you may lodge a complaint on the Office of the Privacy Commissioner’s website (www.privacy.org.nz) or send a complaint form to the Privacy Commissioner at: 

Office of the Privacy Commissioner
PO Box 10-094
>Wellington 6143, New Zealand
Fax: 04- 474 7595
Email: enquiries@privacy.org.nz
Telephone: 0800 803 909