Educational content only. Mobilitybiosvita is not a medical or healthcare provider. Information on this site is for general wellness education in New Zealand. Read our Terms of Use
Legal Document

Privacy Policy

This Privacy Policy describes how Mobilitybiosvita collects, uses, stores, and protects your personal information when you visit our website or interact with our active wellness training services.

Last updated:

1. Data Controller Information

The data controller responsible for your personal information is Mobilitybiosvita, located at 1061/716 Great South Road, Penrose, Auckland 1061, New Zealand. You may contact us regarding privacy matters by phone at +64 9 622 2889 or via email at assist@mobilitybiosvita.world.

As the data controller, we determine the purposes and means of processing your personal data in connection with our website and educational wellness services. We are committed to handling your information in accordance with the General Data Protection Regulation (GDPR), the New Zealand Privacy Act 2020, and other applicable international privacy legislation.

2. Scope of This Policy

This Privacy Policy applies to all personal data collected through our website at mobilitybiosvita.world, including data submitted via contact forms, cookie interactions, programme enrolment processes, and any other digital channels operated by Mobilitybiosvita.

This policy does not apply to third-party websites that may be linked from our pages. We encourage you to review the privacy policies of any external sites you visit, as their data practices are independent of ours.

3. Categories of Personal Data We Collect

3.1 Information You Provide Directly

When you contact us through our website form or other communication channels, we may collect the following personal data:

  • Full name
  • Email address
  • Message content and any additional information you choose to include
  • GDPR consent confirmation and timestamp

When you enrol in one of our programmes, we may additionally collect your phone number, mailing address, programme preferences, and payment-related information processed through our secure payment providers.

3.2 Information Collected Automatically

When you visit our website, certain technical data may be collected automatically through cookies and similar technologies, subject to your consent preferences. This may include:

  • IP address (anonymised where possible)
  • Browser type and version
  • Operating system
  • Referring URL and pages visited on our site
  • Date and time of visit
  • Device type and screen resolution

3.3 Cookie-Related Data

We use cookies to store your consent preferences and, with your permission, to analyse site usage and deliver relevant content. For detailed information about the cookies we use, please refer to our Cookie Policy.

4. Legal Basis for Processing

Under the GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you submit our contact form, enrol in a programme, or accept non-essential cookies, you provide explicit consent for us to process your data for the stated purposes.
  • Contractual necessity: Processing required to fulfil our obligations under a programme enrolment agreement or to respond to your pre-contractual enquiries.
  • Legitimate interests: Processing necessary for our legitimate business interests, such as improving our website, ensuring security, and communicating with existing participants, provided these interests do not override your fundamental rights.
  • Legal obligation: Processing required to comply with applicable laws, regulations, or court orders.

5. Purposes of Data Processing

We use your personal data for the following specific purposes:

  • Responding to your enquiries and providing information about our active wellness programmes
  • Processing programme enrolments and managing participant accounts
  • Delivering educational content and programme-related communications
  • Improving our website functionality and user experience through analytics
  • Complying with legal and regulatory requirements
  • Protecting the security and integrity of our website and services
  • Sending programme updates and relevant educational materials to enrolled participants

We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects.

6. Data Retention Periods

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable law. Specific retention periods are as follows:

  • Contact form submissions: Retained for 24 months from the date of submission, unless a business relationship is established.
  • Programme enrolment records: Retained for the duration of your participation plus 36 months after programme completion.
  • Payment records: Retained for 7 years in accordance with New Zealand tax and accounting requirements.
  • Cookie consent records: Retained for 12 months from the date consent was given or updated.
  • Analytics data: Aggregated analytics data is retained for 26 months. Individual session data is anonymised after 14 months.
  • Marketing communications data: Retained until you withdraw consent or for 24 months of inactivity, whichever occurs first.

After the applicable retention period expires, your data is securely deleted or anonymised so that it can no longer be associated with you.

7. Data Sharing and Third Parties

We do not sell, rent, or trade your personal data to third parties. We may share your information with the following categories of recipients, strictly for the purposes described in this policy:

  • Service providers: Trusted third-party companies that assist us with website hosting, email delivery, payment processing, and analytics. These providers are contractually bound to process your data only on our instructions and in compliance with applicable data protection laws.
  • Legal authorities: When required by law, regulation, legal process, or governmental request.
  • Professional advisors: Lawyers, accountants, and auditors who require access to data for the provision of professional services, subject to confidentiality obligations.

Where data is transferred outside the European Economic Area (EEA) or New Zealand, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission or adequacy decisions.

8. Security Measures

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include:

  • HTTPS encryption for all data transmitted between your browser and our servers
  • Secure server infrastructure with regular security updates and patches
  • Access controls limiting data access to authorised personnel only
  • Regular security assessments and vulnerability testing
  • Employee training on data protection and privacy best practices
  • Incident response procedures for potential data breaches
  • Encrypted storage for sensitive data fields

While we take reasonable steps to protect your information, no method of electronic transmission or storage is completely secure. We cannot guarantee absolute security but are committed to promptly addressing any identified vulnerabilities.

9. Your Rights Under GDPR and Applicable Law

Depending on your location, you may have the following rights regarding your personal data:

  • Right of access: Request a copy of the personal data we hold about you.
  • Right to rectification: Request correction of inaccurate or incomplete personal data.
  • Right to erasure: Request deletion of your personal data where there is no compelling reason for continued processing.
  • Right to restrict processing: Request that we limit how we use your data in certain circumstances.
  • Right to data portability: Receive your data in a structured, commonly used, machine-readable format.
  • Right to object: Object to processing based on legitimate interests or for direct marketing purposes.
  • Right to withdraw consent: Withdraw consent at any time where processing is based on consent, without affecting the lawfulness of prior processing.
  • Right to lodge a complaint: File a complaint with a supervisory authority, such as the Office of the Privacy Commissioner in New Zealand or your local data protection authority in the EEA.

To exercise any of these rights, please contact us at assist@mobilitybiosvita.world or +64 9 622 2889. We will respond to your request within 30 days, or inform you if an extension is necessary.

10. Children's Privacy

Our website and services are intended for adults aged 18 and over. We do not knowingly collect personal data from individuals under 18 years of age. If we become aware that we have collected data from a minor without appropriate parental consent, we will take steps to delete that information promptly.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the date at the top of this page and, where appropriate, notify you via email or a prominent notice on our website.

We encourage you to review this policy periodically to stay informed about how we protect your information.

12. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

  • Organisation: Mobilitybiosvita
  • Address: 1061/716 Great South Road, Penrose, Auckland 1061, New Zealand
  • Phone: +64 9 622 2889
  • Email: assist@mobilitybiosvita.world
  • Website: mobilitybiosvita.world