This notice describes our privacy practices and how we process your Personal Data to support our website, products and any other services we may offer (our "services").
This Privacy Notice is effective from 17 July 2023. We may update it from time to time, and where the change is significant we'll let you know by sending you an email.
Figured ("we", "us", "our") is a company headquartered in Auckland New Zealand, with offices around the world. Contact details for our locations can be found on the Contact page of our website.
We provide leading farm financial management software that is helping farming teams across New Zealand, Australia, the United Kingdom and the United States better manage the profitability of their operations. To find out more about our Services you can visit the Figured website.
Under the European Union General Data Protection Regulation (EU GDPR) we act as a controller of your Personal Data, our representative in the European Union is Figured Software UK Limited (Company Number 11377806).
Personal Data means any information about you such as your name, phone number, email address, support conversations, comments on reports, or any other information that can be linked to your user account. If the personal data has been aggregated or anonymised so that you are not able to be identified from that information, then this notice does not apply.
Types of personal data processed
The types of personal data processed include:
Categories of data subjects
The categories of data subjects include:
When you visit our website or use our services, we collect Personal Data. If we don't collect your Personal Data we may not be able to provide you with our services, and some functions or features may not be available to you.
The majority of information we collect, we collect directly from you. For example when you sign up to use our services, create or share content, collaborate on the financial management of a farm, contact us with questions or request support.
Occasionally we may collect personal data about you from third party sources such as publicly available materials or information from trusted partners such as your accounting practice or bank where they have the right to provide us with your information.
Where we collect Personal Data we'll only process it:
The main way we use your Personal Data is to provide and support the services that we offer to you including using that information to verify your account, activity and maintain the integrity of our services. Additionally, we may also use your information in the following ways:
We may send you marketing communications, communicate with you about our services, and let you know about updates to our policies, notices or terms. We may also use your Personal Data when communicating with you to support you and manage our relationship with you.
We may use your Personal Data to help our partners understand and measure the effectiveness and usage of our services.
We may use your Personal Data to provide aggregated and anonymised reports, analytics and research which we may share publicly or with third parties.
We keep your data until it is no longer necessary to provide our services or until your account is deleted. How long we keep information depends on what it is and whether we have a business need to retain it.
When you delete your account we permanently delete all of the Personal Data and this action cannot be undone. We may retain your contact information for billing purposes if we have a need for it. When you delete your account any data which has been added to a farm such as financial transactions, invoices, budgets or comments will remain, however, this information will no longer be associated with your personal data.
In certain circumstances we will share the Personal Data:
We share data both internally within the Figured group, and externally with our partners and with those you direct us to as described in this Notice. When we do this your Personal Data may be transferred, stored or processed in the United States where our data hosting provider's servers are located, or other countries outside of the European Economic Area or the country where you live. These transfers are necessary to provide our services.
If you are in the European Economic Area, this means that your Personal Data is transferred outside of the EEA. These transfers are necessary to provide our services, and we utilise standard contract clauses or rely on the European Commission's adequacy decisions about certain countries (like New Zealand). For further information please contact us at firstname.lastname@example.org
You can ask us not to send you any marketing communications at any time by following the unsubscribe links at the bottom of the email, or you can send your request to us at email@example.com.
You also have the following rights:
If you withdraw your consent to the use of your Personal Data for the purposes set out in this Notice we may not be able to provide you with our services, and some functions or features may not be available to you.
You can exercise any of these rights by contacting us at firstname.lastname@example.org
The security of your Personal Data is central to everything we do at Figured. We have put in place appropriate technical and operational measures to ensure the confidentiality, availability and integrity of your Personal Data at all times. We engage independent third parties to review our services, test our security and audit our operational controls. For more details visit www.figured.com/security. If you want more detailed information please contact us at email@example.com
This registry highlights the regulatory, statutory, legislative and contractual requirements:
|Requirement||Description||Location||Where to make a complaint|
|NZ Privacy Act 2020||Privacy and data protection requirements in New Zealand||New Zealand||Office of the Privacy Commissioner | Complaining to the Privacy Commissioner|
|Anti-Money Laundering and Countering Financing of Terrorism Act 2009 (AML/CFT Act)||Obligation of New Zealand financial institutions to detect and deter money laundering||New Zealand|
|General Data Protection Regulation (GDPR)||GDPR is a regulation in EU law on data protection and privacy in the European Union and the European Economic Area||Europe||Our Members | European Data Protection Board (europa.eu)|
|Australian Privacy Act 1988||Privacy and data protection requirements in Australia||Australia||Privacy complaints - Home (oaic.gov.au)|
|Australian Business Software Industry Association (ABSIA)||Security standard for add-on marketplaces||Australia|
|Data Protection Act 2018 (DPA 2018), and the UK General Data Protection Regulation (UK GDPR)||Privacy and data protection requirements in the United Kingdom||United Kingdom||Make a complaint | ICO|
If you have questions about this Privacy Notice or about how we collect, use, or secure your Personal Data then the best way to contact us is by email at firstname.lastname@example.org so we can put you in touch with the right person.
Alternatively, you can contact us by post:
ATTN: Data Protection Officer
7-9 Fanshawe Street