Privacy Policy
Last updated: 29 January 2026
1. Who we are
This website is operated by Barcodes Limited (“we”, “us”, “our”).
Contact details:
Email: [email protected]
Business location: New Zealand, with customers and operations internationally, including the United States.
Privacy contact: [email protected]
We comply with applicable privacy and data protection laws, including:
-
United States privacy laws, including the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) and similar state laws
-
New Zealand Privacy Act 2020
-
Australian Privacy Act 1988 (APPs)
-
EU & UK GDPR (where applicable)
2. What personal information we collect
We may collect the following categories of personal information:
-
Identifiers (name, email address, phone number)
-
Commercial information (orders, transactions, billing details)
-
Account information and login activity
-
Internet or electronic network activity (IP address, browser type, device identifiers)
-
Website usage, analytics, and log data
-
Communications (emails, contact forms, chat messages)
-
Marketing preferences
-
Cookie and tracking data
We do not knowingly collect sensitive personal information unless required and explicitly provided.
3. How we collect personal information
We collect personal information when you:
-
Purchase products or services
-
Create an account or contact us
-
Subscribe to email communications
-
Use our website (cookies, analytics, server logs)
-
Interact with advertising or remarketing tools
-
Communicate with us via email, forms, or chat
Some information is collected automatically through technical systems.
4. Why we collect personal information
We collect and use personal information to:
-
Provide and deliver products and services
-
Process payments and prevent fraud
-
Manage customer relationships and support
-
Improve website functionality and performance
-
Measure usage, conversions, and marketing effectiveness
-
Send transactional and marketing communications
-
Comply with legal, tax, and regulatory obligations
5. Legal bases for processing (where applicable)
-
Performance of a contract
-
Legitimate business interests
-
Consent (including for marketing and cookies where required)
-
Legal obligations
Where consent is relied upon, you may withdraw your consent at any time by contacting us or using provided unsubscribe or preference mechanisms.
6. Payments and card data
Payments are processed securely by third-party payment providers (such as Stripe or PayPal).
We do not store or process credit or debit card details on our servers.
7. Cookies, analytics, and advertising
We use cookies and similar technologies for:
-
Essential website functionality
-
Analytics and performance measurement
-
Advertising, remarketing, and conversion tracking
-
Security and fraud prevention
Where required by law (including certain US states and the EU/UK), users are provided with cookie controls or consent mechanisms.
8. Marketing and advertising practices
We may use personal information for:
-
Email marketing and newsletters
-
Customer communications
-
Interest-based advertising and remarketing (e.g. Google Ads, Meta)
-
Customer list uploads and audience matching where legally permitted
You may opt out of marketing communications at any time.
We do not sell personal information.
However, under some US privacy laws, certain advertising activities may be considered a “sharing” of personal information for advertising purposes.
9. Who we share personal information with
We may share personal information with trusted service providers, including:
-
Payment processors
-
Hosting and infrastructure providers
-
Email and marketing platforms
-
Analytics and advertising providers
-
Customer support and chat tools
-
Security and performance services
-
Professional advisers
These providers are authorised to use personal information only as necessary to provide services to us.
10. International data transfers
Personal information may be stored or processed in the United States, New Zealand, Australia, Europe, or other countries and regions.
We take reasonable steps to ensure that international data transfers are protected through contractual safeguards and appropriate security measures.
11. Data retention
We retain personal information only for as long as reasonably necessary for:
-
Service delivery and customer support
-
Legal, tax, and accounting requirements
-
Fraud prevention and dispute resolution
12. Your privacy rights
United States (including California)
Depending on your state of residence, you may have the right to:
-
Know what personal information we collect, use, and share
-
Access your personal information
-
Request correction or deletion
-
Opt out of targeted advertising or certain data sharing
-
Not be discriminated against for exercising privacy rights
California residents may exercise rights under the CPRA/CCPA, including the right to limit certain uses or sharing of personal information.
Requests may be made by contacting us using the details above.
New Zealand
You have the right to access and correct personal information and to complain to the Office of the Privacy Commissioner.
Australia
You have the right to access and correct personal information and to make a complaint under the Australian Privacy Principles.
European Union / United Kingdom (GDPR)
Where applicable, you have the right to access, correct, or delete personal data, restrict or object to processing, request data portability, withdraw consent, and lodge a complaint with a supervisory authority.
13. Security
We use reasonable technical and organisational safeguards to protect personal information.
No system is completely secure.
14. Third-party websites
We are not responsible for the privacy practices of external websites linked from our site.
15. Changes to this policy
We may update this Privacy Policy from time to time.
The current version will always be published on this page.