Skip to main content

Privacy Policy

This policy outlines how Artilect Limited (operating as Intervengine) complies with New Zealand's Privacy Act 2020.

Artilect provides platform services supporting healthcare practitioners, corporates, employers, and public sector clients. Services include apps, customer data management, application development, data integrations, and APIs. The company commits to proper, open, and transparent management of personal information while maintaining compliance with privacy laws.

Any data we collect about our clients' customers or patients, on behalf of our clients, is managed in accordance with the respective privacy policies of each client. This policy applies only to personal information from clients, suppliers, and external third parties that Artilect directly engages with.

What personal information does Artilect collect?

Artilect collects only necessary personal information through fair and lawful means via websites, employment processes, correspondence, and service purchases. Collection varies by services provided and jurisdiction.

Information about contractors and suppliers

Artilect collects name, contact details, and tax information. With consent, sensitive information (medical details about injuries) may be collected for workplace health and safety. Third-party feedback about contractor performance is also gathered to monitor service quality and ensure product excellence.

Information about job applicants

Applicants must provide name, contact details, CV information, driver's license, or passport details. References are collected from identified referees. We also perform a police criminal background check before employing a new person. This information determines suitability for vacant roles.

Information about clients and their employees and stakeholders

Personal information collected includes name, contact details, bank account, and invoicing details. This information is used for:

  • Billing and order fulfillment
  • Contacting customers about service provision
  • Maintaining account details
  • Providing technical support on managed systems
  • Providing product and service information on request
  • Streamlining and personalising customer experience
  • Conducting satisfaction surveys and tailoring services

Artilect may also collect personal information from its customers relating to its employees and stakeholders, for example contact information and job roles. Aggregated, anonymous demographic and usage information improves websites and services without identifying individuals.

Quality of personal information

Artilect will ensure, to the extent reasonably possible, that personal information collected, used or disclosed is accurate, up-to-date, complete and relevant. Upon discovering inaccurate information, Artilect takes prompt steps to update records.

Information security

Artilect applies active measures and controls per ISO/IEC 27001 Information Security Standard. All devices, storage, and channels undergo continuous monitoring, logging analysis, and audit. Artilect may contract third parties for these functions.

All personal information is stored at secure premises using good quality security protocols including two-factor authentication where possible. Security systems are regularly reviewed and updated.

When you use our service, we automatically collect information about your interactions and technical data to ensure our service is secure and reliable. This includes your IP address, device identifiers, and a unique internal user ID which we may record in our logs for troubleshooting and security analysis purposes.

Access and correction of personal information

Subject to identity verification, individuals may access, update, or correct personal information through the Artilect Privacy Officer. Artilect will endeavour to respond to access and correction of personal information within 15 business days after a written request is received.

Direct marketing

Artilect engages in direct marketing per New Zealand law. Individuals or organisations may request cessation of marketing materials at any time. Email communications include simple opt-out (unsubscribe) mechanisms available anytime.

Disclosure and retention of personal information

As part of providing services to a customer, Artilect may disclose limited personal information to third party suppliers or contractors as authorised by law. Artilect retains personal information only as required by law or for business functions. Unneeded information is destroyed or securely disposed of.

International data transfers

As an IT services provider, Artilect retains personal information on servers in multiple overseas countries. The company respects varying national laws and cross-border data transfer obligations. Artilect will take all reasonable steps to ensure that no person or entity breaches any relevant privacy and data protection laws using a variety of lawful data transfer mechanisms and contractual agreements.

Website browsing

Website access logs information including time of access, IP address, and viewed pages. External website links appear on Artilect or Intervengine websites, but the company is not responsible for the content or privacy policies that govern such external websites.

Privacy issues

Artilect holds legal obligations to secure information and use it appropriately per this policy. To raise privacy concerns or questions, contact the Artilect Privacy Officer.

Email: privacy@artilect.co.nz

Mailing Address: The Privacy Officer, Artilect Ltd, PO Box 301348, Albany, Auckland 0752

Unsatisfied individuals may escalate privacy complaints to the relevant government authority responsible for privacy and data protection.