Effective 1 April 2018
RBFC Global Limited (a registered company in New Zealand under NZ Company No: 6506052 and a Registered financial services provider under the Financial Services Providers (Registration & Dispute Resolution) Act 2008 FSP 579968. As the contractual supplier of the RBFC service, the service is arranged by RBFC Global Limited in conjunction with its associated and/or affiliated entities in New Zealand and overseas for the purpose of providing the RBFC Service.). 'RBFC', 'we', 'us')
All third parties (including customers, suppliers, sub-contractors, associated persons, affiliates, and agents) that have access to or use personal information collected and held by us must abide by this Policy.
Copies of this Policy are available free of charge by contacting our Privacy Officer or can be downloaded from our website www.rbfc.com. Please note that, this Policy does not extend to websites of third parties that we may provide links to on or from our website or where the RFBC Service is marketed and obtained from.
In this Policy:
'Disclosing' information means providing information to persons outside of us;
'Personal information' means information or an opinion relating to an individual, which can be used to identify that individual;
'Privacy Officer' means the contact person for questions or complaints regarding our handling of personal information;
'Sensitive information' is personal information that includes information relating to a person's racial or ethnic origin, political opinions, religion, trade union or other professional or trade association membership, sexual preferences and criminal record, and also includes health and biometric information; and
'Use' of information means our use of information.
Type of personal information we collect
We collect and hold a range of personal information including:
Your identity particulars, including your full name, residential address, date of birth, gender, contact details, and details of specific primary identification documents for example Passport, Driver's Licence etc.
Any additional personal information you provide to RBFC online, by email, telephone or other correspondence;
Your Payment details;
Biometric information (only for the purposes of verifying your identity); and
Demographic information such as age, gender and post code.
Details of services or products you acquire from RBFC or you enquire about, along with any additional information that may be necessary to deliver the requested RBFC products and services to you directly or indirectly through our affiliates or agents.
Sensitive personal information
We will not collect sensitive information about you without your consent unless an exemption in the APPs applies. These exceptions include if the collection is required or authorised by law or necessary to take appropriate action in relation to suspected unlawful activity or serious misconduct. For example, we might collect your biometric information when confirming your identity.
How we collect the information
We generally collect your personal information:
When you complete the RBFC online registration form when you request/submit an online money transfer request or airtime service through your RBFC online account.
From information disclosed to us by you on the phone, or by sending us correspondence (including letters, faxes and emails) or visiting us in person;
From a variety of third party sources, including our business contacts, identity verification service providers, financial institutions, marketing affiliates and/or associated entities where the service is provided;
Directly from applications, questionnaires and other forms you may complete when you wish to use our services.
In some circumstances, we may be provided with personal information about you from a third party for example like a digital platform for international education like where the Service is obtainable and offered as a value add product for international students. If so, we will take reasonable steps to inform you that we hold the personal information and the purpose for which we hold the personal information. We will take reasonable steps to make you aware of this Policy.
Please note that you do not have the option of dealing with us anonymously, or by using a pseudonym. This is because it is illegal for us to deal with individuals who are not identified.
If you do not provide us or if we are unable to obtain the personal information we request or require, we may not be able to provide you with our products or services, or process your application to access our products or services, process your funds transfer request.
Unsolicited personal information
We may receive personal information about you when we have taken no active steps to collect that information. This is known as 'unsolicited' personal information. We destroy or de-identify all unsolicited personal information we receive, unless it is relevant to our purposes for collecting personal information. We may retain additional information we receive about you if it is combined with other information we are required or entitled to collect. If we do this, we will retain the information in the same way we hold your other personal information.
Use of your personal information
We may use and disclose your personal information for any of the purposes mentioned below. We may also use and disclose your personal information for secondary purposes which are related to the primary purposes set out above, or in other circumstances authorised by the Privacy Act. Sensitive information will be used and disclosed only for the purpose for which it was provided (or a directly related secondary purpose), unless you agree otherwise or an exemption in the Act applies.
At RBFC we use and disclose the information collected and held about you so that we may:
Provide you with the RBFC service you have requested, enquired, ordered through our website www.rbfc.com (including money transfers, travel cash cards and other product and services as made available by us);
Fulfil your order, send your order confirmation and to manage our customer service communications with you;
Verify your identity in order to provide you with the product(s) or service(s) you have requested;
Comply with our various regulatory and legal obligations including but not limited to the Anti-Money Laundering and Countering Financing of Terrorism Act 2009;
Further improve and develop our products and services;
Determine whether you came to our website from a banner ad or an affiliate website;
Ascertain and establish effective marketing campaigns;
Provide you with information about RBFC products and services;
Consider and investigate any concerns or complaints you may have; and
Continuously improve our website and our customer experiences.
Disclosure of your personal information and sending information overseas
We disclose your personal information to:
Our related entities, including our Auckland office;
Our correspondent partners, disbursement and payment provider partners for the purposes of processing your requested transaction;
The Identification Verification agencies used to confirm your identity and meet the applicable identification and verification regulatory requirements;
Our digital marketing/advertising analysts and providers for email marketing and consumer choice and data analysis;
To government agencies, law enforcement bodies and courts where required by law;
To third parties as permitted and required law; and
Anyone to whom you authorise us to disclose to.
Information disclosed to third parties will only be information required for the supply and fulfilment of the RBFC product and service, or for customer assistance purposes or as required by law. Strict confidentiality agreements will be adhered to by the respective receiving third party. We are likely to disclose your information to third parties located in New Zealand, Australia USA, UK and Europe.
RBFC is committed to the protection of your information and only deal with ethical suppliers and business partners who demonstrate similar values and are bound by privacy laws of the same standard as New Zealand.
We will not disclose your personal information to overseas recipients without your consent unless:
We have taken reasonable steps to ensure that the recipient does not breach the Privacy Act, or the Privacy Principles; or
The recipient is subject to a similar information privacy regime.
Storage and security of your personal information
When we collect personal information from you, we follow generally accepted industry standards to protect the personal information collected by us, both during transmission and once we receive it. We will take all reasonable steps to protect your personal information from loss, misuse and interference, and unauthorised access, modification and disclosure. We endeavour to maintain physical, electronic and procedural safeguards to protect your personal information. We also endeavour to restrict access to your personal information by our employees and third parties to information they reasonably require.
We understand our customers require peace of mind when it comes to information security. We use modern security measures such as secure firewalls, servers, databases and data encryption to safeguard the personal information provided by you. Furthermore, hard copies data files are filed in secured cabinets and only accessible to the designated employee. And if no longer required disposed of securely through the available secured bins.
We will retain your information for as long as needed to provide services to you, or as required by law. Where we no longer need your information, we will take reasonable steps to destroy or de-identify it.
Despite our efforts, no method of transmission over the internet, or method of electronic storage, is 100% secure. If you have any questions about security on our website, please contact us.
We may use your personal information to send you direct marketing material. We will only use personal information we collect from you for the purposes of direct marketing without your consent if:
the personal information does not include sensitive information; and
you would reasonably expect us to use or disclose the information for the purpose of direct marketing; and
we provide a simple way of opting out of direct marketing; and
you have not requested to opt out of receiving direct marketing from us.
We do not disclose personal information we collect to others for the purpose of allowing them to direct market their products and services. We do not use or disclose sensitive information for direct marketing purposes.
If we collect personal information about you from a third party, we will only use that information for the purposes of direct marketing if you have consented (or it is impracticable to obtain your consent), and we will provide a simple means by which you can easily request not to receive direct marketing communications from us. We will draw your attention to the fact you may make such a request in our direct marketing communications.
You have the right to request us not to use or disclose your personal information for the purposes of direct marketing, or for the purposes of facilitating direct marketing by other organisations. We must give effect to the request within a reasonable period of time. You may also request that we provide you with the source of their information. If such a request is made, we must notify you of the source of the information free of charge within a reasonable period of time. You may choose to stop receiving marketing emails by either:
clicking on the unsubscribe link at the bottom of the RBFC advertising/promotional materials;
by sending us an email to firstname.lastname@example.org
Quality of your personal information
We are committed to ensuring that the personal information we collect, hold, use and disclose is relevant, accurate, complete and up-to-date. Before we use or disclose your information, we will take reasonable steps to ensure that your personal information is accurate, complete, relevant, up-to-date and is not misleading. We encourage you to regularly review your personal information and update your personal information in your RBFC profile.
We encourage you to contact us if any personal information we hold about you needs to be updated. If we correct information that has previously been disclosed to another entity, we will take reasonable steps notify the other entity of the correction. Where we are satisfied information is inaccurate, we will take reasonable steps to correct the information within 30 days, unless you agree otherwise. We will not charge you for correcting your personal information.
Access to your personal information
Subject to the exceptions in the Privacy Act, you can access the personal information that we hold about you by contacting the Privacy or Compliance Officer. We will generally provide you with the requested information within 30 days of request. In the event that we are unable to do so or not required by law to do so, we will inform you of the reasons for refusal.
We will require evidence that the request is coming from you and specification of what information is required. An administrative fee for searches, collation of information, photocopying costs may apply. To request information stored about you, contact us:
By email: email@example.com
By mail: To the Privacy Officer, RBFC Global Limited
Flat 5, 27 Mount Eden Road, Grafton, Auckland 1023.
We will endeavour to grant you access to personal information which we hold about you within 30 days of receiving your request.
How to make a privacy complaint?
RBFC takes all complaints seriously and will investigate your complaint accordingly.
We will acknowledge receipt of your complaint within 2 business days. We will investigate your complaint and come back to you with the results of our investigation no later than 7 business days of receipt of your complaint. If you are not satisfied with the manner in which we have dealt with your complaint, or the outcome/resolution, then you may refer the matter to the Financial Dispute Resolution Scheme
Financial Services Complaints Limited
PO Box 5967, Lambton Quay
By mail Level 9, 109 Featherston Street Wellington 6011
By phone 0800 347 257
By email: firstname.lastname@example.org
Cookies & internet technology
Third party data technologies may be used within the RBFC application or online platform and our marketing partners. These technologies are used to monitor app usage and track in-app events, and information from these technologies may be reported on both an individual and aggregate basis.
Full terms and conditions can be found on our website. Accordingly, usage of the website assumes acceptance of these terms and conditions.
Our website contains electronic images known as 'Web Beacons' (sometimes called single-pixel gifs). These are used along with cookies to compile aggregated statistics to analyse how our site is used and may be used in some of our emails to let us know which emails and links have been opened by recipients. This allows us to gauge the effectiveness of our customer communications and marketing campaigns.
We use a third party to gather information about how you and others use our website. For example, we will know how many users access a specific page and which links they clicked on. We use this aggregated to understand and optimize how our website is used.
You should be aware that any information you provide in these blogs and forums may be read, collected and used by others who access them.
Changes to this policy
We may update this Policy to reflect changes to our information handling practices. If we make any material changes we will notify you by email (sent to the e-mail address specified in your account) or by means of a notice on our website prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices.
By Email: email@example.com
By Mail: RBFC Global Limited, Flat 5, 27 Mount Eden Road, Grafton, Auckland, New Zealand 1023