Skip to main content
Niyamis
Get in touch

Legal

Privacy policy

Last updated 19 April 2026 · Complies with the New Zealand Privacy Act 2020

This policy explains how Niyamis Limited ("Niyamis", "we", "our", "us") collects, holds, uses and discloses personal information when you visit niyamis.com or one of our related properties. Niyamis is a New Zealand company and this policy is written to the Information Privacy Principles (IPPs) set out in the New Zealand Privacy Act 2020.

Short version: we collect the minimum we need to run a discovery call or send you a worksheet, we don't sell your data, and you can ask for a copy or a deletion any time by emailing privacy@niyamis.com.

1. What we collect

We only collect information you voluntarily submit:

  • Contact form data - name, work email, shop name, and anything you type into the message field when you book a call or request the ROI worksheet.
  • Calendar booking data - when you book through our Cal.com embed, Cal.com collects your name, email and any meeting notes on our behalf. Cal.com's own privacy policy applies in addition to this one.
  • Analytics - we use Plausible Analytics, a privacy-respecting service that does not use cookies, does not cross-site track, and does not collect personally identifiable information. Plausible records aggregate page views, referrers, device types and country-level geography derived from IP.
  • Server logs - standard HTTP server logs with the request time, URL, user-agent and (transient, never joined to identified users) IP address. Retained for 30 days for abuse detection, then rotated.

2. Why we collect it

Personal information is collected for one of these purposes:

  • To respond to you - e.g. confirm your booking, email the ROI worksheet you requested.
  • To improve the site - aggregate analytics tell us which pages help and which don't.
  • To send you related Insights - only if you've opted in, and you can unsubscribe from any email we send.

3. Who we share it with

We do not sell personal information. We share it with:

  • Processors we use - Cal.com (calendar), Plausible (analytics), our transactional email provider, and our cloud host (Microsoft Azure, Australia/New Zealand region). Each is bound by its own data processing terms.
  • Law enforcement - only where we are legally required to do so under NZ law, and only after we have taken reasonable steps to challenge requests we believe are overbroad.

We do not ship personal data outside New Zealand except via the processors listed above, all of whom are located in jurisdictions the NZ Privacy Commissioner considers comparable.

4. How long we keep it

  • Marketing leads - until you unsubscribe or ask for deletion, up to 3 years.
  • Calendar bookings - retained in Cal.com per Cal.com's policy; the meeting notes we keep in our CRM until the opportunity closes.
  • Analytics - aggregated; no PII stored.
  • Server logs - 30 days.

5. Your rights under the Privacy Act 2020

You have the right to:

  • Ask what personal information we hold about you (Principle 6).
  • Ask us to correct anything that's wrong (Principle 7).
  • Ask for deletion where we no longer have a lawful purpose to hold it.
  • Complain to the Office of the Privacy Commissioner if you believe we've mishandled your information. Their site: privacy.org.nz.

To exercise any of these, email privacy@niyamis.com. We aim to respond within 10 working days.

6. Security

All marketing-site traffic runs over HTTPS with a valid TLS certificate. Our API lives behind the same TLS. Backend data is hosted on Microsoft Azure in Australia/New Zealand and encrypted at rest.

7. Cookies

The marketing site does not set any first-party tracking cookies. Embedded third-party widgets (Cal.com, the Plausible script) may set their own cookies per their policies; we keep the list short on purpose.

8. Changes to this policy

We may update this policy as our practices change. The "Last updated" date at the top of the page always reflects the most recent version. We'll announce material changes on the homepage for at least 30 days.

9. Contact

Niyamis Limited
New Zealand (NZBN + Companies Office number published on the About page.)
Email: privacy@niyamis.com

Note to reviewers. This policy is drafted from a vetted NZ-Privacy-Act-2020 template. It must be reviewed by Niyamis's legal counsel before the site launches publicly - see design doc §15 pre-launch checklist item 11.