Privacy Policy
Applies to xandoronz.com. Last updated: 30 May 2026.
This policy explains how Xandoronz Limited collects, uses, stores and discloses personal information in accordance with the New Zealand Privacy Act 2020.
What we collect
- Account & contact details (e.g., name, email, username, password or authentication tokens).
- Age-gate responses (e.g., confirmation you meet age requirements; we aim to minimise collection and do not require your full date of birth unless you choose to provide it).
- Support and communications (messages you send, attachments, and related metadata).
- Payment-related data (if applicable, we typically receive transaction references and status; card details are handled by payment providers).
- Device, log and analytics data (IP address, device/browser type, pages viewed, timestamps, referrers, cookies or similar identifiers).
How we use your information
- Provide and operate the site and services (including authentication and account management).
- Administer age-gating and safety/compliance controls.
- Respond to support requests and communicate service updates.
- Improve performance, security, and user experience (including analytics and troubleshooting).
- Meet legal obligations, prevent fraud, and enforce our terms.
Cookies & analytics
We may use essential cookies for core site functions and optional cookies/identifiers for analytics. You can usually control cookies via your browser settings; blocking some cookies may affect functionality.
When we disclose information
We may disclose personal information to:
- Service providers who help us run the site (e.g., hosting, email delivery, customer support tools, analytics, payment processing).
- Professional advisers (e.g., legal, accounting) where necessary.
- Regulators, courts, or law enforcement when required or authorised by law.
- A buyer or successor in connection with a business transaction (with appropriate safeguards).
Overseas transfers
Some service providers may store or process information outside New Zealand. Where this occurs, we take reasonable steps to ensure comparable safeguards apply, consistent with the Privacy Act 2020 (including contractual and security measures).
Storage, security & retention
- We use reasonable technical and organisational safeguards (e.g., access controls, encryption in transit where available, monitoring).
- We retain information only as long as needed for the purposes above, unless a longer period is required or permitted by law.
- No method of transmission or storage is completely secure; if a privacy breach occurs, we will assess it and notify affected individuals and/or the Office of the Privacy Commissioner when required.
Accessing and correcting your information
You may request access to, or correction of, personal information we hold about you. We may need to verify your identity before fulfilling a request. We will respond within a reasonable timeframe and in line with the Privacy Act 2020.
Complaints
If you have a privacy concern, contact us first and we will work to resolve it. You may also complain to the Office of the Privacy Commissioner (privacy.org.nz).