Privacy Policy

This privacy policy has been compiled to better serve those who are concerned with how their 'Personally identifiable information' (PII) is being used online. PII, as used in US privacy law and information security, is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. Please read our privacy policy carefully to get a clear understanding of how we collect, use, protect or otherwise handle your Personally Identifiable Information in accordance with our website.

European Union citizens should particularly pay attention to the notes on the GDPR at the end of this document and note that by using the Contact Software’s tools and agreeing to the terms and conditions when signing up to use the site you are also guaranteeing that your data collection will comply with the GDPR.

The Policy includes the related websites, and

What personal information do we collect from the people that visit our blog, website or app?

When ordering or registering on our site, as appropriate, you may be asked to enter your Name, Email address, Phone number or other details to help you with your experience.

When do we collect information?

We collect information from you when you register on our site or enter information on our site.

How do we use your information?

We may use the information we collect from you when you register, make a purchase, sign up for our newsletter, respond to a survey or marketing communication, surf the website, or use certain other site features in the following ways:

  • To allow us to better service you in responding to your customer service requests.
  • To send periodic emails regarding your order or other products and services.

How do we protect visitor information?

Your personal information is contained behind secured networks and is only accessible by a limited number of persons who have special access rights to such systems, and are required to keep the information confidential. In addition, all sensitive/credit information you supply is encrypted via Secure Socket Layer (SSL) technology.

We implement a variety of security measures when a user places an order enters, submits, or accesses their information

All transactions are processed through a gateway provider and are not stored or processed on our servers.

Do we use 'cookies'?

Yes. Cookies are small files that a site or its service provider transfers to your computer's hard drive through your Web browser (if you allow) that enables the site's or service provider's systems to recognize your browser and capture and remember certain information. For instance, we use cookies to help us remember the settings in your account when you have one. 

They are also used to help us understand your preferences based on previous or current site activity, which enables us to provide you with improved services. We also use cookies to help us compile aggregate data about site traffic and site interaction so that we can offer better site experiences and tools in the future.

We use cookies to: 

  • Understand and save user's preferences for future visits.
  • Keep track of advertisements.
  • Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future.

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser (like Internet Explorer) settings. Each browser is a little different, so look at your browser's Help menu to learn the correct way to modify your cookies.

If you disable cookies off, some features will be disabled. It won't affect the user's experience that make your site experience more efficient and some of our services will not function properly.

However, you can still place orders.

Third Party Disclosure

We do not sell, trade, or otherwise transfer to outside parties your personally identifiable information.

HOWEVER PLEASE NOTE: in the event that we receive legal notice and request to disclose information about you or the data that you have collected using our platform we will, after due process, and assuming that the legal request is valid, provide disclosure of that data.

Third party links

We do not include or offer third party products or services on our website.


Google's advertising requirements can be summed up by Google's Advertising Principles. They are put in place to provide a positive experience for users.  

We have not enabled Google AdSense on our site but we may do so in the future.

COPPA (Children Online Privacy Protection Act)

When it comes to the collection of personal information from children under 13, the Children's Online Privacy Protection Act (COPPA) puts parents in control. The Federal Trade Commission, the nation's consumer protection agency, enforces the COPPA Rule, which spells out what operators of websites and online services must do to protect children's privacy and safety online.

We do not specifically market to children under 13.

Fair Information Practices

The Fair Information Practices Principles form the backbone of privacy law in the United States and the concepts they include have played a significant role in the development of data protection laws around the globe. Understanding the Fair Information Practice Principles and how they should be implemented is critical to comply with the various privacy laws that protect personal information.

In order to be in line with Fair Information Practices we will take the following responsive action, should a data breach occur:

We will notify the users via email 

  • Within 2 business days

We will notify the users via in site notification 

  • Within 5 business days


The CAN-SPAM Act is a law that sets the rules for commercial email, establishes requirements for commercial messages, gives recipients the right to have emails stopped from being sent to them, and spells out tough penalties for violations.

We collect your email address in order to: 

  • Send information, respond to inquiries, and/or other requests or questions.
  • Market to our mailing list or continue to send emails to our clients after the original transaction has occurred

To be accordance with CANSPAM we will: 

  • NOT use false, or misleading subjects or email addresses
  • Identify the message as an advertisement in some reasonable way
  • Include the physical address of our business or site headquarters
  • Honor opt-out/unsubscribe requests quickly
  • Allow users to unsubscribe by using the link at the bottom of each email

If at any time you would like to unsubscribe from receiving future emails, you can 

  • Follow the instructions at the bottom of each email.

Data Retention

Data collected by you is stored on our servers for 3 months after the expiry date of your survey.

During those 3 months that data is immediately available to you to download. After 3 months the data I archived for a further 3 months during which time it can be recovered on request.

6 months from the expiry date of the survey you data is permanently and irrecoverably deleted from our servers.

European Union GDPR (General Data Protection Regulation) policy

Contact Software’s Relationship with You, our Customer

“Our Customer” is the individual or organization which purchases the use of the Harvest Your Data Platform and its associated apps being iSURVEY for Apple devices and droidSURVEY for Android device and / or the individual or organization which uses these products to collect data.

Under the GDPR Harvest Your Data is considered to be the Data Processor on behalf of You.

Your responsibilities under GDPR should you collect personally identifiable data about EU (European Union) citizens


‘Personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;

The distinction between personal data, and sensitive personal data

The EU’s “special categories.”

Special categories of personal data pertains to: political opinions, religious beliefs, trade union activity, racial or ethnic makeup, physical or mental health, sexual orientation, gender identity or criminal history.

To process special categories of personal data, you must provide justification under one of the following legal bases:

  • Explicit consent
  • Employment law
  • Vital Interests
  • Charity or NPOs
  • Data made public by the data subject
  • Legal claims
  • Reasons of substantial public interest
  • Medical diagnosis and treatment
  • Public health
  • Historical purposes
  • Statistical purposes
  • Scientific purposes
  • Exemptions under national laws

To comply with the GDPR the information you provide to people about how you process their personal data must be:

  • concise, transparent, intelligible and easily accessible;
  • written in clear and plain language, particularly if addressed to a child; and
  • free of charge.

Under Article 14 of the GDPR, if you obtain data directly from the data subject, then you need to notify them at the time that it’s obtained. If you have a website then this should also be included on your privacy policy page.

Your agreement with Harvest Your Data

By agreeing to the Harvest Your Data terms and conditions you also agree that you will comply with all relevant statues enforced by the GDPR with particular to reference to the paragraph above “Your responsibilities under GDPR should you collect personally identifiable data about EU (European Union) citizens”

In turn Harvest Your Data agrees that, as the Data Processor, we will comply with our responsibilities under the GDPR.

Contacting Us

If there are any questions regarding this privacy policy you may contact us using the information below.

Contact Software Ltd trading as
New Zealand