Cookie Policy of storagemasterton.nz/

This document informs Users about the technologies that help this Website to achieve the purposes described below. Such technologies allow the Owner to access and store information (for example by using a Cookie) or use resources (for example by running a script) on a User’s device as they interact with this Website.

For simplicity, all such technologies are defined as "Trackers" within this document – unless there is a reason to differentiate.
For example, while Cookies can be used on both web and mobile browsers, it would be inaccurate to talk about Cookies in the context of mobile apps as they are a browser-based Tracker. For this reason, within this document, the term Cookies is only used where it is specifically meant to indicate that particular type of Tracker.

Some of the purposes for which Trackers are used may also require the User's consent. Whenever consent is given, it can be freely withdrawn at any time following the instructions provided in this document.

This Website uses Trackers managed directly by the Owner (so-called “first-party” Trackers) and Trackers that enable services provided by a third-party (so-called “third-party” Trackers). Unless otherwise specified within this document, third-party providers may access the Trackers managed by them.
The validity and expiration periods of Cookies and other similar Trackers may vary depending on the lifetime set by the Owner or the relevant provider. Some of them expire upon termination of the User’s browsing session.
In addition to what’s specified in the descriptions within each of the categories below, Users may find more precise and updated information regarding lifetime specification as well as any other relevant information – such as the presence of other Trackers - in the linked privacy policies of the respective third-party providers or by contacting the Owner.

Activities strictly necessary for the operation of this Website and delivery of the Service

This Website uses so-called “technical” Cookies and other similar Trackers to carry out activities that are strictly necessary for the operation or delivery of the Service.

Other activities involving the use of Trackers

Measurement

This Website uses Trackers to measure traffic and analyze User behavior with the goal of improving the Service.

  • Analytics

    The services contained in this section enable the Owner to monitor and analyze web traffic and can be used to keep track of User behavior.

    Google Analytics (Google LLC)

    Google Analytics is a web analysis service provided by Google LLC (“Google”). Google utilizes the Data collected to track and examine the use of this Website, to prepare reports on its activities and share them with other Google services.
    Google may use the Data collected to contextualize and personalize the ads of its own advertising network.

    Personal Data processed: Tracker and Usage Data.

    Place of processing: United States – Privacy PolicyOpt Out.

    Storage duration:

    • AMP_TOKEN: 1 hour
    • _ga: 2 years
    • _gac*: 3 months
    • _gat: 1 minute
    • _gid: 1 day

  • Anonymized analytics services

    The services contained in this section allow the Owner, through the use of third-party Trackers, to collect and manage analytics in an anonymized form.

    Google Analytics with anonymized IP (Google LLC)

    Google Analytics is a web analysis service provided by Google LLC (“Google”). Google utilizes the Data collected to track and examine the use of this Website, to prepare reports on its activities and share them with other Google services.
    Google may use the Data collected to contextualize and personalize the ads of its own advertising network.
    This integration of Google Analytics anonymizes your IP address. It works by shortening Users' IP addresses within member states of the European Union or in other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the complete IP address be sent to a Google server and shortened within the US.

    Personal Data processed: Tracker and Usage Data.

    Place of processing: United States – Privacy PolicyOpt Out.

    Storage duration:

    • AMP_TOKEN: 1 hour
    • _ga: 2 years
    • _gac*: 3 months
    • _gat: 1 minute
    • _gid: 1 day

Activities that do not fit the above categorizations

  • Consent

    When you provide us with personal information to complete a transaction, verify your credit card, place an order, arrange for a delivery or return a purchase, we imply that you consent to our collecting it and using it for that specific reason only.
    If we ask for your personal information for a secondary reason, like marketing, we will either ask you directly for your expressed consent, or provide you with an opportunity to say no.
    How do I withdraw my consent? If after you opt-in, you change your mind, you may withdraw your consent for us to contact you, for the continued collection, use or disclosure of your information, at anytime, by contacting us at mstn.storage@gmail.com or mailing us at: Masterton Storage Ltd, 291 High Street, Masterton 5810, New Zealand

  • Credit Card Policy

    To protect your personal information, we take reasonable precautions and follow industry best practices to make sure it is not inappropriately lost, misused, accessed, disclosed, altered or destroyed. If you provide us with your credit card information, the information is transmitted using Transport Layer Security technology (TLS). All data is encrypted and stored using industry standard AES encryption. All our systems are fully compliant with PCI-DSS requirements.


    Masterton Storage Ltd currently accepts VISA and MasterCard and has negotiated contracts for processing payment card transactions

    REFUNDS
    When a good or service is purchased using a payment card and a refund is necessary, the refund must be credited back to the account that was originally charged. Refunds in excess of the original sale amount or cash refunds are prohibited.

    MAINTAINING SECURITY
    Departments and administrative areas accepting payment cards on behalf of Masterton Storage Ltd are subject to the Payment Card Industry Data Security Standards (PCI DSS).
    Masterton Storage Ltd prohibits the transmission of cardholder data or sensitive authentication data via email or unsealed envelopes through campus mail as these are not secure.


    Masterton Storage Ltd restricts access to cardholder data to those with a business “need to know.”
    For electronic media, cardholder data shall not be stored on servers, local hard drives, or external (removable) media including floppy discs, CDs or thumb (flash) drives unless encrypted and otherwise in full compliance with PCI DSS.
    For paper media, cardholder data shall not be stored unless approved for legitimate business purposes.

    RESPONSIBILITIES
    Merchant Department Responsible Persons (MDRPs) are responsible for:
    Executing on behalf of the relevant Merchant Department, Payment Card Account Acquisition or Change Procedures.
    Ensuring that all employees (including the MDRP), contractors and agents with access to payment card data within the relative Merchant Department acknowledge on an annual basis and in writing that they have read and understood this Policy.
    Ensuring that all payment card data collected by the relevant Merchant Department in the course of performing business, regardless of whether the data is stored physically or electronically is secured. Data is considered to be secured only if all of the following criteria are met:
    Only those with a "need-to-know" are granted access to payment card and electronic payment data;
    Email should not be used to transmit credit card or personal payment information. If it should be necessary to transmit credit card information via email only the last four digits of the credit card number can be displayed;
    Credit card or personal information is never downloaded onto any portable devices or media such as USB flash drives, compact disks, laptop computers or personal digital assistants;
    Fax transmissions (both sending and receiving) of credit card and electronic payment information occurs using only fax machines which are attended by those individuals who must have contact with payment card data to do their jobs;

    The processing and storage of personally identifiable credit card or payment information on computers and servers is prohibited;
    Only secure communication protocols and/or encrypted connections to the authorized vendor are used during the processing of eCommerce transactions;
    The three or four digit validation code printed on the payment card is never stored in any form;
    The full contents of any track data from the magnetic stripe are never stored in any form;
    The personal identification number (PIN) or encrypted PIN block are never stored in any form;
    The primary account number (PAN) is rendered unreadable anywhere it is stored;
    All but the last four digits of any credit card account number are masked when it is necessary to display credit card data;
    All media containing payment card or personal payment data is retained no longer than a maximum of six (6) months and then destroyed or rendered unreadable.
    The Director, Information Security Management and Compliance shall maintain currency with the requirements of the PCI DSS and related requirements to ensure that this policy remains current and shall coordinate and lead any response to a security breach involving cardholder data.
    The Manager and Accounts Department shall:
    Provide training to ensure that merchants are trained in accepting and processing payment cards in compliance with this policy;
    Work with external vendors and coordinate payment card policies, standards, and procedures;
    Serve as liaison between Financial Management Services, Information Technology Services, and the merchant for Payment Card account acquisition or change procedures;
    and
    Review and modify the Application for Payment Card Account Acquisition or Change as necessary.

    Internal Auditing Services shall:
    Periodically review merchant compliance with this policy and the Payment Card Industry (PCI) Data Security Standards (DSS);
    Identify unapproved payment applications or external vendors that collect payment card data on behalf of Masterton Storage Ltd and notify the Company.

  • WIRELESS TECHNOLOGY

    Masterton Storage Ltd discourages the use of wireless technology to process or transmit cardholder data.

    Requests for Payment Card Account Acquisition or Change that include the use of wireless technology will be reviewed on a case by case basis and shall carefully consider the need for the technology against the risk of a non-secure payment environment.
    If the use of wireless technology is approved, the storage of cardholder data on local hard drives, floppy disks or other external media is prohibited. It is also prohibited to use cut-and-paste and print functions during remote access. Activation of modems for vendors will be permitted only when no other alternative is available and will be immediately deactivated after use.

    TRAINING
    Employees who are expected to be given access to cardholder data shall be required to complete upon hire, and at least annually thereafter, security awareness training focused on cardholder data security. Employees shall be required to acknowledge at least annually that they have received training, understand cardholder security requirements, and agree to comply with these requirements.
    Selling goods and services online
    The Personal Data collected are used to provide the User with services or to sell goods, including payment and possible delivery.
    The Personal Data collected to complete the payment may include the credit card, the bank account used for the transfer, or any other means of payment envisaged. The kind of Data collected by this Application depends on the payment system used.

How to manage preferences and provide or withdraw consent

There are various ways to manage Tracker related preferences and to provide and withdraw consent, where relevant:

Users can manage preferences related to Trackers from directly within their own device settings, for example, by preventing the use or storage of Trackers.

Additionally, whenever the use of Trackers is based on consent, Users can provide or withdraw such consent by setting their preferences within the cookie notice or by updating such preferences accordingly via the relevant consent-preferences widget, if available.

It is also possible, via relevant browser or device features, to delete previously stored Trackers, including those used to remember the User’s initial consent.

Other Trackers in the browser’s local memory may be cleared by deleting the browsing history.

With regard to any third-party Trackers, Users can manage their preferences and withdraw their consent via the related opt-out link (where provided), by using the means indicated in the third party's privacy policy, or by contacting the third party.

Locating Tracker Settings

Users can, for example, find information about how to manage Cookies in the most commonly used browsers at the following addresses:

Users may also manage certain categories of Trackers used on mobile apps by opting out through relevant device settings such as the device advertising settings for mobile devices, or tracking settings in general (Users may open the device settings and look for the relevant setting).

Consequences of denying consent

Users are free to decide whether or not to grant consent. However, please note that Trackers help this Website to provide a better experience and advanced functionalities to Users (in line with the purposes outlined in this document). Therefore, in the absence of the User's consent, the Owner may be unable to provide related features.

Owner and Data Controller

Masterton Storage Ltd
291 High Street,
Masterton
New Zealand 5810

Owner contact email: mstn.storage@gmail.com

Since the use of third-party Trackers through this Website cannot be fully controlled by the Owner, any specific references to third-party Trackers are to be considered indicative. In order to obtain complete information, Users are kindly requested to consult the privacy policies of the respective third-party services listed in this document.

Given the objective complexity surrounding tracking technologies, Users are encouraged to contact the Owner should they wish to receive any further information on the use of such technologies by this Website.

Definitions and legal references

Personal Data (or Data)

Any information that directly, indirectly, or in connection with other information — including a personal identification number — allows for the identification or identifiability of a natural person.

Usage Data

Information collected automatically through this Website (or third-party services employed in this Website), which can include: the IP addresses or domain names of the computers utilized by the Users who use this Website, the URI addresses (Uniform Resource Identifier), the time of the request, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server's answer (successful outcome, error, etc.), the country of origin, the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited, and other parameters about the device operating system and/or the User's IT environment.

User

The individual using this Website who, unless otherwise specified, coincides with the Data Subject.

Data Subject

The natural person to whom the Personal Data refers.

Data Processor (or Data Supervisor)

The natural or legal person, public authority, agency or other body which processes Personal Data on behalf of the Controller, as described in this privacy policy.

Data Controller (or Owner)

The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of Personal Data, including the security measures concerning the operation and use of this Website. The Data Controller, unless otherwise specified, is the Owner of this Website.

This Website (or this Application)

The means by which the Personal Data of the User is collected and processed.

Service

The service provided by this Website as described in the relative terms (if available) and on this site/application.

European Union (or EU)

Unless otherwise specified, all references made within this document to the European Union include all current member states to the European Union and the European Economic Area.

Cookie

Cookies are Trackers consisting of small sets of data stored in the User's browser.

Tracker

Tracker indicates any technology - e.g Cookies, unique identifiers, web beacons, embedded scripts, e-tags and fingerprinting - that enables the tracking of Users, for example by accessing or storing information on the User’s device.

Legal information

This privacy statement has been prepared based on provisions of multiple legislations, including Art. 13/14 of Regulation (EU) 2016/679 (General Data Protection Regulation).

This privacy policy relates solely to this Website, if not stated otherwise within this document.

Latest update: July 21, 2021

iubenda hosts this content and only collects the Personal Data strictly necessary for it to be provided.

Show the complete Privacy Policy