In New Zealand
Under the Privacy Act 2020, Harmoney must not keep personal information for longer than is required for the purposes for which the information may lawfully be used (Information privacy principle 9).
The purposes for which Harmoney uses personal information are set out in our Privacy Policy (“Purposes for which we collect your personal information” - https://www.harmoney.co.nz/legal/privacy-policy), which you accepted when creating an account with us.
This includes “complying with our legal obligations”. Harmoney has a number of record-keeping obligations under New Zealand law. For example:
Under the Anti-Money Laundering and Countering Financing of Terrorism Act 2009, we must keep records of how we verify the identity of our prospective customers (section 50), how we establish a business relationship with our customers (section 51), every transaction we enter into with our customers (section 49), and relating to our ongoing business relationship with customers, such as correspondence (section 51). These records must be kept for “at least” 5 years, with the retention period running from the end (not the beginning) of our business relationship with the customer.
Under the Credit Contracts and Consumer Finance Act 2003, we must keep records of our inquiries into our customers’ financial and credit history (among other things) as part of performing our suitability and affordability assessments on our customers (section 9CA). These records must be kept for “at least” 7 years from the date of the inquiry.
Harmoney is also able to lawfully use personal information for a number of purposes related to the operation of our business, as set out in Privacy Policy. This includes “providing you with information about us or our services”, “managing our relationship with you”, “marketing products and services”, and more. The Privacy Act does not set a specific time limit on our use of personal information for these purposes. We may keep personal information for these purposes, for as it is required for these purposes.
Once personal information is no longer required for all of the purposes for which it may lawfully be used by Harmoney, Harmoney will destroy that information, or de-identify that information (such that it is no longer information “about an identifiable individual” for the purposes of the Privacy Act).
Unfortunately, we are currently unable to delete your information from our systems, as it is required for the purposes for which Harmoney may lawfully use that information (including to meet our record-keeping obligations). However, please be assured that the information is securely held, will only be used for the purposes for which it was collected, and will be destroyed or de-identified in due course, in accordance with our obligations.
In Australia
Under the Privacy Act 1988, Harmoney must take such steps as are reasonable in the circumstances to destroy or de-identify personal information where Harmoney no longer needs the information for any purpose for which the information may be used (Australian Privacy Principle 11).
The purposes for which Harmoney uses personal information are set out in our Privacy Policy ("Purposes for which we may collect, hold, use and disclose your personal information" - https://www.harmoney.com.au/legal/privacy-policy), which you accepted when creating an account with us.
This includes “complying with specific Australian laws that make it mandatory for us to collect your personal information”, such as the National Consumer Credit Protection Act 2009, the Anti Money Laundering and Counter Terrorism Financing Act 2006, the Personal Property Securities Act 2009 and State and Territory real property and security interests laws, the Financial Sector (Collection of Data) Act 2001, the Corporations Act 2001 and other regulatory legislation, and the Tax Administration Act 1953, Income Tax Assessment Act 1997 and other taxation laws.
Harmoney is also able to lawfully use personal information for a number of purposes related to the operation of our business, as set out in Privacy Policy. This includes “providing you with information about the services we provide”, “marketing products and services”, and more. The Privacy Act does not set a specific time limit on our use of personal information for these purposes. We may keep personal information for as long as we need the personal information for any purpose for which the information may be used.
Once personal information is no longer required for all of the purposes for which it may lawfully be used by Harmoney, Harmoney will destroy that information, or de-identify that information.
Unfortunately, we are currently unable to delete your information from our systems, as it is required for the purposes for which Harmoney may lawfully use that information (including to meet our record-keeping obligations). However, please be assured that the information is securely held, will only be used for the purposes for which it was collected, and will be destroyed or de-identified in due course, in accordance with our obligations.