Privacy Policy

Effective Date: 01/08/2025

Odin Health Limited (“Odin”, “we,” “our,” or “us”) is committed to protecting the privacy of individuals in accordance with the Privacy Act 2020 (New Zealand) and other applicable privacy laws. Odin provides secure software enabling customers to transfer, store, and process information within their own controlled environments. However, Odin does not have control over how customers use or manage the information disclosed to them; the origin, storage, and handling of all such data remain under the sole control and responsibility of the customers. Odin does not access, process, or control customer personal information processed through its services. Responsibility for managing and protecting this information rests solely with the customer.

This Privacy Policy explains how we collect, use, and protect personal information obtained through our website, access to our services and portals, communications, or when you interact with our social media channels. It also affirms our alignment with internationally accepted privacy principles to the extent applicable to our operations.

Definitions

“Customer” means any individual or organisation that uses Odin’s products or services, or for whom Odin hosts or stores personal data on its servers.

“Odin” refers to Odin Health Limited, including its predecessors, successors, subsidiaries, divisions, and affiliated groups.

“Personal information” means any information, or combination of information, that identifies or could be used to identify an individual. Personal information excludes data that is de-identified, anonymised, or publicly available information that has not been combined with non-public personal data.

“Product” or “Odin integration platform” means Odin’s secure integration software used by customers to integrate, transfer, and process data within environments controlled solely by the customer. The customer retains full control and responsibility for the processing, storage, and management of all personal information within their environment.

1. Who We Are

Odin is a New Zealand-based company that provides secure integration software solutions for enterprise and healthcare organisations.

●               Physical Address: 26 Patey Street, Epsom, Auckland 1051, New Zealand

●               Phone: +64 9 5200 878

●               Website: https://www.odinhealth.co.nz

2. Scope of This Policy

This Policy applies exclusively to personal information collected directly by Odin through our website, direct communications (such as contact forms or emails), and other general online interactions. It does not cover personal information processed by customers within their own environments using Odin’s integration platform, as such data remains fully under the control and responsibility of the customer.

3. No Access to Customer Personal Information

Odin does not access, store, or process any personal information belonging to customers or their end users. All data processing occurs entirely within infrastructure controlled by the customer. The customer remains the role of data controller under the Privacy Act 2020, and is solely responsible for the collection, use, security, and overall management of that personal information, including compliance with applicable privacy obligations.

As such, Odin does not act as a data processor or data controller under applicable privacy laws.

While Odin does not access or process personal information, we recommend customers implement robust access controls and regularly audit configurations to prevent accidental data exposure through integration misconfigurations.

4. Information We Collect

When you visit our website, contact us, or use our online services, we may collect limited personal information, including:

●               Your name, email address, and other contact details, but only if you voluntarily submit a form, send us an email, or register for our portal.

●               Technical data such as page views, session durations, and click behavior.

●               Cookies and usage data to help us analyze and improve website performance.

●               Portal-specific information required for registration and access, such as your username and password.

We do not use personal information to create detailed user profiles, nor do we link it with other data sources such as customer databases or clinical records.

5. How We Use Your Information

We may use your personal information to pursue legitimate business interests, including the following activities:

●               To respond to enquiries and communications you send us.

●               To provide, manage, and secure access to our services and portals.

●               To improve website performance and usability.

●               To maintain system security and prevent misuse.

●               To comply with applicable legal and regulatory obligations

●               To communicate with you for administrative or service-related purposes

●               To contact you with sales, marketing or promotional communications where permitted by law (you may opt out at any time)

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, or as otherwise required by law.

6. Cookies and Analytics

Our website uses cookies and similar tracking technologies to help us understand visitor traffic and improve our services. You can disable cookies at any time through your browser settings.

We currently use third-party analytics tools, such as Google Analytics, to gain insights into how visitors interact with our website. These tools may collect anonymised technical data, including page views, session durations, and click behavior. This information is used exclusively to enhance website performance and user experience.

7. Data Security

We take reasonable steps to protect any personal information collected. These steps may include encryption, secure servers, and access controls. However, no transmission over the internet is completely secure.

8. Disclosure to Third Parties

We do not sell or rent personal information. We do not disclose personal information to third parties except as required by law or with your explicit consent. All personal information is retained and processed internally by Odin for the purposes outlined in this Privacy Policy.

9. Your Rights

Under the Privacy Act 2020, you have the right to:

●               Request access to personal information we hold about you

●               Request correction of any inaccurate information

●               Lodge a complaint with the Office of the Privacy Commissioner (https://www.privacy.org.nz)

If you wish to access, correct, or enquire about your personal information, please get in touch using the contact details provided in Section 11 of this Policy.

10. Changes to This Policy

This Privacy Policy may be updated periodically to reflect changes in services or legal obligations. Updated versions will be posted here with a new effective date. If you disagree with changes, please stop submitting personal information to Odin.

11. Contact Us

For privacy-related enquiries, please contact:

Odin Health Limited

Address: 26 Patey Street, Epsom, Auckland 1051, New Zealand

Email: enquiries@odinhealth.co.nz

Phone: +64 9 5200 878