GDPR Compliance

How we collect, use, protect, and respect your personal data.

1. Introduction

This GDPR Compliance Statement explains how QuantIQ (“we”, “our”, “us”) processes personal data in accordance with the General Data Protection Regulation (GDPR) and other applicable privacy laws. Even though we are based in New Zealand, we are committed to high standards of data protection for all visitors, including those from the European Union (EU) and European Economic Area (EEA).

2. Who Is Responsible for Your Data?

QuantIQ is the data controller for personal data collected through this website and related communication channels. If you have any questions about this statement or how we handle your data, please contact us via our Contact Page.

3. What Personal Data We Collect

We may collect and process the following categories of personal data:

  • Contact details: name, email address, phone number, company name
  • Project information: property details, project scope, budget, timelines
  • Technical data: IP address, browser type, device information, pages visited
  • Communication data: messages sent via forms, email, or phone notes
  • Usage data: how you interact with our website and services

4. How We Collect Personal Data

We collect data in the following ways:

  • When you submit a form on our website
  • When you contact us by email, phone, or other channels
  • When you request a quote, proposal, or consultation
  • Through cookies and analytics tools (see our Cookies Policy)
  • From publicly available sources where appropriate (e.g. property or company records)

5. Legal Bases for Processing

Under GDPR, we rely on one or more of the following legal bases to process your personal data:

  • Contract: where processing is necessary to provide our services or respond to your requests.
  • Legitimate interests: such as improving our services, managing our business, and preventing fraud.
  • Consent: where you have explicitly agreed to specific processing (e.g. certain marketing activities).
  • Legal obligation: where we must retain or share data to comply with applicable laws.

6. How We Use Your Personal Data

We may use your personal data to:

  • Respond to enquiries and provide quotes or proposals
  • Deliver quantity surveying and related professional services
  • Manage projects, contracts, and client relationships
  • Improve our website, services, and user experience
  • Maintain security, prevent misuse, and detect fraud
  • Comply with legal, regulatory, and professional obligations

7. Data Sharing and Third Parties

We may share your personal data with trusted third parties where necessary, including:

  • IT and hosting providers
  • Professional advisors (e.g. legal, accounting)
  • Subconsultants or contractors involved in your project
  • Analytics and security service providers

We only share data where it is necessary, proportionate, and subject to appropriate safeguards. We do not sell your personal data.

8. International Data Transfers

Our website infrastructure and some third‑party services may be located outside the EU/EEA. Where personal data is transferred internationally, we aim to ensure an adequate level of protection through measures such as contractual safeguards, secure hosting environments, and reputable providers.

9. Data Retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including:

  • Providing services and managing projects
  • Maintaining business and financial records
  • Complying with legal and regulatory requirements
  • Handling disputes or enforcing agreements

When data is no longer required, we take reasonable steps to securely delete or anonymise it.

10. Your Rights Under GDPR

If you are located in the EU/EEA, you may have the following rights:

  • Right of access: to request a copy of the personal data we hold about you.
  • Right to rectification: to correct inaccurate or incomplete data.
  • Right to erasure: to request deletion of your data in certain circumstances.
  • Right to restriction: to limit how we process your data in specific situations.
  • Right to data portability: to receive your data in a structured, commonly used format.
  • Right to object: to certain types of processing, including direct marketing.
  • Right to withdraw consent: where processing is based on your consent.

To exercise any of these rights, please contact us via our Contact Page. We may need to verify your identity before responding to your request.

11. Security Measures

We take reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse, or alteration. These may include:

  • Secure hosting and server configurations
  • Access controls and authentication
  • Regular updates and security patches
  • Backups and resilience measures

12. Cookies and Tracking

We use cookies and similar technologies to improve website performance, security, and analytics. For more details, please see our Cookies Policy.

13. Complaints

If you have concerns about how we handle your personal data, we encourage you to contact us first so we can try to resolve the issue. You may also have the right to lodge a complaint with your local data protection authority if you are located in the EU/EEA.

14. Updates to This GDPR Statement

We may update this GDPR Compliance Statement from time to time to reflect changes in our practices, legal requirements, or services. The latest version will always be available on this page.

15. Contact Us

For any questions about this GDPR Compliance Statement or our data protection practices, please contact us via our Contact Page.