MyHub Privacy Statement

Effective Date: 01 October 2025

MyHub Intranet Solutions Limited (“MyHub,” “we,” “our,” or “us”) respects your privacy and is committed to protecting personal information in accordance with applicable privacy laws, including the New Zealand Privacy Act 2020, the Australian Privacy Act 1988, and the GDPR (where applicable). By using the MyHub platform, including MyHub Learning, you agree to this Privacy Statement.

1. Scope

This Privacy Statement applies to:

  • Visitors to the MyHub website
  • Customers using the MyHub platform
  • End users of customer intranet sites hosted by MyHub

2. Information We Collect

Depending on your interaction with us, we may collect:

  • Identification and profile information such as name, job title, and organization
  • Contact details such as email address and phone number
  • Account credentials including username and encrypted password
  • Profile details including images or uploaded files
  • Usage data such as IP address, browser type, device information, and access logs
  • Learning data (for MyHub Learning) such as course enrolments, progress, and completion records

3. How We Use Personal Information

We use personal information to:

  • Provide access to and operation of the MyHub platform
  • Deliver MyHub Learning services and record progress
  • Provide support and communicate with customers
  • Improve and develop platform functionality
  • Ensure security and compliance with legal requirements
  • Enforce our Terms of Use

We do not sell or use personal information for unrelated marketing without consent.

4. Legal Basis for Processing

We process personal information based on:

  • Contractual necessity to provide the subscribed services
  • Legitimate interests in operating, maintaining, and securing our systems
  • Consent where required (for example, optional integrations or communications)
  • Compliance with legal obligations

5. Disclosure to Third Parties

We share information with trusted service providers only as necessary to deliver our services.

SuperPath Integration

  • For customers using MyHub Learning, we share limited data (name, email address, role, and learning data) with SuperPath (8am Holdings Pty Ltd, Australia).
  • This enables user account setup, learning delivery, tracking, and reporting.
  • SuperPath acts as a data processor under a Data Processing Addendum (DPA) requiring security, confidentiality, and breach-notification obligations.
  • SuperPath may not use or disclose data for any purpose other than providing services to MyHub.

Other Service Providers
We may also share data with:

  • Hosting and infrastructure providers
  • Email and communication tools
  • Analytics and monitoring platforms
  • Backup and data recovery systems – All such providers are contractually required to handle personal information securely and only as instructed by MyHub.

6. Cross-Border Data Transfers

  • MyHub hosts data primarily in secure environments operated by Amazon Web Services (AWS) in the United States.
  • To provide MyHub Learning, data may also be transmitted to systems operated by SuperPath in Australia.
  • These transfers are subject to contractual and technical safeguards that ensure an equivalent level of privacy protection to that required under the New Zealand Privacy Act 2020.
  • By using MyHub, you consent to these transfers as necessary for the delivery of our services.

7. Security Measures

We apply industry-standard measures to safeguard data, including:

  • Encryption in transit and at rest
  • Role-based access control and authentication
  • Monitoring, auditing, and incident response procedures
  • Regular security reviews and penetration testing

In the event of a notifiable data breach, MyHub will promptly notify affected parties and regulators as required by law.

8. Retention and Deletion

Personal information is retained only as long as needed to deliver our services or as required by law. For MyHub Learning, data stored by SuperPath will be permanently deleted or anonymized within approximately 60 days after the end of the customer’s subscription, unless a longer retention period is required by law.

9. Your Rights

You may:

  • Request access to personal information we hold about you
  • Request correction or deletion of your data
  • Object to certain processing or request portability where applicable

To exercise your rights, email privacy@myhubintranet.com. We will verify your identity before acting on your request.

10. Cookies

MyHub uses cookies and similar technologies to improve user experience, analyze usage, and enhance security.
You can manage cookie settings through your browser. Disabling cookies may affect functionality.

11. Mobile Access

When using MyHub on mobile devices, we may collect device metadata (such as device type, OS version, or app version) to optimize functionality. We may request access to hardware features (camera, microphone, etc.) only with your permission and solely for the enabled purpose. Permissions can be revoked at any time through device settings.

12. Updates to This Statement

We may update this Privacy Statement periodically. The latest version will always be available on our website, and the effective date will reflect when the latest version took effect.
Continued use of MyHub constitutes acceptance of any updates.

13. Contact

If you have questions or concerns about privacy or data protection, please contact:

Privacy Officer
MyHub Intranet Solutions Limited
PO Box 114, Motueka 7143, New Zealand
Email: privacy@myhubintranet.com