Evolution Lawyers


This privacy policy sets out how Evolution Lawyers collects, uses, discloses, and protects personal information in compliance with the Privacy Act 2020 (Act).  It is not intended to cover types of personal information that are not covered by the Act.

‘Personal information’ is information about an identifiable individual. This may include, but is not limited to, information such as the individual’s name, email address, telephone number, bank account details, taxation details, and accounting and financial information.


We collect and hold personal information when it is necessary for business purposes.  We collect personal information from customers when they provide that personal information to us.

Customers provide us with their personal information through our website, and in written correspondence, telephone conversations, and other communication with us.

We may collect personal information about customers from third parties where we have been authorised to do so, or if the information is publicly available.

Because your personal information is based on your written or oral consent, you may withdraw your consent at any time. We note withdrawing consent will not affect the lawfulness of how we used the information prior to its removal.


We may use your personal information:

  • to verify your identity;
  • to provide services to you;
  • to market our services to you;
  • to improve the services we provide;
  • to respond to communications from you;
  • to undertake credit checks;
  • for billing and the collection of amounts owed to us;
  • to comply with legal requirements;
  • to carry out activities related to the operation of our business; and
  • for any other purpose authorised by you or the Act.

If you choose not to provide us with personal information, we may not be able to provide you with legal services.

You may elect to no longer receive marketing material from us by giving written notice.

We may be subject to a compliance notice under the Act, which would require us to follow a set of described steps by the Privacy Commissioner to remedy non-compliance. This circumstance would also involve the collection and use of personal information.


We may disclose your personal information:

  • if the use or disclosure is permitted by the Act or this privacy policy;
  • if disclosure is necessary to provide you with legal services or advice;
  • to any business that provides support services related to our supply of services, to the extent reasonably required;
  • for credit checking purposes;
  • if required to do so by law;
  • if required to do so under the privacy breach notification regime; or
  • with your prior written consent.

We are permitted under the Act to disclose your personal information to an overseas agency, only if that agency has a similar level of protection to New Zealand law, or if you authorise such disclosure.


  • We will take reasonable precautions to protect your personal information from unauthorised access, modification, or disclosure, and other misuse.
  • We will notify you at the first reasonable opportunity if we discover or are advised that your personal information has been lost, stolen, accessed, used, disclosed, copied, modified, or disposed of by an unauthorised person or in any unauthorised manner.
  • We encourage you to notify us immediately if you believe there has been a privacy breach of your personal information, so that we may investigate and remedy the situation as soon as possible.
  • We note the Act has extraterritorial effect. This means any overseas business or organisation, “carrying on business” in New Zealand, will be subject to the Act’s obligations and requirements.


We may acquire personal information when you use our online system for taking debit or credit card payments.  Such information will typically include the cardholder’s name and card number, expiry date, and CSV number.  We may obtain other personal information from your bank in connection with your use of our payment system as required to facilitate payments being made.

All transactions will be processed through a secure, third-party system.  We and the provider of our payment system are subject to, and comply with, the Payment Card Industry Data Security Standards for storage of card information.

We will only disclose information obtained from your use of our payment system for purposes relating to that use, unless otherwise required by law.


Subject to the Act, you have the right to access, and request corrections to, your personal information that we hold.

We must be satisfied that a request to correct personal information is reasonable and that we are reasonably able to make the correction. We will use reasonable endeavours to advise you if we are unable to make a requested correction.


The transmission or provision of personal information over the Internet is at your own risk.  If you follow a link on our website to another website, the owner of that website may have its own privacy policy relating to your personal information.  Our privacy policy will not apply to the provision of your personal information through any third party’s website.

We may use cookies to monitor your use of our website.  Cookies are small text files that are stored on your computer for record-keeping purposes.  A cookie does not identify you personally or contain any other information about you, but it does identify your computer.  You may disable or manually manage cookies by changing your web-browser settings.  However, this may limit the functionality and usability of the website and its features.


Unless we have been communicating with you using another means, all notices and other communications you wish to send us in connection with this privacy policy must be sent by email to mail@evolutionlawyers.nz.


We may change this policy from time to time.  Any amended policy is effective from the time it is published on our website and will apply between us whether or not we have given you specific notice of any changes.