Privacy policy

Last updated: April 2026

RiverShot NZ (“we”, “us”) respects the privacy of readers who visit https://rivershot.nz/ and related pages. This policy explains what we collect, why we collect it, how long we keep it, and the choices available to you. It is written in plain language because privacy policies only work when people can actually read them.

Who controls data

The publication team responsible for RiverShot NZ acts as the data controller for information submitted voluntarily through contact mechanisms on this site. Because this stack is intentionally lightweight, we avoid accounts, comment systems, and marketing databases that would multiply places where personal data could leak.

What we collect automatically

Like most websites, our hosting environment may create standard server logs when your browser requests a page. Those logs can include your IP address, user agent string, requested URL, timestamp, and HTTP status. We use logs for security monitoring, debugging broken pages, and aggregate usage analysis. We do not use those logs to build individual behavioural profiles, and we do not sell server logs to brokers.

This site does not intentionally load third-party behavioural advertising trackers on article pages. If a future embed changes that, we will list the provider here and update the “Last updated” date.

What you send us

If you email us, your message and email address are stored in our mail system for as long as operational and legal retention policies require. We use correspondence to improve accuracy, respond to questions, and document corrections. We do not sell mailing lists. If you ask us to delete non-essential correspondence, we will comply when technically feasible and when no overriding legal retention duty applies.

Cookies and local storage

Core navigation should work without cookies. Client-side search may cache an index in memory during a session; it is not used to fingerprint you across the web. If we add analytics cookies later, we will describe them here with opt-out guidance.

Legal bases (EEA readers)

If the GDPR applies to you, our processing of contact emails is typically based on legitimate interests in communicating with readers and maintaining accurate journalism. You may request access or deletion subject to exceptions for legal claims and freedom of expression.

Children

RiverShot NZ is intended for a general audience, but angling involves risk and judgement calls that may not be appropriate for unsupervised minors. We do not knowingly collect personal information from children for marketing purposes.

Security

No online transmission is perfectly secure. We choose conservative hosting practices and keep software updated, but you should avoid sending highly sensitive personal documents unless we explicitly agree to a secure channel.

Changes

We may update this policy to reflect new features or legal requirements. Material changes will be noted by advancing the “Last updated” date at the top of this page.

Contact

Privacy questions can be sent through the contact page with “Privacy” in the subject line.

International transfers

If email or hosting infrastructure processes data outside New Zealand, we rely on providers with industry-standard safeguards. We minimise data duplication and avoid unnecessary subprocessors. If you need a list of current subprocessors for procurement review, request it through the contact page with a legitimate organisational need.

Retention

Server logs rotate on a schedule appropriate to security investigations. Mailbox retention follows practical mailbox hygiene: correspondence about corrections may be kept longer because it documents editorial diligence.

Analytics philosophy

If we add privacy-preserving aggregate analytics in the future, we will prefer techniques that do not reconstruct individual browsing histories across unrelated sites. Any change will be listed here with opt-out instructions when technically meaningful.