Skinspect Privacy Policy (Patients)

This Privacy Policy together with our Privacy Policy (Website), Patient Consent Form, and our Terms and Conditions sets out how Skinspect Limited (“we”, “our”, “us”) will use any personal information  we collect from you, or you provide to us during your use of this site (the “website”).


When you enquire about our services or when you become a patient of Skinspect or otherwise use our services, a record is made which includes your personal information.


The type of personal information that we collect will vary depending on the circumstances of collection and the kind of service that you request from us, but will typically include such details are:


  • Personal Information: Your full name, your NHI number, your eligibility, your date of birth, your general contact details, your occupation.
  • Doctor’s Information.
  • Known medical history related to skin.
  • Appointment specific information: when you attend an appointment at Skinspect, we use modern dermoscopy technology and we take clinical images of your skin and make and record assessments on our findings and observations.

Information may be collected via any means, but much of it will be collected from the Patient Consent Form you complete and our assessments at your appointments with us. Other information may also be collected through our website, from you when you register or make a booking with us, or via any other means.


We may collect and use personal information in order to:


  • verify your identity
  • administer or otherwise carry out our obligations in relation to any agreement that you may have with us
  • provide Skinspect screening services and health services to you
  • fulfil administrative, management and operational functions associated with our services and products
  • provide back-end data storage and processing services to third parties such as Dermengine
  • respond to legal orders and obligations
  • protect or enforce our legal rights and interests (including defending any claim)
  • respond to queries

We will not disclose any personally identifiable information without your permission unless:

  • We are legally entitled to do so;
  • We are in negotiations with a third party for the sale or purchase of any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets;
  • We, or substantially all of our assets, are acquired by a third party, in which case personal data held by us relating to or generated by our customers will be part of the transferred assets;
  • To enforce or apply our terms and conditions and other agreements; or to protect our rights, property, safety, customers, or others.

By using our services and providing us with your personal information, you acknowledge and consent (subject to your rights set out below) to the disclosure of your personal information as set out herein.

Holding information


We make reasonable efforts to ensure a level of security appropriate to the risk associated with the processing of your personal information. We maintain organisational, technical and administrative measures designed to protect personal information within our organisation against unauthorized access, destruction, loss, alteration or misuse. Unfortunately, no data transmission or storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of your account has been compromised), please contact us immediately.


We retain your personal information as long as we are providing services to you. We retain personal information after we cease providing services directly or indirectly to you, even if you cease to be our patient, to the extent necessary to comply with our legal and regulatory obligations, and for the purpose of fraud monitoring, detection and prevention. We also retain personal information to comply with our tax, accounting, and financial reporting obligations, where we are required to retain the data by our contractual commitments to our financial partners, and where data retention is mandated by the payment methods that we support. Where we retain data, we do so in accordance with any limitation periods and records retention obligations that are imposed by applicable law.


How can you access or seek correction of your personal information?


You are entitled to access your personal information held by Skinspect on request. To request access to your personal information please contact us in writing using the contact details set out below. 


The Privacy Act gives you the right to access information held about you. Your right of access can be exercised in accordance with the Act.




We may amend this Privacy Policy from time to time. The most up-to-date version of our Privacy Policy can be found by contacting us.


Contact us
If you would like to contact us you can do so by:

Mobile: 022-632-3864


Phone: (09) 390-0305


Address: 1/739 Chapel Road, Botany Downs, Auckland, 2016