Back to Home

Privacy Policy

Last Updated: April 2026

At Nestee, we are all about making buying and selling top-tier baby gear easy, safe, and trustworthy. To make that happen, we need to collect a little bit of information from you. This policy explains what we collect, why we need it, and how we keep it safe under the New Zealand Privacy Act 2020.

1. What Information We Collect

Depending on whether you are selling or buying, we collect:

  • Contact Details: Your name, email address, and phone number.
  • Location Details: Your physical address so our team can swing by for hassle-free collections or deliver your items.
  • Item Information & Photos: Details about your gear, safety labels, and photos.
  • Payment Information: If you are buying, your payment is securely processed through Stripe (we do not see your credit card details). If you are selling to us, we collect your bank account details solely to pay you.
  • Website Data: We collect basic analytics (like IP addresses) to help our website run smoothly.

2. How We Use Your Information

We use your details to make your life easier. Specifically, to:

  • Generate fair, precise quotes using our proprietary valuation tools.
  • Cross-reference your item's make and model against national safety recall databases to prevent the sale of unsafe goods.
  • Schedule and coordinate easy pickup times using our secure booking portal.
  • Prevent fraud and verify ownership of high-end goods.
  • Process your purchases and keep you updated on your order via email or SMS.

3. How We Secure Your Data (The Tech)

We take the security of your family’s information as seriously as the safety of our car seats.

  • Enterprise Infrastructure: Our platform is built on Google Cloud Services (Firebase). All data transferred between your browser and our servers is secured using SSL/TLS encryption, and stored data is protected with industry-standard AES-256 encryption.
  • Payment Security: We do not store, process, or transmit your credit card information on our servers. All transactions are handed off to Stripe, which is a certified Level 1 PCI-DSS compliant payment processor.

4. Data Minimisation & The "30-Day Purge"

We believe in collecting only what we need and deleting what we don't.

  • Sellers: If you request an instant cash offer but choose not to proceed, our database is hard-coded with an automated Time-To-Live (TTL) feature. This means your lead data and uploaded photos are automatically and permanently purged from our active servers after 30 days.
  • Internal Soft-Deletes: For completed transactions, we retain financial data strictly as long as required by New Zealand tax law (typically 7 years). However, this data is heavily restricted and only accessible to verified Nestee administration staff.

5. How We Store and Share Your Data

Your data is stored securely on our custom Firebase cloud servers. We do not sell your personal information. We only share your info with trusted partners who help us run our business (like Stripe for payments, and Google Workspace for calendar syncing).

6. Your Rights

You have the right to know what personal information we hold about you and to ask for it to be corrected or deleted at any time. Just reach out to our team at hello@nestee.co.nz.