First Cordon

Legal

Privacy Policy

Last updated: June 2025  ·  Applies to firstcordon.com and all First Cordon services

Summary

We collect only what we need to run Talos V3 and respond to your enquiries. We do not sell your data. Footage is processed in transit and not stored by First Cordon. You can request access to, correction of, or deletion of your information at any time by emailing precision@firstcordon.com.

1. About This Policy

This Privacy Policy explains how First Cordon (a subsidiary of GCSG Security Group) collects, uses, stores, and discloses personal information in connection with the Talos V3 (Talos V3) and our website at firstcordon.com. We are committed to protecting personal information in accordance with the New Zealand Privacy Act 2020, the Australian Privacy Act 1988, and applicable United States federal and state privacy laws.

2. Information We Collect

We may collect the following types of information: (a) Contact information — name, email address, phone number, organisation name, and job title provided via our website contact forms or during onboarding; (b) Account information — login credentials and user profiles for the Talos V3 operator portal; (c) Usage data — access logs, alert interaction data, and platform usage statistics; (d) Technical data — IP addresses, browser type, device identifiers, and cookies; (e) Communications — emails, call records, and messages you send to us. We do not collect or store footage or biometric data directly. Footage is processed in transit by Talos V3 and is not retained by First Cordon unless a specific data retention agreement is in place.

3. How We Use Your Information

We use your personal information to: (a) provide, operate, and improve the Talos V3 service; (b) manage your account and respond to enquiries; (c) send service-related communications including alerts, maintenance notices, and updates; (d) send marketing communications where you have consented or where we have a legitimate interest, with an easy option to opt out; (e) meet our legal and regulatory obligations; (f) investigate and prevent fraud, security breaches, or misuse of the Platform; (g) conduct internal analytics and product development.

4. Legal Basis for Processing (Australia & NZ)

We process personal information where: (a) it is necessary for the performance of a contract with you or your organisation; (b) we have obtained your consent; (c) we have a legitimate interest that is not overridden by your rights; or (d) we are required to do so by law. You may withdraw consent at any time by contacting us, noting that withdrawal does not affect the lawfulness of processing already carried out.

5. Disclosure of Personal Information

We do not sell personal information. We may disclose information to: (a) GCSG Security Group entities for operational and administrative purposes; (b) trusted third-party service providers (cloud hosting, analytics, communications platforms) under confidentiality obligations; (c) law enforcement or regulatory authorities where required by law or to protect the safety of individuals; (d) a successor entity in the event of a merger, acquisition, or sale of assets. Any third parties are required to handle personal information consistent with applicable privacy laws.

6. International Transfers

First Cordon operates in New Zealand, Australia, and the USA. Personal information may be stored or processed in any of these jurisdictions. When transferring data across borders, we take steps to ensure it receives appropriate protection under applicable law. By using our services, you consent to this transfer where permitted by your local laws.

7. Data Security

We implement technical and organisational measures appropriate to the sensitivity of the information held, including access controls, encryption in transit, and security monitoring. No system is completely secure. In the event of a data breach that is likely to cause harm, we will notify affected individuals and relevant authorities as required by applicable law.

8. Data Retention

We retain personal information for as long as necessary to provide the service and comply with legal obligations. Contact and account data is retained for the duration of the client relationship and up to 7 years after termination for legal and audit purposes. Alert and usage data is retained for 90 days by default. Marketing consent records are retained until you withdraw consent.

9. Your Rights

Depending on your jurisdiction, you may have the right to: (a) access the personal information we hold about you; (b) correct inaccurate or incomplete information; (c) request deletion of your information (subject to legal obligations); (d) object to or restrict certain types of processing; (e) data portability; (f) lodge a complaint with your local privacy regulator. To exercise any of these rights, contact us at precision@firstcordon.com. We will respond within the timeframe required by applicable law (generally 20–30 working days).

10. Cookies

Our website uses cookies and similar technologies to operate correctly, analyse traffic, and personalise content. Essential cookies are necessary for the site to function. You can control non-essential cookies through your browser settings. We do not use third-party advertising cookies. A cookie consent prompt is displayed on first visit where required.

11. Children

Our services are not directed at or intended for children under the age of 18. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us and we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified via our website or by email. The date of the most recent update is shown at the top of this page. Continued use of our services after changes become effective constitutes acceptance of the updated policy.

13. Contact and Complaints

For any privacy-related enquiries or to exercise your rights, contact our Privacy Officer at: precision@firstcordon.com. If you are not satisfied with our response, you may contact the relevant regulator: Office of the Privacy Commissioner (New Zealand) — privacy.org.nz; Office of the Australian Information Commissioner — oaic.gov.au; Federal Trade Commission (USA) — ftc.gov.