K

Kōtui Access

Back to directory

Privacy Policy

Last updated: February 2, 2026

Kōtui Access ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains what data we collect, how we use it, and your rights regarding your information.

1. Information We Collect

1.1 Provider Information (Public Data)

The directory contains publicly available information about ADHD healthcare providers:

  • Clinic/provider name
  • Business phone number
  • Business website
  • Business address or region
  • Services offered (age groups, medications)
  • Availability status

How We Collect Provider Information:

  • Public web research - We find provider information from publicly available websites, business directories, and online listings
  • Community submissions - Users can submit provider information through our submission form
  • Provider verification - Providers can contact us directly to verify or update their listing

Important: Listing Without Permission

We list providers based on publicly available business information without requiring their permission. This is standard practice for business directories. However, providers can:

  • Request removal from the directory at any time
  • Claim and verify their listing by contacting us
  • Update or correct their information

Contact us at access@kotui.health to claim, verify, update, or remove your listing.

Verification Process:

The "Verified" badge indicates that a provider has directly contacted us and confirmed their listing. Most listings are NOT verified - they are based on web research or community submissions.

Legal Basis: This is all publicly available business information that providers share for the purpose of being contacted by potential patients. Listing publicly available business contact information does not require consent under New Zealand privacy law.

Compliance: This directory complies with the Health Information Privacy Code 2020. We only collect publicly available business information about healthcare providers, not personal health information about patients or individuals.

1.2 Submitter Information (Optional)

When you submit a provider to the directory, we may collect:

  • Email address (optional) - Only if you choose to provide it
  • IP address (automatic) - For spam prevention
  • Submission timestamp (automatic)

1.3 Usage Data

We may collect anonymous usage statistics:

  • Pages viewed
  • Search queries
  • Filters used
  • Device type and browser

This data is aggregated and anonymous - we cannot identify individual users.

2. What We DON'T Collect

We do NOT collect:

  • Personal health information - We never ask for or store health data
  • Medical records - Not collected or stored
  • Treatment information - Not collected or stored
  • Diagnosis information - Not collected or stored
  • Account passwords - Anonymous submissions don't require accounts

This is a directory of providers, not a patient database.

3. How We Use Your Information

3.1 Provider Information

We use provider information to:

  • Display in the public directory
  • Help people find ADHD healthcare providers
  • Verify accuracy and prevent spam

3.2 Submitter Email

If you provide an email when submitting, we use it to:

  • Notify you if your submission is approved or rejected
  • Contact you if we need clarification about the submission

We will NEVER:

  • Sell your email address
  • Share it with third parties
  • Use it for marketing
  • Display it publicly in the directory

3.3 Usage Data

We use anonymous usage statistics to:

  • Improve the directory
  • Understand which regions need more provider information
  • Fix bugs and improve performance

4. Data Storage and Security

Your data is stored securely using industry-standard practices:

  • Encryption: All data is encrypted in transit (HTTPS)
  • Database: Hosted on secure servers with access controls
  • Access: Only authorized administrators can access submitter emails
  • Backups: Regular backups to prevent data loss

5. Cookies and Local Storage

We use minimal cookies and local storage:

  • Disclaimer banner: Cookie to remember if you dismissed the banner
  • Filter preferences: Local storage to remember your filter selections

These are essential cookies only - we do not use tracking or advertising cookies.

6. Third-Party Services

We use the following third-party services:

  • Supabase: Database hosting (data stored in their secure cloud)

This service has its own privacy policy. We have chosen providers that prioritize data security.

7. Your Rights

You have the right to:

  • Request removal: Ask us to remove your provider listing
  • Update information: Request corrections to provider data
  • Delete your email: Request deletion of submitter email from our records
  • Access your data: Request a copy of data we hold about you

To exercise these rights, contact us at: access@kotui.health

8. Data Retention

We retain data as follows:

  • Provider listings: Kept until removal is requested or provider closes
  • Submitter emails: Retained for 12 months, then automatically deleted
  • Usage statistics: Anonymous data retained indefinitely

9. Children's Privacy

This directory is intended for general use and does not knowingly collect information from children under 13. If you believe we have inadvertently collected such information, please contact us immediately.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify users of any material changes by updating the "Last updated" date at the top of this page. Continued use of the directory after changes constitutes acceptance of the updated policy.

11. Contact Us

For questions about this Privacy Policy or to exercise your rights, please contact:

Email: access@kotui.health

Response time: We aim to respond within 7 business days.

Terms of UseAboutDirectory