Operationalizing New Zealand's Privacy Act
New Zealand Privacy Act 2020
The New Zealand Privacy Act 2020 repeals and replaces the 27-year-old Privacy Act 1993. The act also introduces mandatory data breach notification requirements, enhances the powers of the Office of the Privacy Commissioner, expands the territorial scope, introduces new criminal offences, and includes additional obligations with respect to processing data overseas.
Watch Now: New Zealand: New Privacy Act, New Obligations - What all Businesses Need To Know
New Zealand Privacy Act Report
OneTrust DataGuidance, in collaboration with its network of contributors and the Office of the Privacy Commissioner (‘OPC’) in New Zealand, presents the following four articles on the operationalization of the Privacy Act 2020, which entered into effect on 1 December 2020.
The articles discuss what organizations can expect from the OPC in terms of its regulatory approach to the act, the new mandatory requirement to notify a data breach, and the OPC’s enhanced powers. In addition, the articles outline how agencies can prepare for the forthcoming changes and provide practical steps, which include appointing a privacy officer, reviewing personal information policies, training employees, and how businesses can get a head start in complying with the new information privacy principle 12.