Our website uses cookies to give you the best experience and for us to analyse our site usage. If you continue to use our site, we will take it you are OK about this. Click on More for information about the cookies on our site and what you can do to opt out.

We respect your Do Not Track preference.

Rodents and hackers Colin Trotter
29 September 2017

soxie2

I don’t usually converse in metaphors and analogies but bear with me as I liken hackers to rodents and discuss security in keeping both of them at bay.

To come with clean hands Charles Mabbett
29 September 2017

clasped hands2

When we use the metaphor ‘to come with clean hands’, it means to have done nothing underhand or illegal. It’s a term that applies in the context of resolving privacy disputes. There’s a general expectation that if you make a complaint to our office, you did not bring the breach of privacy upon yourself through your actions.

Advice for small organisations when there’s a complaint Charles Mabbett
13 September 2017

plate 289 solitary sandpiper

If yours is a small business or organisation, there’s every chance you may be fairly inexperienced in what to do if you receive a request for personal information. But we hope you are at least aware that the Privacy Act gives people the right to make a request for information that is about them.

A sincere apology is hard to beat Charles Mabbett
12 September 2017

Odysseus

It is said that a sincere apology should include the three Rs – regret, responsibility and remedy. Why apologise and how to do it properly is a subject we’ve discussed before. But we continue to see apologies that fail to convince a complainant. So it’s something we thought we’d revisit in this post because the quality of an apology is an important part of our efforts to resolve privacy complaints.

Benchmarking against international privacy peers Blair Stewart
20 August 2017

census 2

It can be useful to compare an organisation’s processes or performance against another one’s competitors in the same industry class. It is especially useful to compare with the ‘best in class’ and set targets to meet or exceed the industry norms. This is sometimes called ‘best practice benchmarking’ and is an important tool to support continuous improvement.

Trusted Sharing Consultancy update Abigail Vink
18 August 2017

hawk owl2

In late 2016, the Privacy Commissioner launched the Trusted Sharing Consultancy Service, to offer advice and support to ensure government agencies achieve their aspirations for the coordinated delivery of public services while protecting privacy.

More privacy authorities online than ever Blair Stewart
17 August 2017

Cuviers Regulus

When the Office of the Privacy Commissioner launched its website in 1995, very few government organisations in New Zealand had an online presence. The Encyclopedia of New Zealand, Te Ara, tells us that the first New Zealand website was created only in 1992.

Breach Case 5: Taking client files offsite Neil Sanson
4 August 2017

weka edit

You keep your home safe, don’t you? So there should be no problem taking some work notes home, rather than travel the extra distance to drop them off at the office at the end of the day; or to have to pick them up in the morning at the office. You are saving time and avoiding unnecessary travel. But homes do get burgled, thousands in any month.