New Zealand Privacy Act 2020 · vPrivacy Act 2020 (NZ)
New Zealand Privacy Act 2020
New Zealand Privacy Act 2020 — 100% covered.
4 requirements · 4 enforced · 0 designed · 0 advisory · 0 deferred.
Source: Privacy Act 2020 (New Zealand) — Information Privacy Principles (IPPs) + Part 6 notifiable privacy breaches.
By category
| Category | Reqs | Enforced | Designed | Advisory | Deferred | Coverage |
|---|---|---|---|---|---|---|
| Storage and security (IPP 5) | 1 | 1 | 0 | 0 | 0 | 100% |
| Limits on use (IPP 10) | 1 | 1 | 0 | 0 | 0 | 100% |
| Access to personal information (IPP 6) | 1 | 1 | 0 | 0 | 0 | 100% |
| Notifiable privacy breaches (Part 6) | 1 | 1 | 0 | 0 | 0 | 100% |
Every requirement → the KYE™ artefact that enforces it
| ID | Title | Status | KYE™ enforcement |
|---|---|---|---|
nz-privacy-act-2020.ipp-5 |
Information Privacy Principle 5 — an agency must ensure personal information is protected by reasonable security safeguards against loss, unauthorised access, use, modification or disclosure | enforced | audit_events: kye.purpose.admissibility.v1, kye.evidence.tool_call.v1engines: internal, internalconstitution_refs: constitution/12-PURPOSE-PERMISSION.md |
nz-privacy-act-2020.ipp-10 |
Information Privacy Principle 10 — personal information obtained for one purpose must not be used for another purpose without authority | enforced | audit_events: kye.purpose.request.v1, kye.purpose.admissibility.v1engines: internal, internalconstitution_refs: constitution/12-PURPOSE-PERMISSION.md |
nz-privacy-act-2020.ipp-6 |
Information Privacy Principle 6 — an individual is entitled to access personal information held about them, supported by a record of how that information was used | enforced | audit_events: kye.evidence.pack.v1, kye.replay.proof.v1engines: internal, internalconstitution_refs: constitution/31-DATA-GOVERNANCE-PACK.md |
nz-privacy-act-2020.notifiable-breach |
Part 6 — notifiable privacy breach: notify the Privacy Commissioner and affected individuals of a privacy breach that has caused or is likely to cause serious harm | enforced | audit_events: kye.signal.incident.opened.v1, kye.compliance.attestation.v1engines: internal, internalconstitution_refs: constitution/13-RESILIENCE-LOOP.md |