Beta version

New Zealand's Privacy Act Compliance

Please note that the information provided below is not intended as legal advice and we cannot be held legally responsible for it. We have sought legal counsel and the content on this page reflects our interpretation of the law. If you have any concerns about compliance with the New Zealand Privacy Act, we recommend sharing this page with your legal team.

The New Zealand Privacy Act is a law that sets out principles that regulate the collection, use, and disclosure of personal information by organisations in New Zealand. It applies to all types of organisations, including government agencies, businesses, and non-profit organisations.

The Act sets out 12 privacy principles that organisations must follow when collecting, using, and disclosing personal information. These principles cover areas such as the collection of personal information, the use and disclosure of personal information, and the storage and security of personal information. The Act also gives individuals the right to access and correct their personal information, and to make a complaint if they believe their privacy has been violated.

Do I need to comply with New Zealand Privacy Act?

Under the New Zealand Privacy Act, organisations must comply with the Act when they collect, use, or disclose personal information in the course of business. This includes any activity that involves handling personal information, whether it is done online or offline, and whether it is done by a company based in New Zealand or overseas.

Organisations must also comply with the Act when they store or hold personal information, even if they do not actively use or disclose the information.

The Act applies to all organisations, including businesses, charities, schools, and government agencies, that handle personal information in the course of their activities. It also applies to individuals, including sole traders and contractors, who handle personal information in the course of their work.

There are certain exceptions and exclusions to the Act that may apply in certain situations. For example, the Act does not apply to personal information that is collected, used, or disclosed for the purpose of journalism, literature, or art, provided that certain conditions are met. It is important for organisations to familiarise themselves with these exceptions and exclusions, and to seek legal advice if necessary, to ensure that they are complying with the Act.

Does Proxima Comply with the New Zealand Privacy Act?

Proxima Analytics complies with the New Zealand Privacy Act by ensuring that we do not store personal information, including raw IP addresses or user agents.

Instead, we anonymise data through hashing and do not allow for the collection of location, device, or operating system information, unless specifically enabled by the user. We also do not engage in any practices that could be considered fingerprinting. In addition, we do not collect or store any additional data beyond the user agent and IP address.

All of these measures are in line with the provisions outlined in the Act, including Principle 1: Purpose of collection of personal information is authorised by law, and Principle 5: Collection of personal information from the individual concerned. By adhering to these principles, we ensure that we are in compliance with the New Zealand Privacy Act and protect the privacy of our users.

Proxima Analytics is highly committed to complying with the New Zealand Privacy Act and ensuring that we protect the personal information of the users. In order to do so, we offer our customers the option to limit the information that we collect from them. This includes the ability to opt out of collecting and processing information about their users’ location, device type, and operating system.