Search results for ‘legislation as code’

  • Risks of shadow cloud to government organisations

    Found in Standards & guidance / Technology and architecture / Cloud services / Cloud plans / Shadow cloud / Risks of shadow cloud to government organisations

    Shadow cloud increases risk to your organisation, the NZ government and New Zealanders by not making the risks to your information known — this prevents you from using security controls effectively.

  • Supporting critical risk management in New Zealand's ports industry

    Port environments are inherently complex and high risk operations. With the introduction of new health and safety legislation in April 2016, New Zealand ports asked us for clarification on some aspects of the law in the context of their work.

  • Privacy and GenAI

    Found in Standards & guidance / Technology and architecture / Artificial intelligence (AI) / Responsible AI Guidance for the Public Service: GenAI / GenAI and customer experience with government / Privacy

    Make sure your privacy approach to GenAI meets data-protection rules and legislation, respecting people’s information.

  • Binding Assurance Standard

    Found in Standards & guidance / Identification Standards / Binding Assurance Standard

    This standard provides specific controls for ensuring an entity is appropriately bound to their entity information in order to prevent identity theft.

  • Assess agency privacy risk

    Found in Standards & guidance / Privacy, security and risk / Privacy / Assess privacy risk / Assess agency privacy risk

    An agency privacy risk assessment provides a snapshot of its current privacy risks and how it will manage them as an organisation.

  • Web Standards risk assessment

    Found in Standards & guidance / NZ Government Web Standards / Web Standards risk assessment

    The Web Accessibility Standard and Web Usability Standard require that NZ Government organisations be prepared to assess and report on their conformance with those Standards. This includes submitting a risk assessment and management plan regarding any areas of non-conformance.

  • Information Assurance Standard

    Found in Standards & guidance / Identification Standards / Information Assurance Standard

    This Standard provides specific information management controls to ensure information collected is suitable for accurate decisions to be made regarding the eligibility or capability of an Entity.

  • Guidance for public-facing email sign-up forms and confirmation messages

    Found in Standards & guidance / Privacy, security and risk / Guidance for public-facing email sign-up forms and confirmation messages

    The Government Chief Digital Officer (GCDO) has developed this guidance for government agencies.

  • Discovery

    Found in Standards & guidance / Strategy and planning / Digital lifecycle / Discovery

    Build services around the needs of users.

    Think about the lifecycle of digital delivery.

    In this phase you'll:

    describe the opportunity or problem your users have that you want to address
    identify user needs (as you understand them now) and how your service will meet them
    map out how you’ll engage users during the project (and beyond)
    establish the approximate scope of the project and what it might cost
    outline who will have responsibility for the service meeting its goals
    describe how t…

Utility links and page information