Story image

InternetNZ says the Privacy Bill is a good start, but New Zealand can do better

06 Jun 18

InternetNZ says the Privacy Bill currently in front of a select committee is a good start to revamping the Privacy Act, but it needs to go even further to be fit for the internet age.

Justice Minister Andrew Little says the Privacy Bill is designed “to promote and protect people’s privacy and to give them confidence that their personal information is properly protected.”

InternetNZ chief executive Jordan Carter says privacy matters more than ever in the age of big data and ubiquitous internet, but improvements are needed to keep privacy up to date.

"Privacy is an essential human right and the online world has brought many changes and challenges to how privacy works in the Internet age. This much-needed upgrade to our privacy law will help make our law fit for this decade and beyond,” Carter says.

InternetNZ adds that “The new Privacy Bill regulates the collection, use, and disclosure of information about individuals and has retained the Act’s 12 information privacy principles.”

Proposed changes include mandatory data breach disclosure with up to $10,000 fines for non-compliance, and the provisioning of more powers to the Privacy Commissioner.

Submissions on the Bill closed on May 24. Both the Office of the Privacy Commissioner and InternetNZ have made their submissions publicly available.

"We support the changes in the Bill but have also suggested some adjustments to make them more effective,” Carter says.

"Our submission introduces several new initiatives that are in part aimed at tackling developments since the Law Commission’s 2011 report, on which this Bill is based."

InternetNZ has suggested a number of changes, including:

Adapting ideas from the Europe’s GDPR and incorporating these where they make sense

Aligning Data breach notification rules to those of the EU and Australia

Giving New Zealanders a new right to know the purpose for which information is being held, as well as existing rights to the information itself (the ‘why’ as well as the ‘what’).

"With Europe’s General Data Protection Regulation (GDPR) in effect, and changing privacy standards around the world, now is the right time for New Zealand to update our own privacy protections." says Carter.

"We would like to see Parliament get our Privacy Law fit for purpose and to see Select Committee take additional submissions on further reforms.

"We would support a later report-back of this Bill, and an additional consultation period, to support that outcome.

Read our previous coverage of the Privacy Bill proceedings here:

Disruption in the supply chain: Why IT resilience is a collective responsibility
"A truly resilient organisation will invest in building strong relationships while the sun shines so they can draw on goodwill when it rains."
Verifi takes spot in Deloitte Asia Pacific Fast 500
"An increasing amount of companies captured by New Zealand’s Anti-Money laundering legislation are realising that an electronic identity verification solution can streamline their customer onboarding."
Businesses too slow on attack detection – CrowdStrike
The 2018 CrowdStrike Services Cyber Intrusion Casebook reveals IR strategies, lessons learned, and trends derived from more than 200 cases.
What disaster recovery will look like in 2019
“With nearly half of all businesses experiencing an unrecoverable data event in the last three years, current backup solutions are no longer fit for purpose."
Proofpoint launches feature to identify most targeted users
“One of the largest security industry misconceptions is that most cyberattacks target top executives and management.”
McAfee named Leader in Magic Quadrant an eighth time
The company has been once again named as a Leader in the Gartner Magic Quadrant for Security Information and Event Management.
Symantec and Fortinet partner for integration
The partnership will deliver essential security controls across endpoint, network, and cloud environments.
Is Supermicro innocent? 3rd party test finds no malicious hardware
One of the larger scandals within IT circles took place this year with Bloomberg firing shots at Supermicro - now Supermicro is firing back.