Plain language law

New Zealand law explained for everyone

This page is about a bill. That means that it's not the law yet, but some people want it to be the law. It could change quickly, and some of the information is just a draft.

Customer and Product Data Bill

Regulated data services - Additional obligations - Requirements for requests, providing services, making information available, and dealing with data

31: Data holders must comply with requirements for requests, providing services, and making information available

You could also call this:

“Data keepers must follow new rules for handling information and requests”

This part of the bill says that if you hold data, you will have to follow some new rules. These rules will be about how you handle requests for data services, how you provide these services, and how you share information.

You will need to follow these rules exactly as they are described in the regulations and standards. This means you’ll have to do things in a specific way when you get requests, when you provide services, and when you give information to different people.

The bill also talks about who you might need to share information with. This could be customers, secondary users (people who use the service but aren’t the main customer), other data holders, accredited requestors (people allowed to ask for data), the chief executive, or even members of the public.

Remember, this is part of a proposed law, so it’s not in effect yet. If it becomes law, it will explain exactly how data holders should handle information and requests.

This text is automatically generated. It might be out of date or be missing some parts. Find out more about how we do this.

This page was last updated on

View the original legislation for this page at https://legislation.govt.nz/act/public/1986/0120/latest/link.aspx?id=LMS789750.

Previous

30: Offence for failing to comply with notice to test electronic system, or

“You could get in trouble for not testing computer systems when asked”

Next

32: Requirements for data holders in regulations or standards, or

“Rules for companies on handling and sharing your information”

Part 2 Regulated data services
Additional obligations: Requirements for requests, providing services, making information available, and dealing with data

31Data holders must comply with requirements for requests, providing services, and making information available

  1. A data holder must comply with the requirements specified in the regulations and the standards in connection with the following:

  2. receiving requests for regulated data services (including in relation to performing an action):
    1. providing those services or otherwise responding to those requests:
      1. notifying or otherwise making available information to any of the persons referred to in subsection (3).

        1. The requirements must be complied with in the manner prescribed in the regulations or standards.

        2. For the purposes of subsection (1)(c), a data holder may be required to notify or otherwise make available information to any of the following:

        3. a customer:
          1. a secondary user:
            1. another person that is a data holder:
              1. an accredited requestor:
                1. the chief executive:
                  1. any member of the public or any class of the public.