Plain language law

New Zealand law explained for everyone

This page is about a bill. That means that it's not the law yet, but some people want it to be the law. It could change quickly, and some of the information is just a draft.

Customer and Product Data Bill

Regulated data services - Additional obligations - Electronic system

28: Electronic system must comply with prescribed technical or performance requirements

You could also call this:

“Rules for data systems: Make sure they work properly and safely”

The proposed law says that if you have an electronic system for handling data, you need to make sure it follows the rules. These rules will be written down in regulations and standards. You have to make your system meet these rules.

The rules might cover different things about how your system works. They could talk about keeping information safe and making sure only the right people can see it. They might also say how quickly your system should respond when someone asks for data.

Other rules could be about making sure your system is always working and easy for people to use. They might also say your system should be accessible to everyone. The rules could ask you to keep an eye on how your system is working and tell someone in charge about it.

Remember, this is not the law yet. It’s part of a bill, which means it’s a suggestion for a new law that people are thinking about.

This text is automatically generated. It might be out of date or be missing some parts. Find out more about how we do this.

This page was last updated on

View the original legislation for this page at https://legislation.govt.nz/act/public/1986/0120/latest/link.aspx?id=LMS911741.

Previous

27: Data holder must operate electronic system for providing regulated data services, or

“Companies must have a computer system ready to handle data requests”

Next

29: Chief executive may require data holder to test electronic system, or

“The boss can ask companies to check if their computer systems follow the rules”

Part 2 Regulated data services
Additional obligations: Electronic system

28Electronic system must comply with prescribed technical or performance requirements

  1. A data holder must ensure that the electronic system referred in section 27 complies with the technical or performance requirements specified in the regulations and the standards.

  2. Regulations or standards made for the purposes of this section may (without limitation) relate to any of the following:

  3. security and identity verification measures:
    1. reliability and timeliness of responses to requests for regulated data services:
      1. availability:
        1. useability:
          1. accessibility:
            1. monitoring use and functionality:
              1. reporting on any of the matters referred to in paragraphs (a) to (f) (including to the chief executive).