Plain language law

New Zealand law explained for everyone

This page is about a bill. That means that it's not the law yet, but some people want it to be the law. It could change quickly, and some of the information is just a draft.

Customer and Product Data Bill

Regulated data services - Additional obligations - Requirements for requests, providing services, making information available, and dealing with data

33: Accredited requestors must comply with requirements for dealing with data and making information available

You could also call this:

“Approved information handlers must follow special rules for using and sharing data”

The new law might say that if you’re an accredited requestor, you need to follow special rules about how you handle and share information. These rules will be written down in regulations and standards.

You’ll need to be careful about how you use, change, or share two types of information: designated customer data and derived data. Derived data is information that comes from customer data or other derived data.

The law might also say you need to tell certain people about some things. You might need to share information with customers, secondary users, data holders, other accredited requestors, the chief executive, or even the public.

All of these rules are to make sure that information is handled properly and that the right people know what’s happening with it.

This text is automatically generated. It might be out of date or be missing some parts. Find out more about how we do this.

This page was last updated on

View the original legislation for this page at https://legislation.govt.nz/act/public/1986/0120/latest/link.aspx?id=LMS936846.

Previous

32: Requirements for data holders in regulations or standards, or

“Rules for companies on handling and sharing your information”

Next

34: Requirements for accredited requestors in regulations or standards, or

“Rules for people who can ask for customer information”

Part 2 Regulated data services
Additional obligations: Requirements for requests, providing services, making information available, and dealing with data

33Accredited requestors must comply with requirements for dealing with data and making information available

  1. An accredited requestor must comply with the requirements specified in the regulations and the standards in connection with the following:

  2. the use, modification, or disclosure of—
    1. designated customer data; or
      1. derived data:
      2. notifying or otherwise making available information to any of the persons referred to in subsection (2).

        1. For the purposes of subsection (1)(b), an accredited requestor may be required to notify or otherwise make available information to any of the following:

        2. a customer:
          1. a secondary user:
            1. a data holder:
              1. another accredited requestor:
                1. the chief executive:
                  1. any member of the public or any class of the public.

                    1. In this Act, derived data means data that is wholly or partly derived from—

                    2. designated customer data; or
                      1. other derived data.