Compliance with New Zealand’s Privacy Act (1993) and its 12 Information Privacy Principles (NZ IPPs)

New Zealand law lays out 12 information privacy principles (NZ IPPs) for the proper handling of personal information of Kiwi citizens, and these principles can be found at The Act and 12 IPPs presume that trans- border data flows are permissible provided the IPPs are preserved, which are the case with Brightidea.


Brightidea acts as the processor, not collector of the data, of its New Zealand’s customers’ customers. In addition, Brightidea’s handling of personal information under its Privacy Policy is perfectly aligned with the 12 NZ IPPs, including those directing that personal information be collected for lawful purposes (e.g., for processing customer service issues), that data should be collected directly from individuals (e.g., end users using the Brightidea platform), that notice of collection of data and purpose of the data collection is provided, that data be collected in a legal manner, or that individuals have right to access and correct their data.


If you wish to make a complaint about the way we have handled your personal information (including if you think we have breached any applicable privacy laws), you may do so to our Privacy Officer in writing, by mail or email to the address or email address set out in the ‘Contact Us’ section of our Privacy Policy. Please include your full name, contact details and a detailed description of your complaint. Our Privacy Officer will acknowledge your complaint and respond to you regarding your complaint within a reasonable period of time. If you consider that we have failed to resolve the complaint satisfactorily, we will provide you with information about the further steps you can take.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request