The standards we hold
ourselves to.

Aligned to the New Zealand Information Security Manual (NZISM). Engagement-specific controls agreed with your assurance team during onboarding. We support data-on-shore requirements and customer-managed encryption keys where required.

We operate within the Privacy Act 2020 and complete a Privacy Impact Assessment for any engagement involving personal information. Our default position is to minimise the personal data we touch and to anonymise on ingest where it is operationally feasible.

We are familiar with All-of-Government procurement frameworks and panel arrangements. We can provide standard supplier documentation, conflict-of-interest declarations, and capability statements on request.

Every analytical product we ship carries documented lineage, methodology notes, and version history. Our work is built to be defended under Official Information Act requests, internal audit, and independent review — and we hand over the documentation that lets your team continue that standard after we leave.