The purpose of the New Zealand Protective Security Requirements (PSR) is to help agencies:
- identify their individual levels of security risk tolerance
- achieve the mandatory requirements for protective security expected by government
- develop an appropriate security culture to securely and effectively meet their business goals.
The audience of the PSR is:
- agencies subject to the State Sector Act 1988
- bodies that receive Ministerial direction to apply the general policies of the New Zealand government
- other bodies established for a public purpose under a law of the New Zealand government agencies, where the body or agency has received a notice from the relevant Minister that the PSR applies to them
- any New Zealand private sector or non-government organisation that seeks to protect its people, information and assets.
These requirements cover:
- New Zealand’s four-tier approach to protective security
- New Zealand’s protective security policy for government.
The New Zealand government takes appropriate measures to protect its people, information and assets at home and overseas.
How the government protects its people, information and assets is critical to effective engagement with the New Zealand people.
Protective security outside of New Zealand
Some requirements of this policy may be difficult for New Zealand government agencies to apply when operating in certain foreign environments.
In such situations, special protocols may be developed in consultation with the Ministry of Foreign Affairs and Trade (MFAT), the New Zealand Security Intelligence Service (NZSIS) and the Government Communications Security Bureau (GCSB).
Restrictions may be placed on personal activities at locations where the environment is particularly dangerous.
Generally all employees, unless on diplomatic posting and covered by the Vienna Conventions, are automatically subject to local laws and regulations.
For travel information and specific security arrangements and limitations, employees should contact MFAT or the nearest New Zealand embassy or High Commission.
The PSR supports legislation relevant to protective security and it reflects the aims and objectives of the New Zealand government.
Some agencies are responsible for collecting or processing official information that is subject to additional legislation. These requirements generally take precedence over the PSR. Where such legislation mandates lower standards than the PSR, agencies must meet the PSR’s higher standards.
As a valuable resource, information is only to be released in accordance with the policies, legislative requirements and directives of the government, New Zealand Courts and international obligations.
The unauthorised disclosure of protectively marked information held by the New Zealand Government is subject to the sanction of criminal law.
Section 29 (3) of the Public Records Act 2005 refers to the ‘Security in the Government Sector manual issued from time to time by the Government.’ The Protective Security Requirements now constitutes government policy as referenced in that Act.