Have your say on the identical adoption of 47 international digital standards as New Zealand Standards
Standards to define best practice for rapidly evolving digital technologies such as AI and biometric identification systems, could soon be available to New Zealanders. This is your chance to have your say on their adoption for industry use.
A major step in digital governance
Aotearoa New Zealand is taking a major step forward in digital governance by considering the identical adoption of 47 international standards as New Zealand Standards. These standards define best practice in the use and management of AI systems, and also in the areas of cyber security, biometrics, cloud computing, and risk management.
These standards have already been identically adopted in Australia, and a committee of New Zealand subject matter experts has agreed to initiate public consultation to ensure that New Zealanders have the chance to feedback and/or identify any issues with identically adopting the standards.
This project is part of the Trans-Tasman Standards Alignment Programme, endorsed by the Minister of Small Business and Consumer Affairs in August 2024. The programme aims to align New Zealand practices with both international and trans-Tasman best practice, through committees of subject matter experts who assess the standards’ suitability for use here in Aotearoa New Zealand.
The suitability of identically adopting these standards was considered by a committee of 25 subject matter experts from 15 different organisations representing the public sector, private organisations, academia, and industry organisations all with a focus on evolving technologies.
The committee chairperson Craig Pattison emphasises the broader significance of this work:
This isn’t just technical review work. It’s a serious act of kaitiakitanga /stewardship over the systems and standards that will define how we live, work, and protect our people and taonga in a digital and data-driven future.
Digital inclusion for disabled people
Public consultation about the identical adoption of these standards comes at a time when digital inclusion is increasingly recognised as a fundamental right, not a privilege. Disability advocates have warned that without urgent reform, digital systems risk excluding over 850,000 New Zealanders who live with disabilities — nearly 17% of the population.
One of the standards considered by the committee is the European standard EN 301 549 Accessibility requirements for ICT products and services which defines digital best practices for digital services that are accessible for everyone, including disabled people. Below is more information about this standard, which has been adopted by both Canada and Australia.
RNZ - Digital inclusion is a right, not a privilege - disability advocates(external link)
Understanding and implementing these standards should apply to all those who have a stake in developing digital systems for users.
How these international standards could be used here
It is important to know that the identical adoption of these international standards simply means that the standards will more be accessible to New Zealanders, and cheaper to purchase. Also, New Zealanders will feel secure knowing that our committee of subject matter experts, and the general public, have considered their suitability for use in Aotearoa New Zealand.
Adoption of these standards will depend on the committee’s consideration and review of the public consultation feedback. The committee will then recommend which of the standards should be adopted in Aotearoa New Zealand.
New Zealand organisations which choose to use these standards and audit against them, and/or regulators which cite them, will have to also abide by our national laws and regulations (such as the Privacy Act) and the principles of Te Tiriti o Waitangi, if applicable.
Have your say
Now it’s your turn to have your say. As part of the public consultation process, Standards New Zealand Te Mana Tautikanga o Aotearoa invites you to review and comment on each standard:
- Do you agree this standard is fit for purpose for use in Aotearoa New Zealand?
- If not, then please tell us why not.
To have your say visit our Consultation Hub. Public consultation closes on the 21 August:
Standards New Zealand Consultation Hub(external link)
- DZ EN301 549:2025(external link) Accessibility requirements for ICT products and services.
- DZ ETSI EN 303 645:2025(external link) Cyber security for consumer internet of things: Baseline requirements.
- DZ ISO/IEC 27036.1:2025(external link) Cybersecurity - Supplier relationships. Part 1: Overview and concepts.
- DZ TR ISO/IEC 24029.1:2025(external link) Artificial Intelligence - Assessment of the robustness of neural networks, Part 1: Overview.
- DZ ISO/IEC 25059:2025(external link) Software engineering - Systems and software Quality Requirements and Evaluation - Quality model for AI systems.
- DZ TS ISO/IEC 4213:2025(external link) Information Technology Artificial Intelligence. Assessment of machine learning classification performance.
- DZ ISO/IEC 42001:2025(external link) Information Technology Artificial Information. Management system.
- DZ ISO/IEC 5259.4:2025(external link) Artificial Intelligence - Data quality for analytics and machine learning (ML). Part 4: Data quality process framework.
- DZ ISO/IEC 5392:2025(external link) Information Technology Artificial Intelligence. Reference architecture of knowledge engineering.
- DZ TR ISO/IEC 17903:2025(external link) Information Technology Artificial Intelligence. Overview of machine learning computing devices.
- DZ TR ISO/IEC 24372:2025(external link) Information Technology Artificial Intelligence. Overview of computational approaches for AI systems.
- DZ ISO/IEC 22989:2025(external link) Information Technology Artificial Intelligence. Artificial Intelligence concepts and terminology.
- DZ TR ISO/IEC 24028:2025(external link) Information Technology Artificial Intelligence. Overview of trustworthiness in artificial intelligence.
- DZ ISO/IEC 23894:2025(external link) Information Technology Artificial Intelligence. Guidance on risk management.
- DZ ISO/IEC 5338:2025(external link) Information Technology Artificial Intelligence. Artificial Intelligence system life cycle processes.
- DZ ISO/IEC 23053:2025(external link) Framework for Artificial Intelligence systems using machine learning.
- DZ ISO/IEC 25058:2025(external link) Systems and software engineering - Systems and software Quality Requirements and Evaluation - Guidance for quality evaluation of artificial intelligence systems.
- DZ TS ISO/IEC 8200:2025(external link) Information Technology Artificial Intelligence. Controllability of automated artificial intelligence systems.
- DZ TR ISO/IEC 24368:2025(external link) Information Technology Artificial Intelligence. Overview of ethical and societal concerns.
- DZ ISO/IEC 5259.3:2025(external link) Artificial Intelligence. Data quality for analytics and machine learning. Part 3: Data quality management requirements and guidelines.
- DZ ISO/IEC 24029.2:2025(external link) Artificial Intelligence. Assessment of the robustness of neural networks. Part 2: Methodology for the use of formal methods.
- DZ ISO/IEC 5339:2025(external link) Information Technology Artificial Intelligence. Guidance for AI applications.
- DZ ISO/IEC 24668:2025(external link) Information Technology Artificial Intelligence. Process management framework for big data analytics.
- DZ TR ISO/IEC 5469:2025(external link) Artificial Intelligence. Functional safety and AI systems.
- DZ ISO/IEC 5259.1:2025(external link) Artificial Intelligence. Data quality for analytics and machine learning. Part 1: Overview, terminology, and examples.
- DZ TR ISO/IEC 24027:2025(external link) Information Technology Artificial Intelligence. Bias in AI systems and AI aided decision making
- DZ ISO/IEC 30107.2:2025(external link) Information technology. Biometric presentation attack detection. Part 2: Data formats
- DZ ISO/IEC 30107.3:2025(external link) Information technology. Biometric presentation attack detection. Part 2: Testing and reporting.
- DZ ISO/IEC 30107.4:2025(external link) Information technology. Biometric presentation attack detection. Part 4: Profile testing of mobile devices.
- DZ ISO/IEC 24714:2025(external link) Biometrics. Cross jurisdictional and societal aspects of biometrics. General guidance.
- DZ ISO/IEC 39794.4:2025(external link) Information technology. Extensible biometric data interchange formats. Part 4: Finger image data.
- DZ ISO/IEC 30108.2:2025(external link) Biometrics. Identity attributes verification services. Part 2: RESTful specification.
- DZ ISO/IEC 19785.1:2025(external link) Information technology. Common Biometric Exchange Formats Framework. Part 1 Data element specification.
- DZ ISO/IEC 19785.2:2025(external link) Information technology. Common Biometric Exchange Formats Framework. Part 2 Biometric registration authority.
- DZ ISO/IEC 39794.1:2025(external link) Information technology. Extensible biometric data interchange formats. Part 1: Framework
- DZ ISO/IEC 19794.2:2025(external link) Biometric data interchange formats
- DZ ISO/IEC 19086.1:2025(external link) Information technology. Cloud computing service level agreement framework. Part 1: Overview and concepts.
- DZ ISO/IEC 19086.2:2025(external link) Information technology. Cloud computing Service level agreement framework. Part 2: Metric model.
- DZ ISO/IEC 19086.3:2025(external link) Information technology. Cloud computing service level agreement framework. Part 3: Core conformance requirements.
- DZ ISO/IEC 22123.1:2025(external link) Information technology. Cloud computing Part 1: Vocabulary.
- DZ ISO/IEC 22123.2:2025(external link) Information technology. Cloud computing Part 2: Concepts.
- DZ ISO/IEC 22123.3:2025(external link) Information technology. Cloud computing Part 3: Reference architecture.
- DZ TR ISO/IEC 3445:2025(external link) Information technology. Cloud Computing Audit of cloud services.
- DZ ISO/IEC 31000:2025(external link) Risk Management. Guidelines
- DZ ISO/IEC 39794.2:2025(external link) Information technology. Extensible biometric data interchange formats. Part 2: Finger minutiae data.
- DZ ISO/IEC 39794.5:2025(external link) Information technology. Extensible biometric data interchange formats. Part 5: Face image data.
- DZ ISO/IEC 39794.6:2025(external link) Information technology. Extensible biometric data interchange formats. Part 6: Iris image data