Cyber Security Statement

At Connect, we are committed to maintaining strong, transparent, and trustworthy cyber security practices that protect our people, our clients’ information, and our digital systems. 

Our cyber security approach is grounded in recognised New Zealand law and best practice including the Privacy Act 2020, guidance from CERT NZ and the National Cyber Security Centre (NCSC), and internationally recognised security standards scaled to our organisation’s size and risk profile. 

Our Commitments

Protecting Personal & Business Data 
We safeguard personal and business information through: 

  • Secure encryption and access controls 
  • Role-based data protection aligned with privacy principles 
  • Strong password, authentication, and multi-factor requirements.

We take seriously our obligations under the Privacy Act 2020, including statutory breach notification obligations where personal data is involved. 

Responsible Data Handling 
Where personal data is shared with overseas service providers, we ensure: 

  • Comparable privacy safeguards are in place; or 
  • Contractual protections match New Zealand privacy requirements. 

Risk Management & Threat Mitigation 
We continually assess and manage cyber risk through: 

  • Regular threat assessments and system reviews 
  • Endpoint protection and network monitoring 
  • Anti-malware, anti-ransomware, and secure cloud configurations. 

Preparedness & Response 
We maintain a documented Incident Response Plan to respond rapidly and effectively to potential security incidents. 
Where incidents involve personal information and meet the legal threshold, we will: 

  • Notify the Office of the Privacy Commissioner; and 
  • Notify affected individuals in accordance with statutory requirements. 

We may also report significant cyber incidents to CERT NZ and NCSC NZ as appropriate. 

Continuous Improvement 
Cyber security is dynamic, and so are we. Our policies and controls are reviewed at least annually or sooner if a significant incident occurs, and we adapt our approach to changes in threat landscapes, technology, and regulation. 

Training & Awareness 
All staff and contractors receive regular training in security best practice, including: 

  • Recognising phishing and social engineering risks 
  • Secure use of digital tools 
  • Protecting sensitive client and internal information. 

Contact Us 
If you have questions about our cyber security practices or privacy protections, please reach out: 

📧 info@connect-global.co
🌐 Refer to our full Privacy Policy here: https://www.connect-global.co/privacy-policy/  

Last Updated: March 2026

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.