This privacy impact assessment (PIA) assesses the privacy implications of collecting information from users of Aotearoa Data Explorer.
Download the document below, or read the summary online.
Summary
Aotearoa Data Explorer (ADE) is a free online tool that presents data produced by Stats NZ in a searchable, flexible, and dynamic way.
The Customer Data Tools Project (CDTP) was established to replace NZ.Stat with ADE. Phase 1 of CDTP concluded with the initial launch of ADE on 29 July 2024. Since then, phase 2 of CDTP work has focused on transitioning the ADE platform from virtual machine infrastructure to containers for improved scalability, maintainability, and operational resilience. This work also includes a major upgrade to the system, which has not happened since the phase 1 launch.
This privacy impact assessment focuses on how information collected from ADE users is used and managed. Registration and analytics features for collecting personal information remain unchanged from phase 1 and continue in phase 2. Information is collected from users in two ways:
- Application Programming Interfaces (API) registration
- ADE web analytics.
Privacy impact assessment for collecting information from people who use Aotearoa Data Explorer from phase 1 of the ADE implementation was completed in 2024.
Registration
- API customer registration
Analytics
- Through a customer segmentation survey on ADE
- Analytics of customers using the data tool.
We will be collecting analytics about all customers that come to ADE or that use the API Portal. This will happen through their participation in the customer segmentation survey and through information collected from Google Analytics. The customer segmentation survey will have a 'maybe later' button that will enable customers to exit the survey without completing it. The next time the same user visits ADE they will be presented with the survey again.
We will require registration from all customers who want to use our API. This will involve the collection of some mandatory fields and the optional collection of other fields. These are detailed in the privacy impact assesment (PIA).
Users can access the API Portal via a link available in ADE. Upon navigating to the API Portal, users will have the ability to sign up for a new account or sign in if they already have one. When a user signs up through the API Portal, their information is managed by Azure Active Directory B2C (Azure B2C). As part of this process, Azure B2C generates and assigns a unique identifier to each user. The identifier is used for authentication and authorisation within the API Portal.
It's important to note that ADE does not use or store any sign-up information. There is clear separation between ADE and the API Portal. Identity and access management is handled by Azure B2C on the API Portal.
ISBN 978-1-991307-78-1 (online)
