About this item

Issue date:
30 May 2025
Status:
Current
Corporate Author:
Health New Zealand | Te Whatu Ora
Type:
Guidance
Topic:
Health information technology
Copyright status:

© Crown Copyright, Attribution 4.0 International (CC BY 4.0)

Health privacy in partnership is designed to help navigate the complex landscape of responding to a cyber privacy breach. It outlines the essential steps required for an organisation to quickly recover and resume operations. From identifying and containing the breach to communicating with stakeholders and restoring systems, this handbook provides practical advice and actionable steps helping to minimise damage and regain control.

Download: Health privacy in partnership handbook - PDF, 832 KB

A Guide to Responding to Cyber Privacy Breaches for New Zealand Primary Health Sector.

Download: Health privacy in partnership handbook - DOCX, 970 KB

A Guide to Responding to Cyber Privacy Breaches for New Zealand Primary Health Sector.

Download: Health privacy in partnership - Incident response process - PDF, 127 KB

Use this step-by-step guide to respond to a privacy breach incident.

Download: Health privacy in partnership case study – DDoS – Data exfiltration - DOCX, 130 KB

Scenario: A medium-sized Practice experienced a DDoS attack – this was a smokescreen for a data exfiltration attack.

Download: Health privacy in partnership case study – Phishing attack - DOCX, 180 KB

Scenario: A medium-sized Practice had a phishing attack which compromised their email system.

Download: Health privacy in partnership case study – Ransomware attack - DOCX, 131 KB

Scenario: A medium-sized Practice experienced a ransomware attack that encrypted patient records and disabled critical systems.

These Handbooks form the beginning an information toolkit Health NZ and primary healthcare sector representatives are developing. Over time we’ll continue to publish more cyber security tools and resources to share knowledge with the aim of growing cyber resilience across the Aotearoa health sector.