Akahu’s purpose is to empower consumers to gracefully manage and derive value from their data. We want to work with reputable third party developers who deliver on that purpose through their products.
Akahu Policies set our expectations of minimum standards for developers that use our services. We do not audit or monitor your compliance with our policies. And we do not claim to consumers that we can ensure consistent compliance from accredited developer partners. However, accredited developer partners must:
Note: We update our policies from time to time. If we update this Consumer Information Policy, we will notify accredited partners by email. If you are required to comply with this Consumer Information Policy (as an accredited partner or as a provider of a service that integrates with an accredited partner's and interfaces with consumers) you can object to the change by notifying us in writing at hello@akahu.io within 14 days of the date that we notify accredited partners of the change. If you object to a change, we will discuss your concerns with you and use reasonable endeavours to resolve the issue. However, this does not relieve you from any contractual obligations to comply with the updated Consumer Information Policy.
We want to ensure that consumers are well informed when making decisions about how to manage and derive value from their data.
To become an accredited developer partner, we require a dedicated Akahu landing page on your website. This guide outlines the requirements for the landing page, which must be discoverable from the navigation on your site.
Describing your product
Images
About Akahu
Include this description of Akahu:
<h2>About Akahu</h2>
<p>Akahu is New Zealand’s consumer data sharing platform.</p>
<p>For consumers, Akahu puts you in control of your personal data. Akahu makes it simple to access the data that organisations hold about you, and to share that data with trusted third parties.</p>
<p>For developers, Akahu enables your customers to seamlessly connect their data to your app through its APIs.</p>
<p>Find out more <a href="www.akahu.io" hreflang="en" media="all">here</a>.</p>
Describe the way your product uses Akahu
Optional content
Note: We update our policies from time to time. If we update this Privacy and Security Policy, we will notify accredited partners by email. If you are required to comply with this Privacy and Security Policy (as an accredited partner or as a provider of a service that integrates with an accredited partner's and interfaces with consumers) you can object to the change by notifying us in writing at hello@akahu.io within 14 days of the date that we notify accredited partners of the change. If you object to a change, we will discuss your concerns with you and use reasonable endeavours to resolve the issue. However, this does not relieve you from any contractual obligations to comply with the updated Privacy and Security Policy.
You must ensure that any data exchanged through Akahu and held in your systems is processed and stored securely. Below are the minimum standards that we expect.
Provide evidence to Akahu of a penetration test within 6 months of the date of your accreditation application.
Undertake a penetration test at least every 12 months during your accreditation.
All relevant risks identified in the OWASP Top 10 list are appropriately addressed.
All relevant controls identified in the CIS Top 20 Security Controls list are appropriately addressed.
© Akahu Technologies Limited