Application area

Whether required

What is required in an application for an additional service for an accredited provider

Provider questions, per application form

Yes

Only answer the questions in the application form where there has been a change, or where a different response applies for the additional service. For example, there may a different contact person or different individuals involved in the governance or the management, design or delivery of the service.

Only provide documents where there has been a change.

Conformance against the New Zealand Identification Standards

Yes

A full independent evaluation of the additional service(s) for which accreditation is sought is required. 

Trust Framework Authority Service Assessment

Yes

A new service assessment is required. This includes:

• answering the questions in the Service Details section of the application form
• providing a detailed description of the service
• providing a data management plan
• providing a demonstration of the service
• attendance at a question and answer session if required by the Trust Framework Authority

Privacy

Yes

A new independent privacy evaluation will be required.

Security

Yes

A new independent privacy evaluation will be required. However note that where the previous evaluation took place in the last 12 months, relevant parts of it may be reused. The parts of the previous evaluation to be reused must be agreed with the independent evaluator as part of agreeing the scope of the independent security evaluation.