- TRUST FRAMEWORK FOR DIGITAL IDENTITY
- Trust Framework Authority
- Share your information in a digital format
- NZ Verify
- Benefits of using digital identity services
- Trust Framework Authority accreditation mark
- Trust Framework legislation
- Trust Framework Regulatory bodies
- Trust Framework Register
- Accreditation & maintenance
- Forms and guidance
- Independent evaluators
- Resources
- Make a complaint
Forms and guidance
What’s new?
Our forms and guidance have been updated to reflect changes introduced by Amendment 1 to the Digital Identity Services Trust Framework Rules 2025. Key updates include:
- References to new and amended rules: The latest version of the Rules can be found on the Trust Framework legislation page.
- Privacy evaluation template updates: Two new requirements – data minimalisation and international transfers – have been added. The format has been revised to align more closely with the independent security evaluation template.
- Credential format questionnaires: Applicants for credential and facilitation services must now complete a separate questionnaire outlining compliance with ISO 18013-5 and/or ISO 23220 series and/or the W3C Verifiable Credentials Data Model. This can be requested from TFA@dia.govt.nz.
- Improved application form structure: The application form has been reordered to enhance the flow of information.
- Document formatting updates: All templates and guidance documents have been refreshed for consistency and readability.
The next scheduled update, reflecting Amendment 2, is expected in December 2025
For providers
Application
Trust Framework Authority application guidance for providers [PDF, 875KB]
Guidance document for digital identity service providers seeking accreditation under the Trust Framework. Guidance must be read in conjunction with the application form.
Trust Framework Authority application form [DOCX, 1.5MB]
Application form for digital identity service providers seeking accreditation under the Trust Framework. The application form is a Word document that must be completed and returned to the Trust Framework Authority with relevant documents.
Delegation of authority [DOCX, 46KB]
This form ensures that applicants have the authority to submit applications on behalf of the provider and must be completed as part of the application process.
Guidance for conformance with the New Zealand Identification Standards [PDF, 334KB]
Guidance to support providers in preparing for their Identity Standards independent evaluation.
Privacy
Note: the following documents also apply to independent evaluators.
Trust Framework Authority privacy evaluation template [DOCX, 1.4MB]
This document supports independent privacy evaluators to undertake their evaluation.
Security
Note: the following documents also apply to independent evaluators.
Trust Framework Authority scope for independent security evaluation template [DOCX, 841KB]
The template used by the provider and their agreed independent evaluator, to define and agree the scope of the security evaluation.
Trust Framework Authority independent security evaluation template [DOCX, 2.9MB]
Template to be completed by the independent security evaluator with the findings from the evaluation. This will include the scope, controls validation, and asses sment against risks.
Reconsiderations
Trust Framework Authority application form for a reconsideration [DOCX, 1.4MB]
This form is for applicants applying for a reconsideration of the application and must be submitted within 20 working days of the notice of the decision.
Reporting Templates
Trust Framework Authority six monthly report template [DOCX, 1MB]
This is as per the requirement under regulation 19(1) of the Digital Identity Services Trust Framework Regulations, all Trust Framework providers are required to report to the Trust Framework Authority at the end of each 6-month period on the use of their accredited services during that period.
Trust Framework Authority annual report template [DOCX, 1MB]
This is as per the requirement under regulation 19(2) of the Digital Identity Services Trust Framework Regulations for all Trust Framework providers to report to the Trust Framework Authority about the use of their accredited services during each 12 month period.
Trust Framework Authority two yearly report template [DOCX, 1MB]
This template provides attestations that certain required activities have been completed every two years, starting from two years following the date of the accreditation.
