Last updated 13 November 2024

Professional standards require KPMG New Zealand and its controlled entities (together, “KPMG”) to disclose its service providers who may access your confidential information.

KPMG requires its service providers to comply with KPMG’s information security policies (which are aligned to ISO 27001) and to undergo a security assessment in accordance with our vendor management practices.

KPMG has a dedicated Information Security Office, including a National Information Technology and Security Officer who is responsible for implementing KPMG’s global information security policies (which are aligned to ISO 27001) and security-related initiatives within the firm.  KPMG undergoes regular audits of its compliance to KPMG’s global policies and standards.

In delivering client services, KPMG may use service providers set out in our engagement contract and the following:

Connect with us

KPMG Global Network

KPMG New Zealand is a member firm of the KPMG global network of independent member firms affiliated with KPMG International Limited.  As such, KPMG may use:

a.    other KPMG Member Firms;

b.    KDN Delivery Centres and their teams located in India, United Kingdom, United States of America, Mexico, Canada, Hungary and Malaysia; and

c.    common infrastructure that is managed by KPMG affiliates around the world.

Subcontractors

KPMG may use subcontractors to perform part of the services. Such subcontractors store data in the locations listed in our privacy statement and are required to comply with applicable KPMG policies.

Technology service providers

KPMG may use the following technology service providers:

Service category

Service provider

Service used

Data storage location

General/enterprise services

Technology service providers, such as Microsoft (including Microsoft365 and Copilot), Apple and DocuSign

Business Administration, Collaboration Tool, Data Analytics and Business Intelligence, Document Management, IT Service Management and Project Management

As listed in our privacy statement

Advisory, Audit, One Digital Consulting, Private Enterprise and Tax

Technology service providers

Software solutions used in the delivery of client services

As listed in our privacy statement

Definitions

Bespoke Client Model

Bespoke client model, including PowerBI workspaces and web browsers.

Business Administration

Business administration, management, operation and organisation. Includes:
  • Financial management systems (e.g. invoicing, payments, etc.)
  • Travel bookings
  • Printers, scanners, etc.
  • HR tools
  • Marketing assistance
  • Education and training software

Collaboration Tool

Facilitation of internal and external communications, document sharing and collaboration (includes client portals).

Data Analytics and Business Intelligence

Analyses data to provide actionable insights, supporting decision-making and assist with strategic planning.

Document Management

Creation, storage and control of documents, e-signing, document security.

IT Service Management

Cyber security, cloud storage, IT infrastructure, etc.

Project Management

Planning, organising, and managing resources, tasks and workflow.