The Email Security Policy serves as a critical governance document for organizations operating in New Zealand, establishing mandatory guidelines for secure email communications and data protection. This policy is essential for organizations seeking to protect sensitive information, maintain compliance with New Zealand's privacy laws, and establish clear protocols for email usage. The document addresses key requirements under the Privacy Act 2020, Harmful Digital Communications Act 2015, and other relevant legislation, while incorporating industry best practices for email security. Organizations should implement this Email Security Policy to establish clear guidelines for email usage, define security requirements, outline incident response procedures, and ensure consistent application of security measures across all email communications.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Your data doesn't train Genie's AI
You keep IP ownership of your docs
1. Purpose and Scope: Defines the purpose of the policy and its applicability to different users, systems, and communications
2. Definitions: Key terms used throughout the policy including technical terminology and specific email security concepts
3. Email Usage Guidelines: General rules and requirements for appropriate email use within the organization
4. Security Requirements: Specific security measures required for email communications including encryption, authentication, and access controls
5. Password and Authentication: Requirements for email account passwords and multi-factor authentication
6. Data Protection and Privacy: Guidelines for handling sensitive information and personal data in compliance with the Privacy Act 2020
7. Prohibited Activities: Specific actions that are forbidden under the policy, including activities that could violate applicable laws
8. Incident Reporting: Procedures for reporting email security incidents and suspicious activities
9. Compliance and Enforcement: Consequences of policy violations and enforcement procedures
10. Review and Updates: Process for regular policy review and update procedures
1. Remote Work Email Security: Additional security requirements for employees accessing email systems remotely
2. Mobile Device Email Access: Specific requirements for email access on mobile devices
3. Third-Party Email Services: Guidelines for using external email services or integrating with third-party email systems
4. Email Retention and Archiving: Specific requirements for email retention, particularly relevant for organizations subject to the Public Records Act
5. Legal Holds: Procedures for implementing legal holds on email communications during litigation or investigations
1. Approved Email Systems and Software: List of approved email clients, security software, and encryption tools
2. Incident Response Procedures: Detailed procedures for handling different types of email security incidents
3. Email Security Best Practices: Detailed guidelines and best practices for secure email usage
4. Training Requirements: Required security awareness training modules and frequency
5. Compliance Checklist: Checklist for evaluating compliance with the email security policy
Find the exact document you need
Audit Log Policy
An internal governance document outlining audit log requirements and procedures for organizations operating in New Zealand, ensuring compliance with local privacy and record-keeping legislation.
Download
Security Logging And Monitoring Policy
A comprehensive policy document outlining security logging and monitoring requirements for organizations operating under New Zealand jurisdiction, ensuring compliance with local privacy laws and security standards.
Download
Phishing Policy
A New Zealand-compliant policy document outlining organizational procedures and requirements for preventing and responding to phishing attacks.
Download
It Security Audit Policy
A New Zealand-compliant policy document establishing requirements and procedures for conducting IT security audits, aligned with local privacy laws and international best practices.
Download
Consent Security Policy
A New Zealand-compliant policy document establishing secure practices for consent management under the Privacy Act 2020 and related legislation.
Download
Email Security Policy
A comprehensive email security policy document for New Zealand organizations, ensuring compliance with local privacy laws while maintaining robust email security measures.
Download
ұԾ’s Security Promise
Genie is the safest place to draft. Here’s how we prioritise your privacy and security.
Your documents are private:
We do not train on your data; ұԾ’s AI improves independently
All data stored on Genie is private to your organisation
Your documents are protected:
Your documents are protected by ultra-secure 256-bit encryption
We are ISO27001 certified, so your data is secure
Organizational security:
You retain IP ownership of your documents and their information
You have full control over your data and who gets to see it
.png)