What is the main takeaway from "How to export your DEIS evidence log for audits and investigations"?
Step-by-step guide to exporting your compliance evidence trail from DEIS for OPC investigations, audits, or internal reviews.
Where can I get help with DEIS or privacy requests?
Businesses sign in at deis.nz with a work email magic link. Individuals use deis.nz/my-data for notifications and formal Privacy Act requests. Contact the DEIS team at deis.nz/contact for support.
Is DEIS a legal adviser?
No. DEIS is a compliance platform that records lookup pathways and evidence. Organisations should confirm legal positions with their counsel or the Office of the Privacy Commissioner where needed.
DEIS maintains an immutable evidence log of every lookup, IPP3A pathway selection, notification, and system event. You can export this log at any time for audits, OPC investigations, or internal reviews.
Exporting your evidence log
Go to Evidence in your DEIS dashboard.
Use the filters to select the date range, event types, and data sources you need.
Click "Export CSV" in the top right corner.
The export includes: timestamp, lookup type, data source, individual name, IPP3A pathway, notification status, and the user who performed the lookup.
What to include in an OPC response
If the Privacy Commissioner asks about a specific individual's data:
Filter the evidence log by the individual's name or email.
Export the results.
The export shows every lookup performed on that individual, with the compliance pathway and notification evidence for each.
Retention
DEIS retains evidence log entries for 7 years by default, aligning with standard NZ record-keeping requirements. You can adjust this in Settings → Data Retention.
Immutability
Evidence log entries cannot be edited or deleted by users. This ensures the integrity of your compliance evidence and satisfies OPC requirements for reliable record-keeping.