Book a demo Log in / Sign up

Criticality Assessment Matrix Template for New Zealand

Generate a bespoke document

  • England and Wales
  • Scotland
  • Northern Ireland
  • Ireland
  • United States
  • Alabama (USA)
  • Alaska (USA)
  • Arizona (USA)
  • Arkansas (USA)
  • California (USA)
  • Colorado (USA)
  • Connecticut (USA)
  • Delaware (USA)
  • Florida (USA)
  • Georgia (USA)
  • Hawaii (USA)
  • Idaho (USA)
  • Illinois (USA)
  • Indiana (USA)
  • Iowa (USA)
  • Kansas (USA)
  • Kentucky (USA)
  • Louisiana (USA)
  • Maine (USA)
  • Maryland (USA)
  • Massachusetts (USA)
  • Michigan (USA)
  • Minnesota (USA)
  • Mississippi (USA)
  • Missouri (USA)
  • Montana (USA)
  • Nebraska (USA)
  • Nevada (USA)
  • New Hampshire (USA)
  • New Jersey (USA)
  • New Mexico (USA)
  • New York (USA)
  • North Carolina (USA)
  • North Dakota (USA)
  • Ohio (USA)
  • Oklahoma (USA)
  • Oregon (USA)
  • Pennsylvania (USA)
  • Rhode Island (USA)
  • South Carolina (USA)
  • South Dakota (USA)
  • Tennessee (USA)
  • Texas (USA)
  • Utah (USA)
  • Vermont (USA)
  • Virginia (USA)
  • Washington (USA)
  • West Virginia (USA)
  • Wisconsin (USA)
  • Wyoming (USA)
  • Austria
  • Denmark
  • France
  • Germany
  • Lithuania
  • Luxembourg
  • Malta
  • Netherlands
  • Poland
  • Portugal
  • Romania
  • Slovakia
  • Slovenia
  • Spain
  • Sweden
  • Switzerland
  • Australia
  • New Zealand
  • Singapore
  • Hong Kong
  • India
  • Malaysia
  • Pakistan
  • United Arab Emirates
  • Qatar
  • Saudi Arabia
  • South Africa
  • Nigeria
  • Canada
  • Brasil
  • Monaco
  • Bermuda
  • Cayman Islands
  • Gibraltar
  • Isle of Man
  • Mauritius

What is a Criticality Assessment Matrix?

The Criticality Assessment Matrix serves as an essential tool for organizations operating in New Zealand to evaluate and categorize the importance of their various business components. This document becomes necessary when organizations need to systematically assess the criticality of their assets, processes, or systems to ensure appropriate resource allocation, risk management, and compliance with local regulations. The matrix incorporates New Zealand's regulatory requirements, including the Health and Safety at Work Act 2015, Privacy Act 2020, and industry-specific legislation, while providing a structured approach to identifying and managing critical business elements. It is particularly valuable for organizations seeking to establish a standardized approach to criticality assessment, improve their risk management framework, or meet regulatory obligations.

Reviewed by

Swetha Meenal

Legal Engineer, GenieAI

Swetha Meenal profile photo

A lawyer, legal researcher and legal tech founder, Swetha has built AI products deployed inside Tier 1 firms and enterprises. She ensures GenieAI's alignment with the latest regulation and executes testing on the legal robustness of Genie output.

LinkedIn

Reviewed by

Imad Mohammed Nazar

Legal Engineer, GenieAI

Imad Mohammed Nazar profile photo

A Skadden-trained M&A lawyer, Imad advised on cross-border transactions and contractual risk before moving into legal AI. He reviews GenieAI's output for compliance and enforceability across our 150+ supported jurisdictions, as well as facilitating external benchmarking.

LinkedIn

Jurisdiction

New Zealand

Reviewed by

Swetha Meenal & Imad Mohammed Nazar

Publisher

GenieAI

Category

Risk Assessment Document

Sector

Business

Cost

Free to use

Last updated

About the Criticality Assessment Matrix

A Criticality Assessment Matrix is a systematic evaluation framework that helps you identify, categorize, and prioritize the most important elements of your business operations. This structured document provides clear criteria for assessing the criticality of assets, processes, systems, and functions within your organization, enabling informed resource allocation and strategic decision-making.

When do you need this document?

You need a Criticality Assessment Matrix when establishing or updating your organization's risk management framework, particularly if you're operating in sectors involving critical infrastructure, healthcare, manufacturing, or government services. This document becomes essential during business continuity planning, emergency preparedness initiatives, or when regulatory bodies require evidence of systematic risk assessment processes. It's also crucial when implementing new systems, conducting organizational restructures, or preparing for external audits where you need to demonstrate comprehensive understanding of your critical operations.

Key legal considerations

Your Criticality Assessment Matrix must incorporate robust evaluation criteria that align with your legal obligations and industry standards. Key considerations include defining clear criticality levels with specific thresholds, establishing objective scoring methodologies, and ensuring comprehensive coverage of all business functions. The matrix should include assessment criteria for operational impact, regulatory compliance requirements, financial implications, and reputational risks. You must also consider data protection requirements when handling sensitive information during assessments, ensure appropriate stakeholder involvement in the evaluation process, and establish regular review cycles to maintain accuracy and relevance.

Legal requirements in New Zealand

Under New Zealand law, your Criticality Assessment Matrix must comply with the Health and Safety at Work Act 2015, which requires systematic identification and management of workplace risks and hazards. The Privacy Act 2020 governs how you handle personal information during criticality assessments, requiring appropriate safeguards for sensitive data. If your organization manages critical infrastructure, you must align with the Critical Infrastructure Protection Framework and may need to comply with the Civil Defence Emergency Management Act 2002. The Building Act 2004 may apply to facility-based assessments, while the Resource Management Act 1991 is relevant for environmental risk considerations. Government agencies and contractors must also adhere to Protective Security Requirements, ensuring national security considerations are incorporated into criticality assessments.

GOVERNING LAW

Applicable law

This Criticality Assessment Matrix is drafted to comply with New Zealand law. Key legislation includes:

Health and Safety at Work Act 2015: Primary legislation for workplace health and safety in New Zealand, requiring identification and management of risks and hazards
Privacy Act 2020: Relevant for handling sensitive information in risk assessments and protecting personal information in critical systems
Civil Defence Emergency Management Act 2002: Provides framework for emergency management and critical infrastructure protection
Critical Infrastructure Protection Framework: Government guidelines for protecting nationally significant infrastructure and systems
Resource Management Act 1991: Relevant for environmental risk assessment and management of natural resources
Building Act 2004: Important for structural and facility criticality assessments
Protective Security Requirements (PSR): Government framework for managing protective security requirements in critical systems
ISO 31000:2018 Risk Management Guidelines: While not legislation, these are recognized standards in New Zealand for risk management frameworks

Explore 208,390+ legal templates

Explore 208,390+ legal templates

Genie's Security Promise

Genie is the safest place to draft. Here's how we prioritise your privacy and security.

Your data is private:

We do not train on your data; Genie's AI improves independently

All data stored on Genie is private to your organisation

Your documents are protected:

Your documents are protected by ultra-secure 256-bit encryption

We are ISO27001 certified, so your data is secure

Organizational security:

You retain IP ownership of your documents and their information

You have full control over your data and who gets to see it