Tçnâ koe Phillip,

Thank you for your Official Information Act request.
We will endeavour to respond to your request as soon as possible and, in any event, no later than 20 working days (noting that there is a holiday close down period) after the day that your request was received. If we are unable to respond to your request by then, we will notify you of an extension of that timeframe.

If you have any queries, please feel free to contact [GCSB request email]

Ngâ mihi,
GCSB

-----Original Message-----
From: Phillip Fry <[FOI #33343 email]>
Sent: Saturday, 20 December 2025 7:02 PM
To: Information (GCSB) <[GCSB request email]>
Subject: Official Information request - OIA Request: Security Advice regarding MoE SMART Tool (Project MOE29225)

[You don't often get email from [FOI #33343 email]. Learn why this is important at https://aka.ms/LearnAboutSenderIdentific... ]

Dear Government Communications Security Bureau,

Under the Official Information Act 1982, I request any advice, briefings, or correspondence provided by the GCSB or NCSC to the Ministry of Education regarding the SMART (Student Monitoring, Assessment and Reporting Tool) project and the vendor Janison Solution Pty Ltd.

Specifically, I request:

Any assessment or feedback regarding the tool’s compliance with NZISM standards for "IN-CONFIDENCE" data.

Any advice provided concerning the risks of offshore data storage and disaster recovery backups in Australia for this specific project.

Any records of "Supply Chain Cyber Security" assessments conducted on the vendor Janison.

Yours faithfully,

Phillip Fry

-------------------------------------------------------------------

This is an Official Information request made via the FYI website.

Please use this email address for all replies to this request:
[FOI #33343 email]

Is [GCSB request email] the wrong address for Official Information requests to Government Communications Security Bureau? If so, please contact us using this form:
https://fyi.org.nz/change_request/new?bo...

Disclaimer: This message and any reply that you make will be published on the internet. Our privacy and copyright policies:
https://fyi.org.nz/help/officers

If you find this service useful as an Official Information officer, please ask your web manager to link to us from your organisation's OIA or LGOIMA page.

-------------------------------------------------------------------

This electronic message, together with any attachments, contains information that is provided in confidence and may be subject to legal privilege.
Any classification markings must be adhered to. If you are not the intended recipient, you must not peruse, disclose, disseminate, copy or use the message in
any way. If you have received this message in error, please notify us immediately by return email and then destroy the original message.
The New Zealand Intelligence Community (NZIC) and the departments comprising the NZIC accepts no responsibility for changes to this e-mail, or to any attachments, after its transmission
from NZIC. This communication may be accessed or retained for information assurance purposes. Thank you.

hide quoted sections

Kia ora
Meri Kirihimete me te Hape Nu la - Merry Christmas and a Happy New Year.
Thank you for your email to the Government Communications Security Bureau.
We are out of the office for the Christmas/New Year period. Business as
usual will resume following Wellington on Tuesday 21 January 2026.  Any
requests under the Official Information Act and Privacy Act will be logged
and acknowledged accordingly. 
If you're emailing because you want to report a crime or you believe your
life is in danger, please contact the New Zealand Police. In an emergency,
call 111. If the information is not time-critical, please call the
non-emergency number, 105.
Nga mihi
GCSB

--------------------------------------------------------------------------

This electronic message, together with any attachments, contains
information that is provided in confidence and may be subject to legal
privilege. Any classification markings must be adhered to. If you are not
the intended recipient, you must not peruse, disclose, disseminate, copy
or use the message in any way. If you have received this message in error,
please notify us immediately by return email and then destroy the original
message.  The New Zealand Intelligence Community (NZIC) and the
departments comprising the NZIC accepts no responsibility for changes to
this e-mail, or to any attachments, after its transmission from NZIC. This
communication may be accessed or retained for information assurance
purposes. Thank you.

--------------------------------------------------------------------------

hide quoted sections

Dear Phillip

We refer to your official information request of 20 December 2025 relating to SMART (Student Monitoring, Assessment and Reporting Tool) project and the vendor Janison Solution Pty Ltd.

The Official Information Act 1982 requires that we advise you of our decision on your request no later than 20 working days after the day that we received your request which is 11 February 2026. Unfortunately, it will not be possible to meet that time limit and we are, therefore, writing to notify you of an extension of the time to make our decision, to Wednesday 11 March 2026.

This extension is necessary because consultations necessary to make a decision on your request are such that a proper response cannot reasonably be made within the original time limit.

If you wish to discuss any aspect of your request with us, including this decision, please feel free to contact [GCSB request email].

You have the right to seek an investigation and review by the Ombudsman of this decision. Information about how to make a complaint is available at http://www.ombudsman.parliament.nz/ or freephone 0800 802 602.

Kind regards

GCSB

-----Original Message-----
From: Phillip Fry <[FOI #33343 email]>
Sent: Saturday, 20 December 2025 7:02 PM
To: Information (GCSB) <[GCSB request email]>
Subject: Official Information request - OIA Request: Security Advice regarding MoE SMART Tool (Project MOE29225)

[You don't often get email from [FOI #33343 email]. Learn why this is important at https://aka.ms/LearnAboutSenderIdentific... ]

Dear Government Communications Security Bureau,

Under the Official Information Act 1982, I request any advice, briefings, or correspondence provided by the GCSB or NCSC to the Ministry of Education regarding the SMART (Student Monitoring, Assessment and Reporting Tool) project and the vendor Janison Solution Pty Ltd.

Specifically, I request:

Any assessment or feedback regarding the tool's compliance with NZISM standards for "IN-CONFIDENCE" data.

Any advice provided concerning the risks of offshore data storage and disaster recovery backups in Australia for this specific project.

Any records of "Supply Chain Cyber Security" assessments conducted on the vendor Janison.

Yours faithfully,

Phillip Fry

-------------------------------------------------------------------

This is an Official Information request made via the FYI website.

Please use this email address for all replies to this request:
[FOI #33343 email]

Is [GCSB request email] the wrong address for Official Information requests to Government Communications Security Bureau? If so, please contact us using this form:
https://fyi.org.nz/change_request/new?bo...

Disclaimer: This message and any reply that you make will be published on the internet. Our privacy and copyright policies:
https://fyi.org.nz/help/officers

If you find this service useful as an Official Information officer, please ask your web manager to link to us from your organisation's OIA or LGOIMA page.

-------------------------------------------------------------------

This electronic message, together with any attachments, contains information that is provided in confidence and may be subject to legal privilege.
Any classification markings must be adhered to. If you are not the intended recipient, you must not peruse, disclose, disseminate, copy or use the message in
any way. If you have received this message in error, please notify us immediately by return email and then destroy the original message.
The New Zealand Intelligence Community (NZIC) and the departments comprising the NZIC accepts no responsibility for changes to this e-mail, or to any attachments, after its transmission
from NZIC. This communication may be accessed or retained for information assurance purposes. Thank you.

hide quoted sections

[UNCLASSIFIED]
Hello Phillip Fry
Please find attached a response to your request under the Official
Information Act 1982. 

 

GCSB

--------------------------------------------------------------------------

From: Phillip Fry <[FOI #33343 email]>
Sent: Saturday, December 20, 2025 19:02
To: Information (GCSB) <[GCSB request email]>
Subject: Official Information request - OIA Request: Security Advice
regarding MoE SMART Tool (Project MOE29225)
 
[You don't often get email from
[FOI #33343 email]. Learn why this is
important at [1]https://aka.ms/LearnAboutSenderIdentific...

Dear Government Communications Security Bureau,

Under the Official Information Act 1982, I request any advice, briefings,
or correspondence provided by the GCSB or NCSC to the Ministry of
Education regarding the SMART (Student Monitoring, Assessment and
Reporting Tool) project and the vendor Janison Solution Pty Ltd.

Specifically, I request:

Any assessment or feedback regarding the tool’s compliance with NZISM
standards for "IN-CONFIDENCE" data.

Any advice provided concerning the risks of offshore data storage and
disaster recovery backups in Australia for this specific project.

Any records of "Supply Chain Cyber Security" assessments conducted on the
vendor Janison.

Yours faithfully,

Phillip Fry

-------------------------------------------------------------------

This is an Official Information request made via the FYI website.

Please use this email address for all replies to this request:
[FOI #33343 email]

Is [GCSB request email] the wrong address for Official Information
requests to Government Communications Security Bureau? If so, please
contact us using this form:
[2]https://aus01.safelinks.protection.outlo...

Disclaimer: This message and any reply that you make will be published on
the internet. Our privacy and copyright policies:
[3]https://aus01.safelinks.protection.outlo...

If you find this service useful as an Official Information officer, please
ask your web manager to link to us from your organisation's OIA or LGOIMA
page.

-------------------------------------------------------------------

[UNCLASSIFIED]

--------------------------------------------------------------------------

This electronic message, together with any attachments, contains
information that is provided in confidence and may be subject to legal
privilege. Any classification markings must be adhered to. If you are not
the intended recipient, you must not peruse, disclose, disseminate, copy
or use the message in any way. If you have received this message in error,
please notify us immediately by return email and then destroy the original
message.  The New Zealand Intelligence Community (NZIC) and the
departments comprising the NZIC accepts no responsibility for changes to
this e-mail, or to any attachments, after its transmission from NZIC. This
communication may be accessed or retained for information assurance
purposes. Thank you.

--------------------------------------------------------------------------

References

Visible links
1. https://aka.ms/LearnAboutSenderIdentific...
2. https://fyi.org.nz/change_request/new?bo...
3. https://fyi.org.nz/help/officers

hide quoted sections