Let’s get your team trained and using Microsoft Copilot and moving your business forward. Click here to book 09 974 2379Client PortalRemote Support
Belton IT Nexus
NZ AU
Contact us
01 Run

We become your IT department and own the day-to-day.

Managed IT Your whole environment, owned Managed Devices Endpoints, patched & tracked Microsoft 365 The workplace, managed Cloud & Azure Run properly, costs watched Connectivity Internet & networks that work Business VoIP Phones on any device
02 Protect

Security operations you can verify, and show.

24-Hour CyberSOC Security ops that don't clock off Identity & Access MFA enforced, takeover stopped Email Security Phishing & fraud, stopped Endpoint Protection EDR on every device Backup & Recovery Provably restorable Security Bundles Per-user, no hidden fees
03 Improve

Honest strategy, budgets you can plan around.

IT Advisory & vCIO Honest, predictable plans Compliance & Governance Audit-ready evidence Projects & Consulting Build what you can't buy Procurement Right kit, fair price, visible Licensing Right-sized, never wasted Data Centres & Hosting Sovereign, servers in minutes
04 Build

AI, automation and software, where they genuinely help.

AI & Copilot Rolled out so it sticks Copilot Workshops Hands-on team training Business Automation Hand work to the platform Software Development Custom builds, done properly Client Portal AI-first insights & budgets White-Label Our bench, your brand
Belton · Run / Protect / Improve / BuildView all services ›
Professional Services

Firms that run on trust, time and confidential data.

Accounting Ledgers & client data Legal Privilege & matter files Business Advisory Plans & reporting Mortgage & Finance Loan files & AML/CFT Insurance Claims & client records Insurance Brokers Cover & premiums
Built & Made

Site, studio and floor, where uptime is the product.

Construction Sites & project files Architecture Drawings & large models Quantity Surveyors Cost data & big files Manufacturing Floor & ERP uptime Healthcare Patient data & privacy
Trade & Technology

Fast-moving operations that can't carry downtime.

Logistics Fleet, orders & tracking Retail & Wholesale POS & storefronts Technology Cloud-native teams Distribution Inventory & systems
Belton · Sector-specialised IT & securityAll industries ›
Guides & Frameworks

Plain-English playbooks for the controls that matter.

Essential Eight ASD's eight, explained DIY Cybersecurity Lock down the basics Cyber Standards Guide ISO, SMB1001 & more M365 Selection Guide Pick the right licences
Tools & Assessments

Self-serve checks that map where you stand.

Security Assessment Score your posture Network Assessment Find the weak spots M365 Security Checklist Find the gaps Cyber Insurance Readiness Be claim-ready
Reading & Learning

Get more from the tools you already pay for.

SME Tech Outlook 2026 Where NZ tech heads next Copilot Learning Hands-on with Copilot FAQ Straight answers CEO's Blog Plain-English views
Belton · Knowledge, not gatekeepingResource library ›
The Firm

A senior team with the skills and scale for any project.

About Belton Who we are, plainly How We Work Our delivery process Who We Work With The fit we look for Leadership Jason & Amy Agnew + team
Proof & Partners

The evidence behind the claims, and ways to build with us.

Case Studies Real outcomes, named Accreditations The proof behind the practice Industries Sector-specialised White-label / Partners Our bench, your brand
Connect

Real people, fast, no ticket-queue runaround.

Contact Us Talk to a human, today Book a Session A 90-minute discovery Find Us Newmarket, Auckland Remote Support Get help now
Belton IT Nexus · Est. 2004 · Newmarket, AucklandAbout us ›
Home/ Resources/ Law Firm IT Risk Self-Assessment

NZ law firm IT risk check.

A practitioner-grade self-assessment for partners and practice managers, covering AML/CFT, the Privacy Act 2020, NZLS rules of conduct, e-discovery, trust account audit-readiness, and secure file sharing.

12Risk areas
PDFPrintable
FreeNo cost
The self-assessment
§01

What it covers.

12 areas

For partners, practice managers, and operations leads at small-to-mid New Zealand law firms. It is the same control set we work through with our own legal clients before AML audits, trust account reviews, NZLS practice inspections, and cyber insurance renewals. Each area is grounded in a specific NZ obligation, a specific NZLS rule, or a specific failure mode we see in legal practices.

  • AML/CFT obligations for the legal sector DIA supervision of captured activities, and the IT evidence that stands up at an on-site review.
  • Privacy Act 2020 for client data Mandatory breach notification and the Information Privacy Principles applied to legal files and trust records.
  • NZLS rules of conduct as they intersect with technology The technology side of confidentiality (Rule 8) and competence (Rule 3) under the Conduct and Client Care Rules.
  • E-discovery and document management Handling large volumes of opposing-party data and keeping your DMS defensible.
  • Trust account audit-readiness Access control and audit trails on the ledgers an inspector or auditor will ask to see.
  • Secure file sharing with clients and courts Moving sensitive documents without email attachments leaking privilege.
  • Confidentiality and privilege in the cloud Where your data lives, who can reach it, and how privilege survives a cloud migration.
  • Encrypted email and secure messaging Practical encryption for partner mail and the out-of-band verification that stops settlement fraud.
  • Staff onboarding and offboarding controls Disabling identity, revoking tokens, and removing access in dependency order when people move on.
  • BYOD risk for legal staff Personal devices holding cached client files, and the controls that contain them.
  • Ransomware impact on litigation deadlines Continuity planning when an attack is timed to a court deadline.
  • Cyber insurance for legal practices The underwriter questions, and the evidence to keep so a claim is paid rather than disputed.

Printable PDF covering twelve risk areas. Use it in your next partner meeting or AML audit prep session.

You will receive the download immediately. We may send occasional emails about NZ legal IT and compliance. Unsubscribe any time. Prefer a direct link? Download the PDF →

Want the controls
implemented, not just listed?

We work with NZ law firms on the full stack: identity, document management, trust accounting, e-discovery, and compliance evidence.

Book a session Talk to a human
And relax

Getting started is the easy part.

Onboarding without drama

We do the switch: your current provider, the migration, the handover, all of it. Most teams barely notice the cutover happened.

Everything looked after

On the right plan, compliance, reporting and budgets are handled inside the partnership. You run the business; we run the IT underneath it.

Your QBR writes itself

Quarterly business reviews are generated automatically from your live environment: spend, posture, recommendations and roadmap, ready for the board, reviewed with your account manager.

The honest bit: the full looked-after experience comes with the right plan. We charge fairly for what we take on, and when costs step up it's because you are taking on more, always moving in the right direction.

Get started in 2 minutes Speak to someone
NEW ZEALAND OWNED & OPERATED EST. 2004
Sovereign by design

New Zealand owned and operated.

Sovereign data centres across New Zealand and Australia, with your data kept onshore wherever it's required. Our team understands New Zealand, and our leaders have built, scaled and secured businesses right across the New Zealand landscape.

Sovereign data centres · New Zealand & Australia
  • Auckland
  • Christchurch
  • Sydney
  • Melbourne
  • Brisbane
  • Perth
International data-centre operations
  • Singapore
  • Germany
  • Netherlands
  • USA

Servers available in minutes, not days.

Explore data centres & hosting →
Accredited partners
Microsoft Solutions Partner, Modern Work Fortinet Partner Lenovo Partner HP Partner Apple Business Manager