Where your data is stored

How Zato keeps client data local to each jurisdiction — NZ data in New Zealand, AU data in Australia — and what that means for your firm.

Data sovereignty — local by design

Zato operates on a jurisdiction-first model. Client data is stored in the AWS region that matches the firm's location and never leaves that jurisdiction.

  • New Zealand firms — all data stored on dedicated AWS infrastructure in the New Zealand region

  • Australian firms — all data stored on dedicated AWS infrastructure in the Australian region

Data does not cross borders. A NZ firm's client data stays in New Zealand. An AU firm's client data stays in Australia. This is not a policy setting — it is how the infrastructure is built.

Dedicated infrastructure

Zato operates on dedicated AWS infrastructure — not shared tenancy. Zato has direct agreements with AWS in each region. Your firm's data is not co-located with other customers.

What this means for your firm

  • Client data never leaves your jurisdiction

  • No data shared with third parties

  • No client data used to train any external AI model

  • Access is limited to your firm's authorised users

  • Full audit trail of all data access

Applicable to both jurisdictions

This data sovereignty model applies equally to NZ and AU firms. If your firm operates across both New Zealand and Australia, data for each entity is stored in the appropriate regional infrastructure for that entity's jurisdiction.