In the course of their work board members will often have access to information that is commercially sensitive or valuable, or that could be personally sensitive for others.  For boards and entities to be trusted, this information needs to be handled with the highest standards of care and integrity and in a manner consistent with the relevant legislation. 


Under s57 of the CEA, board members must not disclose to any person, or make use of or act on information they receive as a member, and to which they would not otherwise have had access; unless it is: 

  • in the performance of the entity’s functions 
  • as required or permitted by law 
  • in complying with the requirement for the member to disclose their interests  
  • where the member has been authorised by the board or by the responsible Minister to disclose the information, or 
  • if the disclosure, use or act in question will not prejudice the entity or will be unlikely to do so. 

There are some exceptions under s57(2) of the CEA, in which a member may disclose, make use of, or act on such information, provided that: 

  • the member is first authorised to do so by the board 
  • the disclosure, use, or act in question will not, or will be unlikely to, prejudice the entity. 

An example where disclosure is required or permitted by law is where it is made in accordance with the Official Information Act. 

Summary: Disclosure of information 

At a minimum a good governance manual should cover: 

  • The requirement for board members to handle information that they obtain in their board role according to the requirements of s57 of the CEA and consistently with any board policies.