What is a data breach response plan and how do I get one?

On 23 February 2018 the notifiable data breach scheme (Scheme) was enacted, through legislation amending the Privacy Act 1988 (Cth) (Privacy Act), making it mandatory for certain (eligible) entities to notify affected individuals about eligible data breaches.  In talking to clients in this area, there appears to be some confusion about what an eligible organisation has to do to prepare for this. [Read more…]

Notifiable Data Breach Scheme commences 23 Feb 2018

As of 23 February 2018 a new notifiable data breach scheme (Scheme) will be enacted through legislation amending the Privacy Act 1988 (Cth) (Privacy Act) making it mandatory for certain entities to notify affected individuals about eligible data breaches.

[Read more…]

The Meaning of Personal Information

In the recent case of The Privacy Commissioner v Telstra Corporation Limited [2017] FCAFA 4, the question was raised as to whether the words “personal information” had any bearing on what information an individual could request from an organisation under the Privacy Act 1988 (Cth) (Act). [Read more…]

Privacy determination –Sensitive Information held in garden shed

The Privacy Commissioner, Timothy Pilgrim, has found that a Melbourne medical centre has breached the Privacy Act 1988 (Cth) (Privacy Act) in failing to provide adequate security to protect Sensitive Information contained in medical information. The breach occurred before the Australian Privacy Principles (APPs) took effect and therefore the medical centre was found to have breached the National Privacy Principles (NPPs).

[Read more…]

Dundas Lawyers
Street Address Suite 12, Level 9, 320 Adelaide Street Brisbane QLD 4001

Tel: 07 3221 0013

Send this to a friend