OAIC releases first quarterly statistics report under the NDB Scheme

Consumer, Uncategorized
By Anne Wardell, Compliance Quarter.  Photo by Jefferson Santos on Unsplash The OAIC has published its first quarterly statistics report under the NDB Scheme, Notifiable Data Breaches Quarterly Statistics Report: January 2018 – March 2018. It is interesting to note that the total number of breaches received for the first quarter was 63. Remember that the NDB only commenced at the end of February 2018. The report provides useful snapshots of the findings such as the top five industry sectors where an NDB occurred: The most common type of personal information revealed was contact information. It is perhaps of some concern that the next two most common types of information disclosed were financial details and health information: Although 73% of the eligible data breaches involved the personal information of fewer…
Read More
Understanding GDPR: Opportunities and Risks

Understanding GDPR: Opportunities and Risks

Consumer, Uncategorized
In this post on understanding GDPR, we'll look at the following: Data Disruption Regulation in the age of Data The GDPR Opportunity? What are the Next Steps? The post forms the commentary by our regulatory specialists on a recent webinar on understanding GDPR conducted for our clients and interested parties. Below is the video content of the webinar: Introducing Anne Wardell - Compliance Quarter Regulatory Specialist Anne is a former of the Victorian Bar with over thirty years' experience as a lawyer. She was also the National Director of Insolvency at the ATO and a Deputy Registrar of the Federal Court of Australia. She was an insolvency specialist acting for liquidators, banks and the Official Receiver, before moving into compliance and regulations. She has advised energy retailers in relation to…
Read More
The Productivity Commission’s proposed comprehensive consumer right to data

The Productivity Commission’s proposed comprehensive consumer right to data

Uncategorized
By Dr Drew Donnelly, Compliance Quarter. Over the last couple of weeks we have asked the question ‘Is your business prepared for roll out of the Notifiable Data Breaches Scheme?’, we have also discussed the impact that recent changes to European Union (EU) privacy laws may have on businesses that hold information on EU citizens. Today, we look at a proposed change to data regulation in Australia that would see individual privacy playing a more muted role in a new comprehensive consumer right to data. This right is proposed in the Productivity Commission’s Inquiry Report into Data Availability and Use. For the full 658-page report see http://www.pc.gov.au/inquiries/completed/data-access/report/data-access.pdf. Australia’s under-utilised resource The Productivity Commission (The Commission) observes that Australia is behind other countries with similar governance arrangements (such as New Zealand…
Read More
Is your business prepared for roll out of the Notifiable Data Breaches Scheme?

Is your business prepared for roll out of the Notifiable Data Breaches Scheme?

Uncategorized
This is our second post on the Notifiable Data Breaches Scheme. Amendments made to the Privacy Act 1988 (Cth) this year, create new obligations for certain Australian business entities and organisations with respect to data beach notifications. The changes will come into effect on 22 February 2018. Will my business be affected by the Scheme? Only government agencies, companies, businesses and organisations that are ‘APP entities’ who already have obligations with respect to personal information under the Privacy Act will be affected by the Scheme. Generally speaking, this includes federal government agencies, private sector and not-for profit organisations that have an annual turnover in excess of $3 million as well as certain businesses with an annual turnover of less than $3 million (small businesses) that handle personal information. If you…
Read More