Data breach notification to become mandatory in Australia from 22 February 2018

By Jim Lennon (AU) and Edward Odendaal (AU) on February 7, 2018 Posted in Regulatory response

Data Protection Report - Norton Rose Fulbright

Privacy compliance will become even more important for all companies in Australia now that the mandatory data breach notification scheme has been enacted. From 22 February 2018, certain data breaches (known as “eligible data breaches”) will need to be notified to the Australian Privacy Commissioner and affected individuals. Previously, notification of data breaches was optional.… Continue reading

Australian mandatory data breach notification on the agenda again

By on September 7, 2016 Posted in Data breach, Regulatory response

The Australian Federal Parliament commenced sitting on August 30, 2016, and the long-proposed mandatory data breach notification legislation is again on the newly-elected Coalition Government’s agenda. Currently, the Australian Privacy Act 1988 (Cth) does not require an organisation or agency to notify an individual of a data breach involving their personal information, but this looks … Continue reading

Data breach notification places cyber-risk at the top of the agenda

By Nick Abrahams (AU) and Jim Lennon (AU) on December 9, 2015 Posted in Compliance and risk management, Regulatory response

The bar is to be raised yet again for privacy compliance in Australia. Cyber-risk has become a key agenda item for boards for the public sector, and the impending mandatory data breach notification regime is set to propel cyber-risk to the top of the agenda.… Continue reading