Privacy Amendment: Notify All Breaches!

Table of Contents

Share at:

In a world that is becoming increasingly dependent on technology to operate and function, organisations and governments are gaining more and more access to our personal information. Early in October, the Privacy Amendment (Notifiable Data Breaches) Bill 2016 (Cth) (Bill) was introduced into the Senate which seeks to make adjustments to current privacy legislation.

To make sure you are collecting your customers data in accordance with the law, make sure you have a Privacy Policy in place.

Background

With the steady rise in data breaches, including our own Federal Government, law reform is vital.

In its latest report, the Australian Law Reform Commission has stated that due to the high amount of personal data online, there is a heightened risk of identity fraud or theft if a security breach was to occur. As a result, the Federal Government has outlined plans in their recent Privacy Bill to enforce mandatory notifications of data breaches to all affected individuals. Allowing users the opportunity to take all reasonable steps to lessen any adverse results from a breach, such as changing their password.

There are key changes to current privacy legislation that the Bill is aiming to amend, including:

  • Reducing the threshold for the notification requirement, to cover situations where there is only a ‘likely risk of harm’;
  • Changing the terminology of data breaches from ‘serious data breaches’ to ‘eligible data breaches’; and
  • Ensuring that the notifications are communicated directly to the affected individual rather than simply a website notification.

In summary, the main purpose of this Bill is to make sure that organisations and Federal Government Departments are notifying affected individuals if a data breach occurs, and to hold accountable those who do not notify. Failure to notify users about a breach is considered an interference with the individual’s privacy.

Ramifications of the Bill

It is likely that the Bill will pass through Parliament in the next coming weeks. Despite this however, the Bill will only come into effect 12 months from assent. This is to allow the relevant bodies that fall under the privacy legislation to have preparatory procedure in place to deal with a potential data breach, including implementing how they will notify affected individuals.

Conclusion

Protecting your customers privacy is paramount. To reassure your customers that their privacy will be protected while on your website, you will need to implement a Privacy Policy.

Let us know your thoughts on the latest privacy data scare by tagging us #lawpath or @lawpath.

Share at:

Simplify creating legal documents today

Browse through Lawpath's AI tools which can be used to draft, review and refine legal documents today!

Related Articles

How Much Should You Pay a Lawyer in Australia: A Guide 

Want to know how much hiring a lawyer will cost? Find out how your lawyer will charge and how to minimise your fees here.

Company Setup Costs and Tasks in Australia for 2026-2027: A Simple Guide to Business Registration

Are you wondering how much it costs to start a company in Australia? Check out our detailed guide with pro tips inside!

When Are Employees Entitled to Paid Breaks?

Know your rights to paid breaks in Australia. This guide explains Fair Work rules for rest breaks (paid) vs. meal breaks (unpaid) to ensure compliance.

17 Changes Hitting Australian Businesses on 1 July 2026

What July 1 changes affect Australian businesses in 2026? Here’s what to know about super, wages, tax and compliance.

Do I Have to Pay Tax on Distributions From an Irrevocable Trust?

Understand how to pay tax on trust distributions. Ensure compliance and maximise your tax benefits today.

FY26 Dates: Key Deadlines and Milestones You Can’t Miss

Here is your guide to key tax dates in Australia. From BAS lodgement to tax returns, keep these dates in mind to ensure tax compliance.