Privacy Amendment: Notify All Breaches!

Table of Contents

Share at:

In a world that is becoming increasingly dependent on technology to operate and function, organisations and governments are gaining more and more access to our personal information. Early in October, the Privacy Amendment (Notifiable Data Breaches) Bill 2016 (Cth) (Bill) was introduced into the Senate which seeks to make adjustments to current privacy legislation.

To make sure you are collecting your customers data in accordance with the law, make sure you have a Privacy Policy in place.

Background

With the steady rise in data breaches, including our own Federal Government, law reform is vital.

In its latest report, the Australian Law Reform Commission has stated that due to the high amount of personal data online, there is a heightened risk of identity fraud or theft if a security breach was to occur. As a result, the Federal Government has outlined plans in their recent Privacy Bill to enforce mandatory notifications of data breaches to all affected individuals. Allowing users the opportunity to take all reasonable steps to lessen any adverse results from a breach, such as changing their password.

There are key changes to current privacy legislation that the Bill is aiming to amend, including:

  • Reducing the threshold for the notification requirement, to cover situations where there is only a ‘likely risk of harm’;
  • Changing the terminology of data breaches from ‘serious data breaches’ to ‘eligible data breaches’; and
  • Ensuring that the notifications are communicated directly to the affected individual rather than simply a website notification.

In summary, the main purpose of this Bill is to make sure that organisations and Federal Government Departments are notifying affected individuals if a data breach occurs, and to hold accountable those who do not notify. Failure to notify users about a breach is considered an interference with the individual’s privacy.

Ramifications of the Bill

It is likely that the Bill will pass through Parliament in the next coming weeks. Despite this however, the Bill will only come into effect 12 months from assent. This is to allow the relevant bodies that fall under the privacy legislation to have preparatory procedure in place to deal with a potential data breach, including implementing how they will notify affected individuals.

Conclusion

Protecting your customers privacy is paramount. To reassure your customers that their privacy will be protected while on your website, you will need to implement a Privacy Policy.

Let us know your thoughts on the latest privacy data scare by tagging us #lawpath or @lawpath.

Share at:

Simplify creating legal documents today

Browse through Lawpath's AI tools which can be used to draft, review and refine legal documents today!

Related Articles

How Small Businesses Can Leverage Carry Forward Losses in Australia

Can you carry forward losses from this year in the future? What are the new carry-back loss rules? All this and more in our guide.

An Employers Guide to Redundancy Pay [With Calculator]

Learn how to calculate and manage redundancy payments in Australia. Your step-by-step guide to severance pay requirements and obligations.

Fixed Term Contracts: An Explainer

Considering hiring a fixed term employee? Or not sure whether they should be a permanent employee? Find all about fixed term contracts here.

How Do Probationary Periods Work?

Unsure whether your new employee is the correct fit? Why not try a probationary period? Learn what you need to know here.

How Long Should My Break Be As An Employee?

Employee breaks are key to preserving fair work rights, as well as ensuring a productive work place. Find out about your employee break entitlements here.

What Is The Difference Between Part-Time vs Casual Employment?

Do you want to know the differences between part-time and casual employment for your small business?