News

The Office of the Australian Information Commissioner has released a statement correcting recent media reports that have suggested that organisations that experience a data breach as a result of a cyber-attack or hack are ‘off the hook’ or won’t be held accountable for the exposure of personal information.

Read the full statement

Read the draft OAIC privacy regulatory action policy

The Office of the Australian Information Commissioner (OAIC) has updated their Guide to conducting privacy impact assessments to take account of changes under privacy law reform. This updated guide is now available for public consultation.

The OAIC welcomes comments by close of business 28 March 2014.

The Office of the Australian Information Commissioner (OAIC) is currently inviting comments on the clarity of its privacy regulatory action policy.

The Office of the Australian Information Commissioner has now published Information Policy Agency Resource 1 — De-identification of data and information. This resource provides general advice on when de-identification may be appropriate, how to choose appropriate de-identification techniques, and how to assess the risk of re-identification.

See the Information Policy Agency Resource 1 — De-identification of data and information