Information security obligations for Australian businesses under the Privacy Act: a reminder from the OAIC
By Alec Christie and Reyhaneh Saadati
At the launch of this year’s Privacy Awareness Week on 29 April 2013, the Office of the Australian Information Commissioner (OAIC) released its new guide to information security — ‘Reasonable Steps to Protect Personal Information’. The guide aims to assist Australian businesses and those carrying on business in Australia to interpret the continuing requirement under the Privacy Act (both under the current and the amended law) to ‘take reasonable steps’ to protect the personal information they hold.
Under the current Privacy Act, there is an obligation to take ‘reasonable steps’ to protect information from misuse, loss, unauthorised access, modification or disclosure. This obligation is continued in the new APP 11 (effective from 12 March 2014) with the addition of a new obligation to protect the information from ‘interference’. Given that the obligations under the new APP 11 remain largely unchanged, information security obligations should be ‘old news’ to those carrying on business in Australia.
However, in the media release accompanying the guide, the OAIC warned that ‘information security is now the major issue affecting consumer privacy’, with 100 per cent of the high-profile investigations completed by the Australian Privacy Commissioner in 2011–12 involving data security issues. Our experience confirms the current general lack of awareness among Australian businesses of their information security obligations under the Privacy Act…
Click on the link below to read the rest of the DLA Piper briefing.
Sign in or Register to continue reading this article
It's quick, easy and free!
It takes just 5 minutes to register. Answer a few simple questions and once completed you’ll have instant access.Register now
Why register to The Lawyer
In-depth, expert analysis into the stories behind the headlines from our leading team of journalists.
Identify the major players and business opportunities within a particular region through our series of free, special reports.
Receive your pick of The Lawyer's daily and weekly email newsletters, tailored by practice area, region and job function.
More relevant to you
To continue providing the best analysis, insight and news across the legal market we are collecting some information about who you are, what you do and where you work to improve The Lawyer and make it more relevant to you.
News from DLA Piper
News from The Lawyer
Briefings from DLA Piper
A well-known British performing artist was granted permission to take his case to the Supreme Court, where he will appeal the Court of Appeal’s decision in OPO v MLA & STL.
The increased focus of national data protection authorities on the processing of personal data through mobile apps was again confirmed in an open letter from a group of data protection authorities.
Analysis from The Lawyer
Regulators are ramping up the pressure in the aftermath of recession, leaving firms to compete for compliance and restructuring work
Shearman & Sterling is making its presence felt in the City, squaring up to magic circle firms and looking to muscle in on key relationships. Private equity house Bridgepoint is one outfit that has had its head turned by the US firm.