Under Australian Privacy Law, organisations that hold Personal Information must take reasonable steps to destroy or de-identify personal information that the entity no longer needs – or face risks of incurring high penalties and reputational damage. An effective Data Retention and Destruction Policy provides an entity with a clear roadmap to ensure compliance with its obligations at law.
Read more
Malicious or criminal attacks and human error continue to be the major causes of notifiable data breaches reported to the OAIC during the 6 month period to 30 June 2023 according to the OAIC Notifiable Data Breaches Report – January-June 2023. This Update provides a summary of some key findings and statistics contained in the OAIC’s Report as well as steps which organisations and businesses can take to minimise the risk and harm of privacy data breaches.
Read more
Malicious or criminal attacks and human error continue as the major cause of notifiable data breaches reported the OAIC during the 6 month period to 31 December 2022 according to the OAIC Notifiable Data Breach Report-July-Dec 2022. This Update includes a summary of some key findings and statistics contained in the Report as well as steps which organisations can take to minimise the risk and harm of privacy data breaches.
Read more
Understanding the risks and legal issues associated with using cloud based computing services is critical for risk management and protection of an organisation’s data and related intellectual property and to minimise the risk of business disruption.
Read more
Stephens Lawyers & Consultants provides a review of the compensation awarded in determinations for privacy breaches made during the period 2020 – September 2022 by the Office of the Australian Information and Privacy Commissioner.
Read more