Head office - Melbourne +61 3 8636 9100
Sydney office +61 2 9238 8028

Risk Management: Data Protection and Privacy Compliance – April 2024 Update

The OAIC’s latest Notifiable Data Breaches Report (Jul – Dec 2023) reveals the risk for organisations that outsource the handling of personal information to third party service providers and contractors – as well as risks of retaining personal information for longer than needed. In this Update we review the OAIC’s latest findings and provide guidance on steps an organisation can take to minimise risk and harm and to protect confidential information/data.

Read more

The Risk of Data Retention – Why Your Organisation Needs a Data Retention and Destruction Policy

Under Australian Privacy Law, organisations that hold Personal Information must take reasonable steps to destroy or de-identify personal information that the entity no longer needs – or face risks of incurring high penalties and reputational damage. An effective Data Retention and Destruction Policy provides an entity with a clear roadmap to ensure compliance with its obligations at law.

Read more

OAIC’s Latest Report on Notifiable Data Breaches: Privacy Risk Management Update

Malicious or criminal attacks and human error continue to be the major causes of notifiable data breaches reported to the OAIC during the 6 month period to 30 June 2023 according to the OAIC Notifiable Data Breaches Report – January-June 2023. This Update provides a summary of some key findings and statistics contained in the OAIC’s Report as well as steps which organisations and businesses can take to minimise the risk and harm of privacy data breaches.

Read more

Australia’s Privacy Watchdog conducting an inquiry into how TikTok Collects Personal Data from Users

December 2023 – The Office of the Australian Information Commissioner (OAIC) has launched an inquiry into whether TikTok’s use of marketing pixels, which track people’s online habits, breaches Australia’s privacy laws. The inquiry follows TikTok’s recent fines in Europe and the UK – including a fine of €345m (AU$560m) for breaking the European Union (EU) data laws about children’s accounts.

Read more

OAIC Releases Latest Report on Notifiable Data Breaches – Privacy Risk Management Update

Malicious or criminal attacks and human error continue as the major cause of notifiable data breaches reported the OAIC during the 6 month period to 31 December 2022 according to the OAIC Notifiable Data Breach Report-July-Dec 2022. This Update includes a summary of some key findings and statistics contained in the Report as well as steps which organisations can take to minimise the risk and harm of privacy data breaches.

Read more