Australian organisations still struggling to fully comprehend new privacy laws

ADMA chief highlights the lack of knowledge around the implications of Australia's new Privacy Act and its impact for marketers on customer data

Large and medium-sized organisations are getting ready for Australia’s new privacy laws but concerns remain across the industry that smaller businesses still don’t appreciate the significance of the new legislation.

The new privacy laws comes into effect on 12 March and will introduce a range of measures that companies must oblige by around customer data. These are a single set of standards called the Australian Privacy Principles that specify when information can be used for direct marketing or be sent overseas. Penalties for failing to meet the new privacy laws could cost companies up to $1.7m.

CEO of the Association for Data-driven Marketing and Advertising (ADMA), Jodie Sangster, told CMO that she believed many of Australia’s larger and medium-sized companies are on top of the changes, and have put in place processes to abide by the new rules. These include notices across customer-facing website outlining new privacy policies and rights.

But Sangster expressed concern around the readiness of SMBs and not-for-profit organisations, many of which don’t believe the privacy law changes apply to them, she claimed. The other challenge is that most of these organisations don’t have internal legal resources, staff on-hand, or budgets to hire consultancies to help them act on the information.

“Smaller marketers are challenged firstly on what they have to do, then secondly, how they get this in motion,” Sangster said.

Major challenges all organisations have faced is the notification piece and what that actually means.

“There is a question mark over what notification actually means and how organisations must notify customers,” Sangster said. “Many businesses are comfortable with sending people to a privacy policy without realising that won’t quite cut it under the new laws. There are whole new obligations to be met around proactively telling people what data you have about them. And there is a real struggle around how I do that, when I do that, and do I have to do it on an ongoing basis.”

The second recurring stumbling block is the provision around unsolicited information. According to Sangster, organisations must delete any unsolicited information obtained, nor can they use such information for any future relationship-building exercise. As an example, if someone brings a colleague or wife along to an event they have registered for, this could be unsolicited information and organisations wouldn’t be allowed to keep it.

“The question then becomes if this information has been given by someone for a business purpose, or has it just been given under a different reason. If it’s the latter, we cannot use it for future relationship building,” Sangster said.

“These are the types of things on the peripheral, not in the middle of the radar and therefore will be challenging,” she claimed. “The problem we have is that what the law says and the practicalities are often not aligned. This [unsolicited information clause] seems good in practices, but when you run every business scenario past it, it’s doesn’t work.”

To help member organisations get up to speed, ADMA launched the Data Pass responsible data practice program last October focus on the new privacy and security changes. Sangster said 40 companies have signed up to participate including Telstra, Weight Watchers, Foxtel and Amaysim.

“There is a big need for education throughout the whole industry,” Sangster claimed. “The reaction that we’ve had so far to the classes is that many don’t realise there’s so much to it. Data touches all parts of the business, not just the compliance person and anyone in the organisation that touches data needs to be aware of the changes."

While concerns remain around how prepared organisations are for the privacy crackdown, Sangster said it hasn’t hindered the rise of data-driven marketing across Australian businesses.

“Either organisations have made the changes and they’re ready, or they continue to feel they are compliant with the law as they are, so no one has said ‘stop’,” she said. “That did happen, however, when the spam act came in.”

Sangster’s key tips on getting on top of privacy law changes
  • Do a data audit: Organisations need to get a grip on what has to be done as a first step, even down to single data spreadsheets.
  • Get your front-facing information in order first: This includes the customer privacy policy, opt-out notifications and disclosure statements. These will at least be compliant while you then work on ensuring the whole back-end processes in your organisation meet the new privacy obligations.
  • Train your staff: Teams need to be trained to understand what they have to achieve and abide by, Sangster said. She pointed out there are a number of free tools available around digital privacy and policies from not only ADMA, but also legal firms and other associations. These are a good starting point for getting a grip on what needs to be done.
  • Tackle the new compliance policies in marketing: Sangster encouraged marketers to work on the wording of any new privacy and compliance statements, rather than leave them in the hands of legal teams. This will ensure that any information is couched in a customer approach and is therefore easier to understand as an end consumer.

Follow CMO on Twitter: @CMOAustralia, take part in the CMO Australia conversation on LinkedIn: CMO Australia, or join us on Facebook: https://www.facebook.com/CMOAustralia

Signup to CMO’s new email newsletter to receive your weekly dose of targeted content for the modern marketing chief.

Join the CMO newsletter!

Error: Please check your email address.
Show Comments

Supporting Association

Blog Posts

The real asset of small data – getting granular unearths opportunities

When most marketers use the word ‘data’, what springs to mind are large sets of numbers, Excel spreadsheets, cloud-based IT systems and complicated algorithms. Big data speak is the mot du jour. There is even a big data Week in London called the Festival of Data.

Pip Stocks

CEO and founder, BrandHook

Digital Transformation challenges for CMOs

New problems are rarely fixed by applying old thinking. In the last decade, a combination of circumstances has evolved that requires new thinking from marketers. This new thinking takes advantage of the digital environment and transforms business as we know it.

Mark Cameron

CEO, Working Three

Why innovation requires less certainty and more ambiguity

According to the Knowledge Doubling Theory, the sum total of human knowledge doubles every 12-13 months. With the full evolution of the Internet of Things, it will eventually double every 12 hours. Faced with such a sea of shifting data and knowledge, how can we make progress if we try to nail everything down to a certainty?

Matt Whale

Managing director, How To Impact

Need to improve your customer journey? We're excited to announce that we are holding that we are holding two more sessions of our sellout...

Proto Partners

Customer journeys: The new differentiation battlefield - Customer insights - CMO Australia

Read more

Thanks Mark. A third of customers leave brands after one negative experience, thats why it is ever so important that we optimise EVERY in...

Proto Partners

Customer journeys: The new differentiation battlefield - Customer insights - CMO Australia

Read more

Hi Kyle -- great piece. I couldn't agree with you more when you say that we as marketers are in the business of choice. I actually wrot...

Matthew Willcox

Tapping behavioural science for consumer influence

Read more

Great points. When it comes to optimizing the app experience, making sure you collect rich usage data is important, but making sure you c...

Dustin Amrhein

Why app engagement must be personalised - Mobile strategy - CMO Australia

Read more

You can also use automation to help keep the contact database nice and tidy. For example, programs that check and fix database values (eg...

automatico

3 brands using marketing automation for more than just email

Read more

Latest Podcast

More podcasts

Sign in