Mandatory data breach notification back on government agenda

Privacy Amendment (Privacy Alerts) Bill received first reading in Senate this week after lapsing in 2013

The Privacy Amendment (Privacy Alerts) Bill is back on the government agenda after it had a first reading in the Senate this week.

The Bill lapsed in 2013 after a second reading in parliament was delayed during June and the Coalition government was elected into office.

If passed by the Coalition, the bill will require government agencies and businesses to notify customers of serious data breaches in relation to personal, credit reporting, credit eligibility or tax file number information.

The 2014 version of the Bill includes the Australian Privacy Principles (APPs) which were passed into law on 12 March this year.

If the Bill is passed, Australian Privacy Commissioner Timothy Pilgrim would have the power to investigate data breaches. This means if he finds there has been a serious data breach in relation to personal information, credit reporting information, credit eligibility or tax file number, the Commissioner could ask the company or government agency to prepare a statement explaining what happened.

The statement would need to include information such as a description of the breach and recommendations about steps affected customers or clients should take.

Australian Information Security Association (AISA) Queensland branch chair Lani Refiti told Computerworld Australia that organisations need to be “held more accountable” for the data they hold, particularly when it’s not their data.

“We would have much better visibility into the current state of information security in Australia if we had mandatory breach notification,” he said.

“It's not a panacea, compliance and regulatory requirements never are but they would be a step in the right direction. Also, it [the bill] needs careful public consultation as was done with the Privacy Bill amendments.”

In June 2013, a Senate Standing Committee on Legal and Constitutional Affairs recommended the bill should be passed, stating that mandatory data breach notifications would benefit both Australian consumers and industry stakeholders.

In October 2013, Australian Privacy Commissioner Timothy Pilgrim said that while it was a decision for the Coalition government as to whether they would reintroduce the new legislation, he was supportive of it becoming law.

“I will be putting to government that I think it is an important piece of legislation,” he said. “It’s something that needs to be given strong consideration for reintroduction.”

Timothy Pilgrim has been contacted for comment by Computerworld Australia.

Follow Hamish Barwick on Twitter: @HamishBarwick

Follow Computerworld Australia on Twitter: @ComputerworldAU, or take part in the Computerworld conversation on LinkedIn: Computerworld Australia

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Show Comments

Latest Videos

Conversations over a cuppa with CMO: Microsoft's Pip Arthur

​In this latest episode of our conversations over a cuppa with CMO, we catch up with the delightful Pip Arthur, Microsoft Australia's chief marketing officer and communications director, to talk about thinking differently, delivering on B2B connection in the crisis, brand purpose and marketing transformation.

More Videos

Hey there! Very interesting article, thank you for your input! I found particularly interesting the part where you mentioned that certain...

Martin Valovič

Companies don’t have policies to disrupt traditional business models: Forrester’s McQuivey

Read more

I too am regularly surprised at how little care a large swathe of consumers take over the sharing and use of their personal data. As a m...

Catherine Stenson

Have customers really changed? - Marketing edge - CMO Australia

Read more

The biggest concern is the lack of awareness among marketers and the most important thing is the transparency and consent.

Joe Hawks

Data privacy 2021: What should be front and centre for the CMO right now

Read more

Thanks for giving these awesome suggestions. It's very in-depth and informative!sell property online

Joe Hawks

The new rules of Millennial marketing in 2021

Read more

In these tough times finding an earning opportunity that can be weaved into your lifestyle is hard. Doordash fits the bill nicely until y...

Fred Lawrence

DoorDash launches in Australia

Read more

Blog Posts

Highlights of 2020 deliver necessity for Circular Economies

The lessons emerging from a year like 2020 are what make the highlights, not necessarily what we gained. One of these is renewed emphasis on sustainability, and by this, I mean complete circular sustainability.

Katja Forbes

Managing director of Designit, Australia and New Zealand

Have customers really changed?

The past 12 months have been a confronting time for marketers, with each week seemingly bringing a new challenge. Some of the more notable impacts have been customer-centric, driven by shifting priorities, new consumption habits and expectation transfer.

Emilie Tan

Marketing strategist, Alpha Digital

Cultivating engaging content in Account-based Marketing (ABM)

ABM has been the buzzword in digital marketing for a while now, but I feel many companies are yet to really harness its power. The most important elements of ABM are to: Identify the right accounts; listen to these tracked accounts; and hyper-personalise your content to these accounts to truly engage them. It’s this third step where most companies struggle.

Joana Inch

Co-founder and head of digital, Hat Media Australia

Sign in