Mandatory data breach notification back on government agenda

Privacy Amendment (Privacy Alerts) Bill received first reading in Senate this week after lapsing in 2013

The Privacy Amendment (Privacy Alerts) Bill is back on the government agenda after it had a first reading in the Senate this week.

The Bill lapsed in 2013 after a second reading in parliament was delayed during June and the Coalition government was elected into office.

If passed by the Coalition, the bill will require government agencies and businesses to notify customers of serious data breaches in relation to personal, credit reporting, credit eligibility or tax file number information.

The 2014 version of the Bill includes the Australian Privacy Principles (APPs) which were passed into law on 12 March this year.

If the Bill is passed, Australian Privacy Commissioner Timothy Pilgrim would have the power to investigate data breaches. This means if he finds there has been a serious data breach in relation to personal information, credit reporting information, credit eligibility or tax file number, the Commissioner could ask the company or government agency to prepare a statement explaining what happened.

The statement would need to include information such as a description of the breach and recommendations about steps affected customers or clients should take.

Australian Information Security Association (AISA) Queensland branch chair Lani Refiti told Computerworld Australia that organisations need to be “held more accountable” for the data they hold, particularly when it’s not their data.

“We would have much better visibility into the current state of information security in Australia if we had mandatory breach notification,” he said.

“It's not a panacea, compliance and regulatory requirements never are but they would be a step in the right direction. Also, it [the bill] needs careful public consultation as was done with the Privacy Bill amendments.”

In June 2013, a Senate Standing Committee on Legal and Constitutional Affairs recommended the bill should be passed, stating that mandatory data breach notifications would benefit both Australian consumers and industry stakeholders.

In October 2013, Australian Privacy Commissioner Timothy Pilgrim said that while it was a decision for the Coalition government as to whether they would reintroduce the new legislation, he was supportive of it becoming law.

“I will be putting to government that I think it is an important piece of legislation,” he said. “It’s something that needs to be given strong consideration for reintroduction.”

Timothy Pilgrim has been contacted for comment by Computerworld Australia.

Follow Hamish Barwick on Twitter: @HamishBarwick

Follow Computerworld Australia on Twitter: @ComputerworldAU, or take part in the Computerworld conversation on LinkedIn: Computerworld Australia

Join the newsletter!

Error: Please check your email address.
Show Comments

Blog Posts

Maintaining trust in a sceptical world: The power of brand trust

The faith people have in brands creates opportunity for those brands to become trusted advisors. In turn, this builds success by increasing the brand’s profile, letting it broaden its product offering and driving stronger customer loyalty.

Dan Ratner

managing director, uberbrand

When growth stalls: How to boost growth in large organisations

The push to start new businesses continues. In Q1 2017, the number of seed and angel deals increased by 1.4 per cent compared to Q1 2016.

Con Frantzeskos

CEO, Penso

Why we need diversity in marketing

​When we read articles about the need for increased diversity in marketing land, it is often through the lens of gender.

Jodie Sangster

CEO, ADMA

Interesting insight, well explained and the examples are just apt.Thanks for sharing!

FreshMindIdeas

The politics of branding - Brand science - CMO Australia

Read more

When the world that we live in floods with gigabytes of content every day, we have to learn to be selective about it. Such educational we...

Paulina Cameron

ADMA launches education program to tackle viewability, ad fraud and brand safety

Read more

Hi, i am an Aistralian ALK patient, been on xalkori dec 13 to oct 15 and achieved remission of disease, since been on Ceritinib until no...

gary packer

Pfizer Australia adopts AI-powered digital analyst tool for sales and marketing decision making

Read more

Hi James, shouldn't marketers also be focusing on collecting and utilizing up to date first-party profiling data on customers so that mes...

Tom

3 ways customer data can increase online sales conversion

Read more

Wouldn't reconnecting with younger consumers be in direct contravention of the code on alcohol advertising?

Tim Palmer

Vodka Cruiser reconnects with younger consumers via category-first Facebook Live campaign

Read more

Latest Podcast

Getting Intimate with CX Ep 5: Tammy Marshall, founder, The B Hive

How much of customer experience is having the foresight to know what those individuals might like, versus asking them? In Episode 5 of this new podcast series, BrandHook MD, Pip Stocks, talks with Tammy Marshall about the importance of asking your customers questions, how consistency plays a role in engagement, but how the unexpected adds extra value.

More podcasts

Sign in