Mandatory data breach notification back on government agenda

Privacy Amendment (Privacy Alerts) Bill received first reading in Senate this week after lapsing in 2013

The Privacy Amendment (Privacy Alerts) Bill is back on the government agenda after it had a first reading in the Senate this week.

The Bill lapsed in 2013 after a second reading in parliament was delayed during June and the Coalition government was elected into office.

If passed by the Coalition, the bill will require government agencies and businesses to notify customers of serious data breaches in relation to personal, credit reporting, credit eligibility or tax file number information.

The 2014 version of the Bill includes the Australian Privacy Principles (APPs) which were passed into law on 12 March this year.

If the Bill is passed, Australian Privacy Commissioner Timothy Pilgrim would have the power to investigate data breaches. This means if he finds there has been a serious data breach in relation to personal information, credit reporting information, credit eligibility or tax file number, the Commissioner could ask the company or government agency to prepare a statement explaining what happened.

The statement would need to include information such as a description of the breach and recommendations about steps affected customers or clients should take.

Australian Information Security Association (AISA) Queensland branch chair Lani Refiti told Computerworld Australia that organisations need to be “held more accountable” for the data they hold, particularly when it’s not their data.

“We would have much better visibility into the current state of information security in Australia if we had mandatory breach notification,” he said.

“It's not a panacea, compliance and regulatory requirements never are but they would be a step in the right direction. Also, it [the bill] needs careful public consultation as was done with the Privacy Bill amendments.”

In June 2013, a Senate Standing Committee on Legal and Constitutional Affairs recommended the bill should be passed, stating that mandatory data breach notifications would benefit both Australian consumers and industry stakeholders.

In October 2013, Australian Privacy Commissioner Timothy Pilgrim said that while it was a decision for the Coalition government as to whether they would reintroduce the new legislation, he was supportive of it becoming law.

“I will be putting to government that I think it is an important piece of legislation,” he said. “It’s something that needs to be given strong consideration for reintroduction.”

Timothy Pilgrim has been contacted for comment by Computerworld Australia.

Follow Hamish Barwick on Twitter: @HamishBarwick

Follow Computerworld Australia on Twitter: @ComputerworldAU, or take part in the Computerworld conversation on LinkedIn: Computerworld Australia

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Show Comments

Blog Posts

How service heterogeneity is impacting engagement

Marketers have long known the importance of standardising products to assure quality and consistency. For services, however, standardisation is much more complex.

Dr Chris Baumann

Associate professor, Macquarie University

Kindness matters in business: why the nice guys finish first

A recent 1000-page Royal Commission report on misconduct in Australia’s financial sector revealed hair-raising stories of excessive commissions, rampant mis-selling and charges levied on the dead. So how do you stop a bank from misleading its customers?

Nick Liddell

Director of Consulting, The Clearing

Myer vs. David Jones: Do cyborgs win?

As two of Australia’s stalwart brands in Myer and David Jones continue their respective journeys through troubled waters, it heralds yet another sign of the shifting business environment and shift towards an experience economy.

Tom Uhlhorn

Founder and strategy director, Tiny CX

nice article

meripadhai

5 things marketers need to do to get better in buy in when presenting

Read more

International business is closely related to marketing or marketing activities carried out by the company. According to Gitman and McDani...

Eko Prasetyo Utomo X

Salesforce: The age of the marketing campaign is over

Read more

Back in 1968 Holden began an appeal to customers who have an interest in competition. It did this with the introduction of the HK GTS 32...

Ben Tate

Marketing professor: For Holden, brand nostalgia ain’t what it used to be

Read more

Your blog post is really good and informative. Thanks for taking time to provide us this useful information with us.Auto wrapping uaeADF ...

Yes Machinery

Image intelligence:10 must-see infographics for marketers

Read more

A debt of gratitude is in order for sharing this marvelous information.I have taken in numerous things from your post

digitech Classes

Lumen CMO strives to make the brand synonymous with anti-ageism

Read more

Latest Podcast

More podcasts

Sign in