Mandatory data breach notification back on government agenda

Privacy Amendment (Privacy Alerts) Bill received first reading in Senate this week after lapsing in 2013

The Privacy Amendment (Privacy Alerts) Bill is back on the government agenda after it had a first reading in the Senate this week.

The Bill lapsed in 2013 after a second reading in parliament was delayed during June and the Coalition government was elected into office.

If passed by the Coalition, the bill will require government agencies and businesses to notify customers of serious data breaches in relation to personal, credit reporting, credit eligibility or tax file number information.

The 2014 version of the Bill includes the Australian Privacy Principles (APPs) which were passed into law on 12 March this year.

If the Bill is passed, Australian Privacy Commissioner Timothy Pilgrim would have the power to investigate data breaches. This means if he finds there has been a serious data breach in relation to personal information, credit reporting information, credit eligibility or tax file number, the Commissioner could ask the company or government agency to prepare a statement explaining what happened.

The statement would need to include information such as a description of the breach and recommendations about steps affected customers or clients should take.

Australian Information Security Association (AISA) Queensland branch chair Lani Refiti told Computerworld Australia that organisations need to be “held more accountable” for the data they hold, particularly when it’s not their data.

“We would have much better visibility into the current state of information security in Australia if we had mandatory breach notification,” he said.

“It's not a panacea, compliance and regulatory requirements never are but they would be a step in the right direction. Also, it [the bill] needs careful public consultation as was done with the Privacy Bill amendments.”

In June 2013, a Senate Standing Committee on Legal and Constitutional Affairs recommended the bill should be passed, stating that mandatory data breach notifications would benefit both Australian consumers and industry stakeholders.

In October 2013, Australian Privacy Commissioner Timothy Pilgrim said that while it was a decision for the Coalition government as to whether they would reintroduce the new legislation, he was supportive of it becoming law.

“I will be putting to government that I think it is an important piece of legislation,” he said. “It’s something that needs to be given strong consideration for reintroduction.”

Timothy Pilgrim has been contacted for comment by Computerworld Australia.

Follow Hamish Barwick on Twitter: @HamishBarwick

Follow Computerworld Australia on Twitter: @ComputerworldAU, or take part in the Computerworld conversation on LinkedIn: Computerworld Australia

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Show Comments

Latest Videos

More Videos

Extremely informative. One should definitely go through the blog in order to know different aspects of the Retail Business and retail Tec...

Sheetal Kamble

SAP retail chief: Why more retailers need to harness data differently

Read more

It's actually a nice and helpful piece of info. I am satisfied that you shared this helpful information with us. Please stay us informed ...

FIO Homes

How a brand facelift and content strategy turned real estate software, Rockend, around

Read more

I find this very strange. The Coles store i shop in still has Flouro lights? T though this would have been the 1st thing they would have ...

Brad

Coles launches new sustainability initiative

Read more

Well, the conversion can be increased by just using marketing, but in general if you are considering an example with Magento, then it is ...

Bob

How Remedy is using digital marketing and commerce to drive conversion

Read more

yo nice article

Bob

6 Ways to ramp up Social Media to Your Web Design

Read more

Blog Posts

9 lessons from 7 months of relentless failure

The most innovative organisations embrace failure. Why? Because it is often through failing the most creative out-of-box thinking happens. And with it comes vital learning opportunities that bring new knowledge and experience into teams.

Jacki James

Digital product lead, Starlight Children's Foundation

Why conflict can be good for your brand

Conflict is essentially a clash. When between two people, it’s just about always a clash of views or opinions. And when it comes to this type of conflict, more than the misaligned views themselves, what we typically hate the most is our physiological response.

Kathy Benson

Chief client officer, Ipsos

Brand storytelling lessons from Singapore’s iconic Fullerton hotel

In early 2020, I had the pleasure of staying at the newly opened Fullerton Hotel in Sydney. It was on this trip I first became aware of the Fullerton’s commitment to brand storytelling.

Gabrielle Dolan

Business storytelling leader

Sign in