Cyber incidents are increasing in frequency across all sectors including charities and not-for-profits. As a result, the Australian Signals Directorate’s Australian Cyber Security Centre is encouraging charities and not-for-profit organisations to protect their information and systems. The steps that these organisations can take are the same steps that all types of organisations can take – …
Read more
The Office of the Australian Information Commissioner’s (OAIC) recently released its latest notifiable data breaches report for July to December 2023, highlighting the continued risks of data breaches faced by organisations and third-parties. This is underscored by the notable increase in the volume of reported data breaches, increasing 19% since the previous reporting period.
In recent weeks the Australian Government introduced legislation (the Digital ID Bill) to establish a regulatory regime for the accreditation of digital identification providers. Overall, the Digital ID Bill aims to give Australians secure and effective ways in which to verify their identify for use in online transactions with government and business.
On 22 November 2023, the Australian Government released its 2023-2030 Australian Cyber Security Strategy (the Strategy). The Strategy aims to realise the Australian Government’s vision of becoming a world leader in cyber security by 2030. The Strategy seeks to protect Australians by improving cyber security, managing cyber risks, and better supporting Australians and organisations to manage …
Read more
On 16 February 2023, the Attorney-General’s Department released its highly anticipated Privacy Act Review Report 2022 (Report). The Report considers whether the Privacy Act 1988 (Privacy Act) remains fit for purpose in this digital economy where the personal information of individuals is collected and used for a myriad of purposes. Change to ‘personal information’ A major expected change …
Read more
It seems like every other day we see another media release about an organisation affected by a data breach, compromising the personal information of Australians. The Office of the Australian Information Commissioner’s (OAIC) Notifiable Data Breaches Report: July to December 2022 shows that during this period, data breaches resulting from malicious or criminal attacks accounted …
Read more
Griffin Legal endorses the ‘privacy by design’ approach, whereby agencies proactively embed good privacy practices into the design of new technology, practices and infrastructure. It remains important that evolving and adapting agencies keep privacy at the forefront of their minds. A privacy impact assessment (PIA) is a good way to build up privacy. What is …
Read more
Whether it’s the mobile glued to our pockets or the smart lighting installed in our homes, our digital landscape has the potential to erode our personal privacy and security. Here are five basic steps you can take to protect your personal information online: 1. Enable MFA Multi-factor authentication (MFA) is a security measure that adds …
Read more
As agencies and businesses continue to grow and evolve over time, so does the way they do things. An entity might someday outgrow its ICT infrastructure, require new accounting software or start working on an exciting new project. It remains important for growing businesses and adapting organisations to keep privacy at the forefront of their …
Read more
The Office of the Australian Information Commissioner (OAIC) regularly publishes reports on data breaches that have been reported to the commission under the Notifiable Data Breaches scheme. This scheme was established in 2018 to improve protection of identifiable consumer information and improve the security standards for protecting personal information. Under the scheme, any organisation covered …
Read more
Notifications