In November 2018, the Australian National University (ANU) suffered a massive data breach where up to 19 years of sensitive and personal data were obtained by an unknown hacker. The ANU has said that the hack not only affected students and professionals in Canberra but that it had the potential to affect a number of …
Read more
A recent decision from the Australian Information Commissioner and Privacy Commissioner (Privacy Commissioner) provided a timely reminder to organisations about obligations when collecting personal information from someone other than the individual in question. ‘RC’ and TICA Default Tenancy Control Pty Ltd (Privacy) [2019] TICA Default Tenancy Control Pty Ltd (Tenancy Control) maintains various databases to …
Read more
The European General Data Protection Regulation (GDPR) came into force on 25 May 2018. We have now seen 12 months since the commencement of the GDRP. Though a revolutionary regional instrument, it imposes obligations on businesses across the globe. In its one year of application, the GDPR has drastically changed the data protection and privacy …
Read more
Despite being 30 years old, organisations can still be confused about their obligations under the Privacy Act 1988 (Cth) (Privacy Act). Whether the Privacy Act even applies can be a minefield for sporting organisations such as sporting clubs, gyms, and governing bodies. Unfortunately, ignorance of the law excuses no one, and fines for a breach of the …
Read more
Griffin Legal is a proud supporter of Safe Internet Day. From cyberbullying to social networking, each year Safer Internet Day aims to raise awareness of emerging online issues and chooses a topic reflecting current concerns. This year the focus is raising awareness to help ensure that our children and young people can explore the internet …
Read more
The Office of the Australian Information Commissioner (OAIC) has been producing quarterly statistics of data breach reports since the Mandatory Data Breach Reporting regime came into force in the Privacy Act 1988 (Cth) (Privacy Act) on 22 February 2018. The latest report published on 30 October 2018 shows the continuation of a worrying trend for …
Read more
APP CODE FOR COMMONWEALTH AGENCIES On 1 July 2018, the Privacy (Australian Government Agencies – Governance) APP Code 2017 (the Code) commenced. The Code is designed to enhance the privacy accountability and capability of agencies and is in line with a shift towards a more proactive and vigilant approach to privacy. The Code is specific …
Read more
It is becoming increasingly common for employers to monitor their employees whilst in the workplace, and when using employer devices. Although Australia does not currently have uniform laws governing the surveillance of employees, in the Australian Capital Territory and New South Wales, there are specific regulations which dictate what an employer must do before conducting …
Read more
We spent months speaking about it and now the report is in. On Wednesday, 11 April 2018, the Office of the Australian Information Commissioner (OAIC) released their first quarterly report on the changes to the Privacy Law which commenced on 22 February 2018 relating to notifiable data breaches. The figures speak volumes. Within 6 weeks …
Read more
TICK, TOCK…. On Thursday, 22 February 2018 the law will change, so that businesses and organisations bound by the Privacy Act 1988 (Cth) will be obliged to report to the Privacy Commissioner, as well as affected individuals, if personal information they hold is the subject of unauthorised access, unauthorised disclosure or loss. Personal information includes …
Read more