Summary: Several high-profile cases of unauthorised access to personal information have taken place in recent years, but many more are thought to go undisclosed. This law would require an organisation to notify affected individuals and the Privacy Commissioner when personal information was disclosed to or obtained by unauthorised parties through, for instance, hacking attacks or the loss of storage devices containing customer records.
Submission to: Australian Government Attorney-General’s Department
Status: Submitted
Download: Data Breach Notifications [Word 2007 Document - 893.98 KB]
Download: Data Breach Notifications [Adobe Acrobat PDF - 147.32 KB]