Update from the Australia/New Zealand privacy conference and the changes to Australian privacy and cybersecurity laws
By Cameron Abbott, Rob Pulham and Stephanie Mayhew
We’ve just returned from the annual iapp Australia/New Zealand privacy conference held in Sydney this week, and it was a whirlwind. Even if you’re not one of around half of Australians affected by two of the biggest data breaches in our recent history, you’ll be aware a lot is changing – and a lot more is poised to change – in this space.
We’ll be blogging over the coming weeks about some of the key themes and changes your organisation will need to prepare for, including:
– new regulatory enforcement tools
– higher expectations of the way personal information is collected and secured, and when it needs to be destroyed
– potential removal of key exemptions such as the employee records exemption that your business may currently rely on,
– and of course the major penalty increases that seek to deter privacy breaches being viewed as ‘the cost of doing business’,
as Australia tightens the protections around the collection and use of Australians’ personal information.