Chinese Data Protection Laws
China has implemented data protection legislation that impacts how companies operate in, or transact with, businesses or individuals in China. The Personal Information Protection Law of the People's Republic of China (PIPL) applies to organisations
Security Legislation Amendment (Critical Infrastructure Protection) Bill 2022
The Australian Government has introduced another set of reforms to strengthen Australia’s critical infrastructure. The Security Legislation Amendment (Critical Infrastructure Protection) Bill 2022 (SLACIP Bill) complements the reforms made in 2021 to the Security of
Online Safety Act
The Online Safety Act 2021(Cth) commenced on 23 January 2022, replacing a patchwork of online safety legislation to create a more consistent and clearer regulatory framework. The Act gives new powers to the eSafety Commissioner,
Facebook v OAIC
In a recent landmark privacy case, the Full Federal Court dismissed Facebook’s claim that it is not subject to Australian privacy laws because it does not “carry on a business in Australia”. Facebook Inc v
The Proposed Online Privacy Code
The Australian Government has introduced the Privacy Legislation Amendment (Enhancing Online Privacy and Other Measures) Bill 2021 (OP Bill) to amend the Privacy Act 1988 (Cth) (Privacy Act). The OP Bill creates a framework to
Employee Vaccine Mandates
Can employers require their staff to receive the COVID-19 Vaccine? The Federal Government’s policy is that vaccines should be both free and voluntary. However, businesses also have an obligation to keep their workplaces safe and
WFH: What employers need to know
Covid-19 has seen us transition into a new era of work. However, working from home does present some unique challenges to employers. Employers need to meet the challenge of some specific risks when staff work
Privacy Reforms: Privacy Act in Review
In October 2021, the Attorney-General’s Department released the Privacy Act 1988 Discussion Paper (Discussion Paper) to accompany the exposure draft of the Privacy Legislation Amendment (Enhancing Online Privacy and Other Measures) Bill 2021 (Online Privacy Bill). The proposed reforms form
Ad Tech
The ACCC has found that competition for Ad Tech services in Australia is ineffective and has asked the Federal Government for specific powers to regulate the industry. Ad Tech The Final Report for the Digital Advertising
The Anti-Trolling Bill
The Australian Government is introducing legislation to unmask anonymous online bullies, trolls and defamers. The Australian Government has released the Social Media (Anti-Trolling) Bill 2021 to address developments in the 2021 High Court decision in Fairfax Media Publications
Critical Infrastructure Act criticised by large Tech and Cybersecurity Organisations
In support of its published commitment to protect the essential services all Australians rely on, the Australian Government is progressing reforms which include new legislation to help position and protect Australia’s critical infrastructure from
7/11 Faceprint Technology breached customer’s privacy
The Office of the Australian Information Commissioner (OAIC) has determined 7/11 interfered with the privacy of customers by collecting sensitive biometric data through their facial recognition and faceprint technology. 7/11 were ordered to destroy all
Strengthening Australia’s Cybersecurity Regulations
The Department of Home Affairs is reviewing cybersecurity in Australia. Following the critical infrastructure reforms and ongoing review of the Privacy Act 1988 (Cth), the Government is now considering stronger regulations to promote cybersecurity. It
Protecting Customers’ Personal Information
The Privacy Act 1988 (Cth) (Privacy Act) contains 13 Australian Privacy Principles (APPs) that Government agencies, and most private sector organisations must follow when they handle personal information. Regardless of whether or not your organisation
Employee Background Checks
Engaging in employee background checks for potential candidates is a common practice amongst Australian businesses and organisations. This is even more important when businesses are working in a hybrid/work from home environment. It is important
The relationship between AI and human rights
The Australian Human Rights Commission ('AHRC') released its Human Rights and Technology Final Report 2021 in March 2021. The Report considers how new technologies and artificial intelligence ('AI') can impact an individual's right to equality,
Step by Step Guide to Managing Notifiable Data Breaches
In our previous insight, we discussed the Notifiable Data Breaches Scheme (NBD) which was established by the Office of the Australian Information Commissioner (OIAC) in 2018. Although complying with the scheme can be complicated, it
Tips for Good Privacy Compliance
Privacy compliance is often seen as a massive hurdle for a company. How do you adopt something that seems so amorphous? In essence, privacy compliance is part of a process, and that process can be
Calls for amendments to the Telecommunications Bill
In March 2020, the Australian Federal Government introduced the Telecommunications Legislation Amendment (International Production Orders) Bill 2020 (Telecommunications Bill). The Telecommunications Bill expands Australia’s current national security laws by amending the current Telecommunications (Interception and
COVID-19 Vaccination Rollout Concerns
As part of the Australian Government’s response to COVID-19, a nationwide vaccination program is being rolled out in stages to support access to, and delivery of, safe and effective COVID-19 vaccines and treatments for all
ACCC consultation on market dynamics and choice screens
The Australian Competition and Consumer Commission (ACCC) has launched a public consultation with the release of an Issues Paper on Market Dynamics and Consumer Choice Screens in Search Services and Web Browsers (Consultation). The Consultation
Setting your organisation up for privacy compliance
It’s Privacy Awareness Week! Privacy Awareness Week is an annual initiative of the Australian Office of the Information Commissioner that aims to helps organisations, agencies and the general public navigate the privacy landscape and better
Diversity Surveys: What Employers Need to Know
In 2019, Diversity Council Australia conducted a survey of 3,000 Australian workers which revealed that 75% of those surveyed support their employer taking action to create a diverse and inclusive workplace. Diversity surveys have become
The News Media Bargaining Code and Privacy
The Treasury Laws Amendment (News Media and Digital Platforms Mandatory Bargaining Code) Bill (2021) (Bill) was introduced in 2020 to address concerns about bargaining power imbalances between digital platforms and Australian news media businesses. The
The New Online Safety Act and Freedom of Expression
In December 2020, the Australian Government released a draft bill for a new Online Safety Act (Draft Bill) as part of its commitment to online safety for all Australians. While the Draft Bill proposes
Privacy Act Review – what changes can we expect?
Australia has commenced its review (Review) of the Privacy Act 1988 (Cth) (Privacy Act), with the Attorney General’s Department’s recent release of the Terms of Reference and Issues Paper. This article sets out what is
2020 – Year in Review
2020 – Year in Review 2020 was a rollercoaster of a year. Despite the disruption of COVID-19 much was achieved. Here’s a breakdown of some of the major legal developments of the year. Ad Tech
Encryption Law in Australia
In July 2020, the Independent National Security Legislation Monitor (INSLM) issued a report recommending changes to the Telecommunications and Other Legislation Amendment (Assistance and Access) Act 2018 (Cth) (Encryption Act). Encryption Act The Encryption Act was introduced in
Security Tips for Video Conferencing
When any technology sees its popularity increase quickly, the number of malicious actors seeking to take advantage of new and untrained users also grows. Video Conferencing is one such technology. It has become an essential
Cybersecurity Resilience during COVID-19
Organisations and individuals are increasingly harnessing the opportunities presented by technology in the current COVID-19 climate. The pandemic has placed a growing reliance on data, cloud systems and online communications as organisations combat the
Safeguarding Privacy Rights in the wake of COVID-19
As the COVID-19 pandemic has evolved, the Federal Australian government has been quick to respond with measures to keep the public informed and to reduce the spread, first with an app designed to keep people
Australia Digital Platforms Inquiry
Calls for sweeping changes to the regulatory landscape governing digital platforms were made with the release of the Australian Competition and Consumer Commission’s (ACCC) Digital Platform’s Inquiry (Inquiry) Report earlier this year. The Inquiry
Consumer Data Right
The Australian Consumer Data Right will empower consumers but will increase regulatory burden and compliance for businesses. What privacy and data systems will your business need to comply with the new regime? On 1
A New Wave of Privacy – The California Consumer Privacy Act
New data access rights for Californian data subjects have been created by the California Consumer Privacy Act (CCPA), which came into force on 1 January 2020. Like the General Data Protection Regulation (EU) 2016/679
What is the value of data privacy?
The prevalence and value of data, particularly personal data, is continuing to grow exponentially. Data has become an increasingly valuable resource for businesses. But businesses need to be aware of, and balance the increasing
Cookies
Cookies – the aptly named ‘bite sized’ text files which reside in a user’s device can be helpful tools for both businesses and web users. Whether it’s to remember what’s in a shopping basket
Privacy Compliance: Why a Privacy Policy is Not Enough
Every other day we hear about a privacy issue, whether that be a data breach, the misuse of personal information by companies, or new privacy legislation. Privacy compliance is on everyone’s mind – which
My Health Record
The new deadline for opting-out of My Health Record is fast approaching. If you don't already have a My Health Record, and do not want one created for you, you will need to opt-out
Medical Records Trust & Transparency
Download Article Data use and an individual’s rights have become very topical with the increasing number of data breaches that impact us as individuals, including reports on data issues in
Crowd-sourced equity funding – a new way to raise capital
The Corporations Amendment (Crowd-sourced Funding) Act 2017 which commenced operation on 29 September 2017, aims to bridge the ‘capital gap’ experienced by many small businesses and start-ups as they struggle to finance further development
The First Line of Defence Against Cyber Criminals
In this blog, we discuss the importance of organisational culture to cyber resilience and security. While technical safeguards are important, the rise of social engineering as a method of breaching an organisation’s security means
Techniques for Cyber Testing your Technology Infrastructure
It’s no secret that constantly evolving security threats pose dangers to your organisation, but you may not be aware of the high rate of occurrence of cyber attacks and the likelihood that your organisation’s
ASD’s Essential Eight to Mitigate Cyber Security Incidents
In February 2017, the Australian Signals Directorate (ASD) expanded its Top Four cyber threat mitigation measures to the “Essential Eight”. What are the measures, what has changed, what is new and what do they
Cybersecurity: The Regulatory Environment
The cost of a cyber incident can be enormous. Beyond the costs associated with the technical investigation for determining the cause of the cyber incident, organisations will also have to fork out money for
Board Principles for Cyber Resilience
Increased use of technology is a key source of competitive advantage, but it is also a key driver of cyber risk. An organisation that hesitates to protect its information assets will likely fall behind
Data Breach Notification: Third Time’s a Charm
Australia will have a mandatory data breach notification regime within the next 12 months after the legislation passed parliament in February 2017. This was the third attempt by the Government to implement a system
Tips for Improving Your Organisation’s Cyber Resilience
In 2012, Robert Mueller, FBI Director famously said that he was “convinced that there are only two types of companies: those that have been hacked and those that will be.”[1] The statement’s relevance in
The Cost of Cyber Complacency
Within the rapidly globalising and integrated global community, the evolution and rationalisation of technology has presented the real and present danger of cyber-attacks, creating a threat environment for all businesses. With malware becoming more sophisticated
Unfair Contract Terms Protection Extended to Small Businesses
The unfair contract terms protections under the Australian Consumer Law was extended to protect small businesses from 12 November 2016. In this blog, we will examine the far reaching implications of this change on