7/11 Faceprint Technology breached customer’s privacy, finds OAIC
The Office of the Australian Information Commissioner (OAIC) has determined 7/11 interfered with the privacy of customers by collecting sensitive biometric data through their facial recognition and faceprint technology. 7/11 were ordered to destroy all
Strengthening Australia’s Cybersecurity Regulations
The Australian Government, through the Department of Home Affairs, is currently undergoing a review of cybersecurity in Australia. Following the critical infrastructure reforms and ongoing review of the Privacy Act 1988 (Cth), the government is
Protecting Customers’ Personal Information
The Privacy Act 1988 (Cth) (Privacy Act) contains 13 Australian Privacy Principles (APPs) that Government agencies, and most private sector organisations must follow when they handle personal information. Regardless of whether or not your organisation
Employee Background Checks
Engaging in employee background checks for potential candidates is a common practice amongst Australian businesses and organisations. This is even more important when businesses are working in a hybrid/work from home environment. It is important
The relationship between AI and human rights
The Australian Human Rights Commission ('AHRC') released its Human Rights and Technology Final Report 2021 in March 2021. The Report considers how new technologies and artificial intelligence ('AI') can impact an individual's right to equality,
Step by Step Guide to Managing Notifiable Data Breaches
In our previous insight, we discussed the Notifiable Data Breaches Scheme (NBD) which was established by the Office of the Australian Information Commissioner (OIAC) in 2018. Although complying with the scheme can be complicated, it
Tips for Good Privacy Compliance
Privacy compliance is often seen as a massive hurdle for a company. How do you adopt something that seems so amorphous? In essence, privacy compliance is part of a process, and that process can be
Calls for amendments to the Telecommunications Bill
In March 2020, the Australian Federal Government introduced the Telecommunications Legislation Amendment (International Production Orders) Bill 2020 (Telecommunications Bill). The Telecommunications Bill expands Australia’s current national security laws by amending the current Telecommunications (Interception and
COVID-19 Vaccination Rollout Concerns
As part of the Australian Government’s response to COVID-19, a nationwide vaccination program is being rolled out in stages to support access to, and delivery of, safe and effective COVID-19 vaccines and treatments for all
ACCC consultation on market dynamics and choice screens
The Australian Competition and Consumer Commission (ACCC) has launched a public consultation with the release of an Issues Paper on Market Dynamics and Consumer Choice Screens in Search Services and Web Browsers (Consultation). The Consultation
Setting your organisation up for privacy compliance
It’s Privacy Awareness Week! Privacy Awareness Week is an annual initiative of the Australian Office of the Information Commissioner that aims to helps organisations, agencies and the general public navigate the privacy landscape and better
Diversity Surveys: What Employers Need to Know
In 2019, Diversity Council Australia conducted a survey of 3,000 Australian workers which revealed that 75% of those surveyed support their employer taking action to create a diverse and inclusive workplace. Diversity surveys have become
The News Media Bargaining Code and Privacy
The Treasury Laws Amendment (News Media and Digital Platforms Mandatory Bargaining Code) Bill (2021) (Bill) was introduced in 2020 to address concerns about bargaining power imbalances between digital platforms and Australian news media businesses. The
The New Online Safety Act and Freedom of Expression
In December 2020, the Australian Government released a draft bill for a new Online Safety Act (Draft Bill) as part of its commitment to online safety for all Australians. While the Draft Bill proposes
Privacy Act Review – what changes can we expect?
Australia has commenced its review (Review) of the Privacy Act 1988 (Cth) (Privacy Act), with the Attorney General’s Department’s recent release of the Terms of Reference and Issues Paper. This article sets out what is
2020 – Year in Review
2020 – Year in Review 2020 was a rollercoaster of a year. Despite the disruption of COVID-19 much was achieved. Here’s a breakdown of some of the major legal developments of the year. Ad Tech
Encryption Law in Australia
In July 2020, the Independent National Security Legislation Monitor (INSLM) issued a report recommending changes to the Telecommunications and Other Legislation Amendment (Assistance and Access) Act 2018 (Cth) (Encryption Act). Encryption Act The Encryption Act was introduced in
Security Tips for Video Conferencing
When any technology sees its popularity increase quickly, the number of malicious actors seeking to take advantage of new and untrained users also grows. Video Conferencing is one such technology. It has become an essential
Cybersecurity Resilience during COVID-19
Organisations and individuals are increasingly harnessing the opportunities presented by technology in the current COVID-19 climate. The pandemic has placed a growing reliance on data, cloud systems and online communications as organisations combat the
Safeguarding Privacy Rights in the wake of COVID-19
As the COVID-19 pandemic has evolved, the Federal Australian government has been quick to respond with measures to keep the public informed and to reduce the spread, first with an app designed to keep people
Australia Digital Platforms Inquiry
Calls for sweeping changes to the regulatory landscape governing digital platforms were made with the release of the Australian Competition and Consumer Commission’s (ACCC) Digital Platform’s Inquiry (Inquiry) Report earlier this year. The Inquiry
Consumer Data Right
The Australian Consumer Data Right will empower consumers but will increase regulatory burden and compliance for businesses. What privacy and data systems will your business need to comply with the new regime? On 1
A New Wave of Privacy – The California Consumer Privacy Act
New data access rights for Californian data subjects have been created by the California Consumer Privacy Act (CCPA), which came into force on 1 January 2020. Like the General Data Protection Regulation (EU) 2016/679
What is the value of data privacy?
The prevalence and value of data, particularly personal data, is continuing to grow exponentially. Data has become an increasingly valuable resource for businesses. But businesses need to be aware of, and balance the increasing
Cookies
Cookies – the aptly named ‘bite sized’ text files which reside in a user’s device can be helpful tools for both businesses and web users. Whether it’s to remember what’s in a shopping basket
Privacy Compliance: Why a Privacy Policy is Not Enough
Every other day we hear about a privacy issue, whether that be a data breach, the misuse of personal information by companies, or new privacy legislation. Privacy compliance is on everyone’s mind – which
My Health Record
The new deadline for opting-out of My Health Record is fast approaching. If you don't already have a My Health Record, and do not want one created for you, you will need to opt-out
Medical Records Trust & Transparency
Download Article Data use and an individual’s rights have become very topical with the increasing number of data breaches that impact us as individuals, including reports on data issues in
Crowd-sourced equity funding – a new way to raise capital
The Corporations Amendment (Crowd-sourced Funding) Act 2017 which commenced operation on 29 September 2017, aims to bridge the ‘capital gap’ experienced by many small businesses and start-ups as they struggle to finance further development
The First Line of Defence Against Cyber Criminals
In this blog, we discuss the importance of organisational culture to cyber resilience and security. While technical safeguards are important, the rise of social engineering as a method of breaching an organisation’s security means
Techniques for Cyber Testing your Technology Infrastructure
It’s no secret that constantly evolving security threats pose dangers to your organisation, but you may not be aware of the high rate of occurrence of cyber attacks and the likelihood that your organisation’s
ASD’s Essential Eight to Mitigate Cyber Security Incidents
In February 2017, the Australian Signals Directorate (ASD) expanded its Top Four cyber threat mitigation measures to the “Essential Eight”. What are the measures, what has changed, what is new and what do they
Cybersecurity: The Regulatory Environment
The cost of a cyber incident can be enormous. Beyond the costs associated with the technical investigation for determining the cause of the cyber incident, organisations will also have to fork out money for
Board Principles for Cyber Resilience
Increased use of technology is a key source of competitive advantage, but it is also a key driver of cyber risk. An organisation that hesitates to protect its information assets will likely fall behind
Data Breach Notification: Third Time’s a Charm
Australia will have a mandatory data breach notification regime within the next 12 months after the legislation passed parliament in February 2017. This was the third attempt by the Government to implement a system
Tips for Improving Your Organisation’s Cyber Resilience
In 2012, Robert Mueller, FBI Director famously said that he was “convinced that there are only two types of companies: those that have been hacked and those that will be.”[1] The statement’s relevance in
The Cost of Cyber Complacency
Within the rapidly globalising and integrated global community, the evolution and rationalisation of technology has presented the real and present danger of cyber-attacks, creating a threat environment for all businesses. With malware becoming more sophisticated
Unfair Contract Terms Protection Extended to Small Businesses
The unfair contract terms protections under the Australian Consumer Law was extended to protect small businesses from 12 November 2016. In this blog, we will examine the far reaching implications of this change on
Know Your Obligations: Telemarketing and Spam
The Federal Court penalised travel agency Getaway Escapes over $300,000 and its director $25,000 for breaching their obligations under the Do Not Call Register Act 2006 (Cth) (‘Act’) and the Telemarketing and Research Calls
Electronic Voting: The Way of the Future?
The administration of our lives has become increasingly digitised. We bank on the Internet, complete our tax returns online, shop electronically, conduct business over e-mail. There is little that we don’t do online. So given
Lessons Learned From the DAO Hack: The Blockchain, Smart Contracts and Security
Blockchain technology is vulnerable to the same malicious hackers that target business and government - when things go wrong millions of dollars are at stake.
Blockchain in Action: Smart Contracts
Sainty Law examines smart contracts in our second blog in this series on blockchain. While smart contracts are a hot topic, are they really a viable alternative to traditional methods of contracting and transacting?
Blockchain Explained
An unavoidable consequence of our time is that an understanding of how technology works, and at the very least what it does and how to use it, is critical to running a dynamic business. In
The Future of Personal Privacy Protection in NSW – What does it look like?
In March 2016 the NSW Legislative Council’s Standing Committee on Law and Justice (Committee) released a report titled ‘Remedies for the Serious Invasion of Privacy in New South Wales’ (Report), recommending the adoption of a
Mitigating Conflict between the Australian Privacy Principles and Big Data Collection
In 2013 we did a series of blogs demystifying big data. We looked at what big data is, how big data is used and recommended some big data best practices. Since 2013 the big data
Cloudy with a Chance of Rain: Best Practice Tips for Cloud Computing
Cloud computing has many benefits for business and government – it is cost-effective, easily accessible and scalable and infinitely customisable. However, the growth of cloud computing has also created new security challenges. An understanding of what the cloud actually is and how it works is crucial to understanding the security risks which it poses and how these risks can be managed.
Cyber Security Blog #3 – Cyber Security: The Essentials for Business
The Australian Government released its Australian Cyber Security Strategy (“Strategy”) on 21 April 2016. In our last cyber security blog (2/3), we provided our analysis on the Strategy. It is clear that the Strategy places
Cyber Security Blog #2 – An ‘Open, Free and Secure’ Internet – The Australian Government’s Approach to Cyber Security
The Australian Government released its much anticipated Australian Cyber Security Strategy on 21 April 2016 (“Strategy”). The Strategy, which was commissioned in 2014, takes a top-down approach to cyber-security, with an emphasis on arming
The PirateBay Enables Free Streaming Through Torrents Time Plug-In
As of this year, The Pirate Bay, the notorious torrent-sharing site, offers free streaming via the plug-in Torrents Time (TT). This plug-in has transformed The Pirate Bay overnight into the largest video streaming website on the net, making it easier than ever before for users to access copyright-infringing content online. Will the Copyright Amendment (Online Infringement) Act 2015 apply to these new online innovations? And what does this mean for ISPs, copyright holders and web-surfers?