NSW bans workplace cyber-snooping

Criminal offence

  • alert
  • submit to reddit

SANS - Survey on application security programs

Unauthorised snooping on workers by their employers is to be banned in Australia's New South Wales.

Regulations in the Exposure Bill, due out next month, will make it a criminal offence for an employer to carry out covert surveillance on its staff unless a company can show a "reasonable suspicion of wrongdoing by an employee", AAP reports.

The rules will prohibit the use of technologies including video cameras, email monitoring software and tracking devices in illicit spying. NSW employers will be obliged to be more up-front about monitoring, for example by writing rules into employment contracts.

"The law to date has not provided any guidance when legitimate employer concern crosses the line into unauthorised cyber snooping," Attorney-General Bob Debus told NSW's parliament.

"While some employers argue that this is necessary to protect their legitimate interests, employees expect that their private correspondence, like their private telephone calls or private conversations, should never be the subject of secret monitoring."

Trade unions, which have campaigned on the issue for four years, are delighted.

"This is truly a historic development and a recognition that workers using computers at work have privacy rights," NSW Labor Council secretary John Robertson told AAP. Robertson added the rules would help endure privacy when workers contact their trade union for advice or during disputes.

Employers are likely to be far from pleased. A recent study found that four in five Australian bosses use technology to monitor worker's emails, phone calls and Internet usage.

The UK Information Commissioner announced a code of practice on surveillance in the workplace last year. This requires companies to inform employees if they are monitoring phone calls, emails and Internet use. The Commissioner, Richard Thomas, said the guidelines tried to balance the needs of employers with the rights of employees.

But critics say the Employment Practices Data Protection Code, more than two years in development, is still too vague and does little to safeguard privacy in the workplace. ®

Related stories

Privacy in the workplace is a 'myth'
Anti-email snooping proposals 'stupid'
IT workers expect Big Brother-style snooping at work

High performance access to file storage

More from The Register

next story
Obama allows NSA to exploit 0-days: report
If the spooks say they need it, they get it
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
Canadian teen accused of raiding tax computers using OpenSSL bug
One year on: diplomatic fail as Chinese APT gangs get back to work
Mandiant says past 12 months shows Beijing won't call off its hackers
Call of Duty 'fragged using OpenSSL's Heartbleed exploit'
So it begins ... or maybe not, says one analyst
prev story


Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Five 3D headsets to be won!
We were so impressed by the Durovis Dive headset we’ve asked the company to give some away to Reg readers.
SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.