Feeds

Australia mulls data breach notification laws

Law enforcement agencies may be exempt

Internet Security Threat Report 2014

The Attorney-General’s department has released a discussion paper seeking public input on whether Australia should have mandatory data breach notification laws.

The discussion paper emerges while debate about the department’s proposed data retention regime – under which carriers and ISPs would be required to hold data about their customers’ communication for two years – rages on.

It comes in response to recommendations by the Australian Law Reform Commission that the Privacy Act be amended to require companies to notify the public when a breach takes place. Australia’s Privacy Commissioner, Tim Pilgrim, yesterday told the Australian Financial Review he was concerned at the rising number of un-notified breaches in Australia.

Not yet posted on the AG’s Website, the paper is available from Crikey, here (PDF).

The discussion paper canvasses whether a notification law is required; what the triggers should be for a notification (for example, what likely harm from a data breach is required to demand public notification); who should decide whether notification is needed (for example, whether the notification decision should be delegated to the Privacy Commissioner); the contents and time-frame of notifications; possible penalties; and which organizations should be covered.

It will probably come as no surprise to readers that the paper also asks whether law enforcement should get exemptions.

Submissions are open until 30 November, 2012, and should be sent to Privacy.Consultation@ag.gov.au. ®

Secure remote control for conventional and virtual desktops

More from The Register

next story
Bladerunner sequel might actually be good. Harrison Ford is in it
Go ahead, you're all clear, kid... Sorry, wrong film
Musicians sue UK.gov over 'zero pay' copyright fix
Everyone else in Europe compensates us - why can't you?
I'll be back (and forward): Hollywood's time travel tribulations
Quick, call the Time Cops to sort out this paradox!
Euro Parliament VOTES to BREAK UP GOOGLE. Er, OK then
It CANNA do it, captain.They DON'T have the POWER!
Megaupload overlord Kim Dotcom: The US HAS RADICALISED ME!
Now my lawyers have bailed 'cos I'm 'OFFICIALLY' BROKE
Forget Hillary, HP's ex CARLY FIORINA 'wants to be next US Prez'
Former CEO has political ambitions again, according to Washington DC sources
prev story

Whitepapers

Designing and building an open ITOA architecture
Learn about a new IT data taxonomy defined by the four data sources of IT visibility: wire, machine, agent, and synthetic data sets.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
5 critical considerations for enterprise cloud backup
Key considerations when evaluating cloud backup solutions to ensure adequate protection security and availability of enterprise data.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.
Managing SSL certificates with ease
The lack of operational efficiencies and compliance pitfalls associated with poor SSL certificate management, and how the right SSL certificate management tool can help.