141-150 of 167 results
OAIC's landmark case against Facebook to have major implications on Privacy Act
As Privacy Awareness Week this year called for individuals to #rebootyourprivacy and debate continues over the privacy protections for the COVIDSafe application, another step has been taken in the Australian Information Commissioner's (Commissioner) landmark case against Facebook, Inc and Facebook Ireland Ltd (together, Facebook) which will have major implications for the Privacy Act 1988 (Cth) (Privacy Act) and digital businesses operating from offshore entities. ...
Using tech and data in a crisis – contact tracing
Data analysis, and the technology that facilitates it, is currently playing a critical role in the global and national efforts to combat the COVID-19 pandemic. Alongside the front-line health response, it has become a core part of the daily calculations made by governments and health organisations. ...
Australian Human Rights Commission proposes mandatory human rights approach for artificial intelligence
The Australian Human Rights Commission (AHRC) has published a discussion paper on proposals to legislate for a human rights approach to artificial intelligence (AI) systems. If adopted by the Australi ...
OAIC releases guidance on meaning of 'personal information'
Uncertainty as to what information constitutes personal information under the Privacy Act will be clarified following the release of guidance from the Office of the Australian Information Commissioner The guide provides insight into how a complaint may be determined and offers key questions for ...
Unexpected risks of the IoT revolution: Cyber security in medical devices
In late August 2017 the US Food and Drug Administration recalled 465000 Abbott Laboratories pacemakers due to cyber security vulnerabilities Although this was the first time that the FDA had recalled a medical device because of cyber concerns they have been alive to the significant risk that a cyber ...
Double trouble: How to handle a data breach involving more than one organisation
Where multiple entities jointly hold personal information compromised in a data breach only one of those entities will need to comply with the assessment and notification requirements under the Notifiable Data Breaches Scheme NDB Scheme That is compliance by one entity will be taken to constitute ...
Five things you didn't know about the NDB Scheme
Five things you didnt know about the NDB Scheme ...
Your guide to notifying an eligible data breach
Your guide to notifying an eligible data breach ...
A global snapshot of data breach class actions
While we are yet to see a successful data breach class action in Australia, data breach class actions have become all too real for many major companies overseas ...
New APRA prudential standard raises bar for information security obligations and incident notification requirements
As companies and regulators across the world grapple with ever-increasing cyber security threats, Australia's financial services regulator, APRA, has released the final form of a new prudential standard, which imposes heigtened security obligations for APRA-regulated entities ...