On 17 October 2012, the Attorney-General's Department launched a discussion paper entitled, 'Australian Privacy Breach Notification'. As anticipated in response to the ALRC Report 108: For Your Information: Australian Privacy Law and Practice (2008), the Government calls for public comment on whether a data breach notification law should be introduced in Australia, and if such a law were introduced, how it should be framed.
Matters for consideration include:
-
Should Australia introduce mandatory data breach notification laws?
-
What kind of breaches should trigger notification requirements?
-
Who should decide whether notification is necessary?
-
What should be reported and how quickly?
-
How should a notification requirement be enforced?
-
Who should be subject to a mandatory data breach notification law?
For more detail on the matters for consideration, click here.
Submissions are sought by 23 November 2012. Please contact us if you have any questions regarding the discussion paper or whether we can assist you with the preparation of a submission.
