The much-anticipated mandatory data breach notification scheme will take effect in February 2018. Under this new legislation, all organisations and federal agencies that are subject to the Privacy Act will need to promptly notify the OAIC and any affected individuals of any unauthorised access to, or unauthorised disclosure of, personal information that is likely to result in serious harm i.e. "eligible data breach". Failure to do so may result in fines of up to $1.8 million.
Are you prepared? With just 6 months to go, you should be reviewing your data security processes and procedures to ensure they are adequately protecting the personal information you hold. You should also implement a data breach response plan, and educate relevant people in your organisation accordingly, to ensure you respond promptly to any data breach with minimal impact on your business operations.