Roxon raises mandatory data breach laws

By John Hilvert on Oct 17, 2012 9:40 AM
Filed under Security
 

Law enforcement activities could be exempt.

Attorney-General Nicola Roxon has issued a discussion paper today on whether Australia should introduce a mandatory data breach regime.

Such laws would compel organisations to inform members of the public any time personal information about that customer falls into the wrong hands.

For Australian organisations today, the disclosure of such breaches is voluntary and subject to guidelines by the Federal Privacy Commissioner.

Roxon's discussion paper is the first step the Government has made towards a mandatory regime since the Australian Law Reform Commission recommended such a policy in 2008.

Roxon's discussion paper looks at how legislation might strengthen the protection of personal information as well as minimise damage when breaches occur.

The paper notes that there has been a 27 percent increase in data breaches reported to the Privacy Commissioner and mounting public concern over the impact of these breaches.

It notes that mandatory data breach notification schemes are in place or under consideration in the United States, the European Union, the United Kingdom and Ireland. 

The case for more regulation is found on giving the public a legal basis for “resecuring” their information following a data breach.

Such laws could act to improve data security, especially among companies where adverse publicity could have consequences for their share prices.

It would also provide better information to government and the public on the scope and frequency of data breaches, the paper argues.

Finally it suggests mandatory data breach notification may bolster public confidence that the Government is taking individual privacy rights seriously.  

The main issues

The paper canvasses questions such as

  • Should there be a mandatory data breach provision;
  • What constitutes a data breach and what should trigger a notification;
  • Who should be notified e.g. the Privacy Commissioner and/or affected consumers;
  • Who should decide on whether to notify;
  • What should be reported and by when;
  • What penalties might be appropriate for failing to notify;
  • Which organisations should be subject to such laws.

With half an eye on the issues involved in the Government’s current data retention proposals, the paper also raises the question of whether there should be an exemption for law enforcement activities.

In some cases, notification of a data breach by an agency could compromise its law enforcement activities, the paper states.

Submissions on the issues raised in this paper are sought by 23 November 2012. 

How do you feel about mandatory data breach notification laws? Have your say below...

Copyright © iTnews.com.au . All rights reserved.


Roxon raises mandatory data breach laws
Will Nicola Roxon finally introduce data breach notification laws?
Tags
pressgallery, mandatory data breach
Related Articles
Breaking Stories
 
Readers of this article also read...
 
 
 
Top Stories
Photos: AusCERT 2013 day two
Photos: AusCERT 2013 day two
The second day of the Queensland security conference.
 
The illusion of cognitive computing
The illusion of cognitive computing
Opinion: IBM's Watson is a marketing success.
 
CenITex to move from IT provider to broker
CenITex to move from IT provider to broker
Documents reveal new strategy.
 
 
Will Nicola Roxon finally introduce data breach notification laws?
Sign up to receive iTnews email bulletins
   FOLLOW US...

Latest VideosSee all videos »

Bankwest builds continuous delivery capability
Bankwest builds continuous delivery capability
To automatically deploy test/dev sandboxes by mid-year.
Veterans' Affairs sets sights on modernisation
Veterans' Affairs sets sights on modernisation
Data safe with Human Services, CIO says.
Citi Australia drops platform customisations
Citi Australia drops platform customisations
Technology chief shifts focus from building to leveraging systems.
VicRoads restructures IT team
VicRoads restructures IT team
Department moves to align with industry benchmarks.
Zurich Australia extends IT team offshore
Zurich Australia extends IT team offshore
Malaysian staff served from Australian data centres.
Leigh Berrell - Utilities CIO of the Year
Leigh Berrell - Utilities CIO of the Year
Yarra Valley Water CIO Leigh Berrell accepts his Benchmark Award for Utilities CIO of the Year.
Wayne McMahon - Retail CIO of the Year
Wayne McMahon - Retail CIO of the Year
Domino's Pizza CIO Wayne McMahon accepts his Benchmark Award for Retail CIO of the Year.
Inside Perpetual's ongoing IT transformation
Inside Perpetual's ongoing IT transformation
CIO Jenny Levy discusses how outsourcing will help the firm "simplify, refocus and grow".
Managing Complexity - Defence's Daniel McCabe
Managing Complexity - Defence's Daniel McCabe
Daniel McCabe, Assistant Secretary of Australia's Department of Defence, provides the audience at the iTnews Data Centre Strategy Summit with a deep dive into the organisation's data centre consolidation program.
How Facebook designed the data centre from scratch - Marco Magarelli
How Facebook designed the data centre from scratch - Marco Magarelli
The full keynote by Facebook data centre architect Marco Magarelli at the Australian Data Centre Strategy Summit. Magarelli details the design considerations behind the social network's Prineville, Oregon; North Carolina and Luleå, Sweden data centres.
Modernising Legacy Data Centres - Telstra's Jon Curry
Modernising Legacy Data Centres - Telstra's Jon Curry
Telstra general manager of managed data centres Jon Curry guides the audience at the iTnews Australian Data Centre Summit through the build of the telco's Clayton, Victoria data centre.
NSW Government launches NABERS data centre rating tools
NSW Government launches NABERS data centre rating tools
Matthew Clark from the NSW Department of Environment guides facilties managers through the details of the new NABERS data centre energy rating tool at the Australian Data Centre Strategy Summit.
NABERS launch panel: Australian Data Centre Strategy Summit
NABERS launch panel: Australian Data Centre Strategy Summit
Matthew Clark (NSW Dept of Environment), Greg Boorer (Canberra Data Centres), Glenn Allan (National Australia Bank), Mike Andrea (Strategic Directions) and Bob Sharon (Green Global Consulting) discuss the impact of the NABERS data centre rating.
Judges notes: Fortescue Metals [The Benchmark Awards]
Judges notes: Fortescue Metals [The Benchmark Awards]
iTnews' panel of judges discuss Fortescue Metals 'New World of Work" project, one of three shortlisted finalists for the Industrials category of the CIO Benchmark Awards.
Judges notes: Retail [The Benchmark Awards]
Judges notes: Retail [The Benchmark Awards]
iTnews' panel of judges discuss the shortlisted finalists for the Retail category of the CIO Benchmark Awards.
Judges notes: Pacific Aluminium [The Benchmark Awards]
Judges notes: Pacific Aluminium [The Benchmark Awards]
iTnews' panel of judges discuss Pacific Aluminium's lightning fast service desk refresh, one of three shortlisted finalists for the Industrials category of the CIO Benchmark Awards.
Judges notes: Domino's Pizza [The Benchmark Awards]
Judges notes: Domino's Pizza [The Benchmark Awards]
iTnews' panel of judges discuss Domino's Pizza's shift to hosted services, one of three shortlisted finalists for the Retail category of the CIO Benchmark Awards.
Judges notes: McDonald's Australia [The Benchmark Awards]
Judges notes: McDonald's Australia [The Benchmark Awards]
iTnews' panel of judges discuss McDonald's Australia's new self-service portal for employees, one of three shortlisted finalists for the Retail category of the CIO Benchmark Awards.
Judges notes: ING Direct [The Benchmark Awards]
Judges notes: ING Direct [The Benchmark Awards]
iTnews' panel of judges discuss ING Direct's 'Bank in a Box', one of three shortlisted finalists for the banking and finance category of the CIO Benchmark Awards.
Judges notes: Yarra Valley Water [The Benchmark Awards]
Judges notes: Yarra Valley Water [The Benchmark Awards]
iTnews' panel of judges discuss Yarra Valley Water's insourcing project, one of three shortlisted finalists for the Utilities category of the CIO Benchmark Awards.
Latest Comments
Powered by Disqus
Polls
Do you prefer the Coalition's NBN policy?
   |   View results
Yes
  19%
 
No
  81%
TOTAL VOTES: 1714

Vote
view previous polls »