Australian data breach alerts bill to hit parliament

By

Will the country finally get a notification scheme?

The federal government intends to introduce new legislation that would force businesses to publicly admit to a data breach before the end of the year.

Australian data breach alerts bill to hit parliament

The Privacy Amendment (Notifiable Data Breaches) Bill is among a list of new legislation proposed for introduction in the spring session of parliament, which runs from August 30 to December 1.

The government published an exposure draft of the legislation last December. It would force an organisation to notify customers, the Privacy Commissioner and potentially the media if it believes a serious data breach has occured.

It gave industry until March this year to have input on the bill.

Despite Australia's businesses hitting back at the proposed new rules, the government pledged to push ahead with the bill's introduction in the 2016 winter sittings.

However, it missed its own deadline and failed to introduce the legislation into parliament before the July federal election.

It meant that for the second time in three years, Australia's businesses watched a data breach notifications bill be introduced into parliament but fail to be passed into law.

The former Labor government's data breach notifications legislation similarly ran out of time to be heard in the Senate in June 2013 before that year's federal election.

The Coalition had originally promised to have a data breach alerts scheme in operation before the end of 2015 following the recommendation of a joint committee investigating its data retention scheme, but failed to make its deadline.

Its bill outlines what the government considers to be a serious breach and the steps an organisation must take to address one.

The scheme applies only to organisations governed by the Privacy Act. State government organisations and local councils, plus organisations with a turnover less than $3 million a year, will fall outside the legislation.

The privacy commissioner would have the power to chase civil penalties for non-compliance, with individuals facing fines of $340,000 and organisations facing up to $1.7 million.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
data breachdata breach notificationsecurity

Sponsored Whitepapers

Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Datacom + Microsoft Azure: Turn Ideas Into Impact in Just 4 Weeks
Protect APIs. Protect Your Business.
Protect APIs. Protect Your Business.
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
KnowBe4 Benchmark Report: Reducing Human Risk & Phishing Vulnerability in ANZ
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Saviynt Simplifies GRC and Access Control for SAP and Beyond

Events

Most Read Articles

Ex-student charged over Western Sydney University cyberattacks

Ex-student charged over Western Sydney University cyberattacks
SA Water plans 'once-in-a-generation' core technology uplift

SA Water plans 'once-in-a-generation' core technology uplift
WhatsApp banned on US House of Representatives devices

WhatsApp banned on US House of Representatives devices
Victoria's first government tech chief steps down

Victoria's first government tech chief steps down
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?