The risk of hacking is higher than ever.
Soon, the penalties for being hacked will be too.
If you run a business, NFP or government agency, it’s a big day, because that’s when the Privacy Act 1988 amendment which includes a whole raft of new data breach rules and fines will start being enforced.
It means that cyber security is no longer just a tick box on your IT checklist – it’s a business imperative.
Under something called the Notifiable Data Breach scheme (NDB), a specific list of data breach rules will be added to the Privacy Act. These changes mean organisations and individuals can be hit with big fines and even more costly reputational damage if their cyber security is compromised.
The NDB scheme applies to all organisations referred to as APP entities, including:
A data breach is when personal information, held by your organisation, is lost or subjected to unauthorised access or disclosure, which includes:
In the event of a data breach, the new legislation requires you to:
Failure to comply could lead to hefty civil penalties (up to $360,000 for individuals and $1.8 million for organisations), not to mention potentially irrevocable damage to your reputation.
Or you can take the stress and uncertainty out of your cyber security situation, and allow us to review your cyber security setup and ensure you’re ready for the new legislation.
To find out more, head to our cyber security services page or call us today on (08) 9381 0900 to book your Cyber Security Health Check.
* Where it is not practical for you to notify all affected individuals.
Further information:
Notifiable Data Breaches. Office of the Australian Information Commissioner
Guide to securing personal information. Office of the Australian Information Commissioner
Australia finally has mandatory data breach notification. IT News Australia