Spread from the Notifiable data breaches report July to December 2022 showing the snapshot (key statistics).Header reads ‘Notifiable data breaches report’


Welcome to the March 2023 edition of Information Matters.

Earlier this month we released our Notifiable data breaches report July to December 2022. Read on to find out more about the statistics.

We share the brand new website for the 2023 Privacy Awareness Week – back to basics – campaign. Find out how you can sign up your organisation as a supporter and get involved using the supporter toolkit.  

And finally, read more about the resolutions co-sponsored by the OAIC that were adopted by the Global Privacy Assembly, along with detail about the latest Information Commissioner review decisions.
 

Notifiable data breaches report July to December 2022
Spread from the Notifiable data breaches report July to December 2022 showing the snapshot (key statistics).
Earlier this month we released our Notifiable data breaches report July to December 2022. The report showed several large-scale data breaches impacted millions of Australians’ personal information in the second half of 2022, as part of a 26% increase in breaches overall.

Forty-five per cent of all data breaches resulted from cyber security incidents. Australian Information Commissioner and Privacy Commissioner Angelene Falk said in our media release cyber security incidents in particular can have a significant impact on individuals, and organisations need to be alert to the risks.

‘Organisations should take appropriate and proactive steps to protect against and respond to a range of cyber threats. This starts with collecting the minimum amount of personal information required and deleting it when it is no longer needed’, Commissioner Falk said.
View the report
 

Privacy Awareness Week 2023
Green background with text reading ‘Privacy Awareness Week 1-7 May 2023’, ‘Back to basics’, and ‘Privacy Awareness Week’

This Privacy Awareness Week (PAW), we’re issuing a call to go ‘back to basics’ and revisit the fundamentals of what it takes to protect privacy – whether it’s your own, or someone else’s.

We’ve just launched the PAW 2023 website, where you will find information about this year’s campaign, including a message from Australian Information Commissioner and Privacy Commissioner Angelene Falk, a range of privacy information for individuals, business and government, and fun quizzes to complete and share.

You’ll see the PAW website already has a lot of supporters listed, and we’ll be updating it as more sign up. If you haven’t already, be sure to sign up your organisation and become one of the first to gain access to our supporter toolkit to help you and your organisation promote PAW to stakeholders, customers and colleagues. We expect these resources to be available to supporters soon, and they will include:

  • content for social media, newsletters and internal communications
  • images, posters and email signatures
  • a PowerPoint presentation
  • virtual meeting backgrounds
  • and more. 
Sign up as a supporter
 

Updates to the regulatory action policy and guide
At the 44th Global Privacy Assembly in October 2022, the OAIC co-sponsored two resolutions that were adopted by the GPA.

The Resolution on International Cooperation Capacity Building for Improving Cybersecurity Regulation and Understanding Cyber Incident Harms recognises the increase in cyber-attacks globally which have significant economic consequences for society. It acknowledges the importance of international collaboration, capacity building and information sharing to cyber threats.

Secondly, the Resolution on Principles and Expectations for the Appropriate Use of Personal Information in Facial Recognition Technology sets clear standards and expectations for the use of facial recognition technology (FRT). These include that the use of FRT should have a lawful basis, it should be reasonable, necessary and proportionate, that data protection principles (including transparency and accountability) should be respected, and organisations should protect against arbitrary interference with human rights.   
Read the GPA newsletter
 

Recent and upcoming events
Commissioner Falk will be the guest speaker at a Law Council privacy law and practice seminar on 5 April in Sydney. The Commissioner will discuss key privacy developments and issues, including the final report of the Privacy Act review. Register now for this free event.

On 1 March, Commissioner Falk participated in a panel discussion on proactive cyber defences and what to do when faced with a cyber threat and breach as part of the MinterEllison CPD Legal Studio. Watch the recording.

Commissioner Falk presented on data breaches at the 8 March meeting of the Shadow Economy Advisory Forum. The forum collaborates with key industry and business stakeholders to lead, share and advocate matters relating to the shadow economy. Key messages from the meeting will be published on the Australian Taxation Office website in due course.

On 14 March, members of our Notifiable Data Breaches team presented on the implications of data breaches for accountants at the Accounting Business Expo.

On 15 March, Commissioner Falk took part in a panel discussion on the work of the Digital Platform Regulators Forum, hosted by the International Institute of Communications Australian Chapter. She was joined by ACCC Chair Gina Cass‑Gottlieb, Australian Communications and Media Authority Chair Nerida O’Loughlin PSM and eSafety Acting Chief Operating Officer and General Manager Toby Dagg. The 4 regulators discussed ongoing collaboration on the regulation of digital platforms and future opportunities for reform.
 

Information Commissioner decisions

Information Commissioner review decisions are published on AustLII. Recent decisions include:
Visit AustLII now
 

Work at the OAIC

Working with the OAIC will put you at the forefront of data protection and access to information regulation. As an independent statutory agency, the OAIC’s work is of national significance and plays an important role in shaping Australia’s information handling landscape across the economy – from government, digital platforms and the online environment, to health, finance and telecommunications.

We are an agency within the Attorney-General Department’s portfolio with responsibility for:

  • privacy functions under the Privacy Act 1988 and other legislation
  • freedom of information, in particular review of decisions made by agencies and ministers under the Freedom of Information Act 1982.
See current vacancies
 

Latest news and submissions

Stay up to date with the latest OAIC news and resources through our Twitter, Facebook and LinkedIn pages.

You can catch up with our submissions on a range of legislative and other issues through our website.

We also publish information released by the OAIC under the Freedom of Information Act 1982 on our disclosure log.
 

Please do not reply to this message as you will not get a response. We welcome your feedback at [email protected].

If you would prefer not to continue receiving this monthly newsletter, you can unsubscribe below. If you have been forwarded this newsletter by someone else, we invite you to subscribe.
OAIC

This email was sent by Office of the Australian Information Commissioner, Level 3, 175 Pitt Street, Sydney, NSW 2000, Australia to [email protected]


Unsubscribe

header_1453182889.jpg