While we are yet to see a successful data breach class action in Australia, data breach class actions have become all too real for many major companies overseas ...

As companies and regulators across the world grapple with ever-increasing cyber security threats, Australia's financial services regulator, APRA, has released the final form of a new prudential standard, which imposes heigtened security obligations for APRA-regulated entities ...

Last year was a big year for cybersecurity Organisations were forced to grapple with an increasingly complex regulatory environment as governments across the globe continued to navigate how to best protect personal information in the face of increasingly sophisticated cybersecurity threats We look ...

In preparation for the implementation of the first phase of the Consumer Data Right on 1 July 2019 the ACCC has released draft CDR Rules for consultation The draft rules detail how the CDR will function across all designated sectors in practice including how data is to be shared the criteria for ...

Uncertainty as to what information constitutes personal information under the Privacy Act will be clarified following the release of guidance from the Office of the Australian Information Commissioner The guide provides insight into how a complaint may be determined and offers key questions for ...

With an upward trend in large-scale ransomware attacks and the number of data breaches reported globally mandatory data breach notification will become law in Australia in February 2018 This will place privacy compliance and cyber security in sharp focus Partner Michael Park Lawyer Samantha Naylor ...

The Australian Privacy Commissioner has released a report into the Department of Immigration and Border Protection having breached the privacy of asylum seekers in February 2014 Partner Michael Pattison and Associate Priyanka Nair report on the Commissioners findings and the lessons for all ...

Key cyber risks faced by ASICs regulated population as well as the legal and compliance obligations to manage those risks are highlighted in a new ASIC report ASIC also identifies steps entities can take to address the risks The report marks a growing focus on cyber security issues by ASIC which is ...

In a decision published this week the Australian Privacy Commissioner has clarified that metadata may be personal information when an organisation has the capacity and resources to link that information to an individual Partner Michael Pattison Associate Priyanka Nair and Law Graduate Leah Wickman ...

A New South Wales legislative committee has released a report following an inquiry into remedies for serious invasions of privacy in New South Wales In an unexpected and controversial move the report recommends that the NSW Government take the lead by introducing a statutory cause of action for ...