The Australian Government released its 2023-2030 Australian Cyber Security Strategy, outlining its vision of a cyber secure Australia, and how we will get there. ...

This guide has been designed to assist companies incorporate legal professional privilege preservation measures into their cyber readiness activities. ...

The Australian Transaction Reports and Analysis Centre has published new guidance recommending that reporting entities assess the potential impact of data breaches on the money laundering and terrorism financing risks they face. In this Insight, we explain the new guidance and what it means. ...

Optus decision highlights challenges for privilege claims over investigation reports. ...

An overview of the Proposed Digital ID System under the Digital ID Bill 2023, including its accreditation and participation requirements, increased overlap of privacy obligations and proposed regulatory powers. ...

The Federal Government has agreed or agreed in-principle with the majority of the proposals outlined in the Privacy Act Review Report. ...

This Insight examines the growing need for boards and senior management to consider disclosure obligations in the event of an actual or suspected cyber incident—regardless of their significance—as well as the need to apply an ESG lens to cyber resilience. ...

In this Insight, we consider the key trends, similarities and differences we have observed across ASIC and APRA's Corporate Plan. We also explain what to expect on the regulators' supervision and enforcement agendas in the near future. ...

This guide is designed to help you address compromised data after a cyber incident, and includes 11 key steps that cover what to do before, and after, an incident. ...

Given the tight timeframes proposed, APRA regulated entities should begin to review their operational risk management processes and arrangements against draft CPS 230 – see our practical implementation guide here. ...