With fines of up to $1.7 million for each infringement, businesses need to make sure they’re compliant with the new Australian privacy laws, says Loud & Clear’s Cade Witnish.
Here are five steps to ensure you’re compliant.
It has now been almost six months since significant changes were made to the Privacy Amendment Act – changes that affect the legal obligations businesses and government agencies have with respect to the collection, use and disclosure of personal information.
The aim of these reforms is to encourage an open and transparent management of personal information. The Privacy Commissioner has been empowered with new audit and investigative powers as well as the ability to issue civil penalties of up to $1.7 million per infringement – yet so many businesses are unaware of their new obligations. So what has tangibly changed for your business?
Bringing operations into compliance can be a big job – especially for a digital business where customer information is recorded across multiple platforms, stored across the web and used for several purposes.
Here are five steps to ensure your business is compliant.
Step 1: Reviews
Businesses hit by the new laws must conduct a comprehensive review of their existing (or non-existing) privacy policies. When assessing the current policies, you need to ask:
- What data is being collected,
- how is it collected,
- for what purpose is it collected,
- how is it used, and
- where is it stored?
You want to evaluate how customer data is currently being dealt with and then map existing processes against the new obligations.
Step 2: Privacy policies
- The methods of collecting and storing personal information,
- the purpose of collecting personal information,
- information on how to complain about a breach of the Australian Privacy Principles (APP),
- a guide for individuals on how they can access and amend personal information, and
- notice if the data will be shared with third parties overseas.
Step 3: Data collection notifications
The Amendments expand the obligations businesses’ have in notifying individuals when their personal information is collected.
Whenever a person makes an online inquiry, a purchase, or provides any personal information whatsoever, you must adhere to a strict set of notice requirements.
Before or immediately after the information has been collected, a notice must be served upon the individual. It should clearly outline:
- Notice that the information has been collected,
- the purpose of the collection, and
- information about whether it will be disclosed to third parties.
You need to ask yourself: how thoroughly is my website complying with this requirement?
Step 4: Unsolicited personal information
Anyone who uses email knows that we receive information never intended for us – spam – it happens all the time.
Under these new laws, businesses are now required to destroy or de-identify any unsolicited personal information that would not have been able to legally obtain. In practice that means destroying most of this material.
To avoid hefty fines, as a business you need to devise and implement a standardised process whereby all such information is quickly and effectively destroyed.
Step 5: Staff training
The Amendments introduce a raft of new obligations and calls for businesses to take a pro-active approach to privacy. Privacy issues will become more and more important as businesses continue to grow, connect and diversify in the globalised world.
Australian businesses must adapt to the new privacy laws at an organisational level by revising privacy policies, data systems, and importantly, training each and every member of staff to manage the privacy responsibilities of the business as a whole.
So ask yourself, what steps has your business taken to ensure you meet all the new requirements?
Cade Witnish is managing director of Loud&Clear.
Australian Prime Minister Anthony Albanese said Meta’s decision to stop paying for Australian news is “not the Australian way” and that he is “very concerned” about the announcement. Meta today confirmed it will walk away from funding Aussie journalism once the current content deals expire in what is a significant blow to Australia’s largest publishers. […]
The Australian media industry has responded to Meta’s decision to walk away from funding Aussie journalism once the current content deals expire. In a blow to local media outlets, Meta said it will not enter negotiations to extend deals to pay Australian media companies for the news that appears on its platforms. Michael Miller, News […]
Free TV has said that today’s announcement by Meta that it will not be renewing any of the deals struck with Australian media companies for use of news content on its platforms should be met with swift action by the government. Meta today revealed it will walk away from funding Aussie journalism once the current content […]
NOVA Entertainment has today announced the launch of a refreshed brand identity for FIVEAA, Adelaide’s premier commercial talkback station. The forward-looking brand refresh reflects FIVEAA’s new lineup and vision while paying homage to the station’s previous logo and rich heritage. Built upon the new tagline of Always Adelaide, the new direction celebrates the ‘AA’ branding […]
Australian social and content marketing workflow platform Fabulate has won big at the industry’s annual AiMCO Awards, taking out the highly competitive Best Influencer Marketing Technology Service category. Lead image: Fabulate team at Aimco Awards The win saw the start up platform, which has a team of around 50, receive the industry recognition against competitor […]
Australia’s newest transformative TV technology, Hubbl, will be on sale from March 10 in Harvey Norman and JB Hi-Fi retail stores nationally and via Hubbl.com.au. Lead Image: Foxtel CEO Patrick Delany at Hubbl Launch. Also from March 10, Hubbl will unveil a national advertising campaign starring brand ambassadors Hamish Blake and Andy Lee. The multi-channel […]
Marking a historic moment, THE LUME Melbourne will welcome original pages from Leonardo da Vinci’s Codex Atlanticus to Australian shores for the first time, as they touch down on March 9, before going on display to the public from March 16, when Leonardo da Vinci – 500 Years of Genius presented by Webuild opens to […]
Eyeota, a Dun & Bradstreet company and a global source of data for digital marketing, have selected Proximic by Comscore, a leading provider of audience and content targeting solutions for programmatic activation, as its preferred partner for making its full taxonomy of audience segments available for contextual cookieless targeting.