Cyber attacks do not mean businesses are 'off the hook'

The Office of the Australian Information Commissioner has released a statement correcting recent media reports that have suggested that organisations that experience a data breach as a result of a cyber-attack or hack are ‘off the hook’ or won’t be held accountable for the exposure of personal information.

Read the full statement

Read the draft OAIC privacy regulatory action policy

Changes to privacy law

Content found in this section or on this page may no longer reflect the current law.

> Read more: Privacy law reform

Share this page

Protecting information rights — advancing information policy