On this page:
Good information handling practices make good business sense. Your organisation’s reputation is built on the trust and confidence of your customers and stakeholders. This includes trust in how you protect their personal information.
If you handle personal information as part of your job, it's important that you meet any privacy responsibilities you may have under the Privacy Act.
To find out how to protect other people’s personal information read our 10 steps guide to protecting other people’s personal information.
Businesses and government agencies who have obligations under the Privacy Act 1988 (Privacy Act) should start planning for the implementation of privacy law reform in March 2014.
Currently, businesses covered by the Privacy Act are subject to the 10 National Privacy Principles (NPPs), while most Australian, ACT and Norfolk Island government agencies must comply with 11 Information Privacy Principles (IPPs).
Under the new privacy law the IPPs and NPPs will be replaced by the new, unified, Australian Privacy Principles (APPs). This is just one of the many significant changes to the Privacy Act.
Check out the privacy law reform webpage for more information.
Ask yourself the following questions to see what you might need to do to get ready for the new privacy laws:
- Does your business or agency handle personal information? There are some changes to what constitutes personal information under the Privacy Act
- Do you need to review your business or agency’s outsourcing arrangements? You will need to do this particularly if you are sending personal information overseas.
- Do you use direct marketing to reach your customers? If you do, you will need to provide an easy way for people to opt-out of receiving these communications. There are some new rules in the area of direct marketing
- Does your business or agency receive unsolicited personal information. There are some new rules on how to handle this information
- Do your information security systems need to be reviewed and updated?
The OAIC is encouraging business and government agencies to register as a partner for Privacy Awareness Week 2013.