Privacy Impact Assessments Register
Date PTA completed
Outcome – PIA required?
Mandatory Check-in at the OAIC and QR codes
International Access to Information Day/ICON webinar
Use of the Document Verification Service (DVS) for verification of personal identity information.
ICT Hardware Replacement
OCT Migration to DESE
OAIC and ACCC Coordinated Compliance Monitoring Plan of financial services entities receiving Optus Customer Data
APSC Analysis of OAIC’s 2022 APS Employee Census Results
MicrOPay payroll, HR and ERP system
|Reference number||Date posted||Title|
|D2020/005283||29 May 2020|
24 Nov 2022
OpenText RightFax Integration (Project)
This PIA considers privacy risks associated with the use of RightFax, a centralised, computer-based fax server solution that provides enterprise-grade faxing capabilities across an entire organization. RightFax integrates fax and document distribution with email, desktop, and enterprise applications, enabling secure fax exchange from customer relationship management (CRM), enterprise resource planning (ERP), electronic
medical record (EMR), document management, and other business applications.
RightFax will replace the Office of the Australian Information Commissioner’s (OAIC) use of traditional faxes for sending and receiving information related to the OAIC’s work. RightFax will integrate with the OAIC’s existing email servers, active directories, network folders and multi-functional devices (MFD)/printers. RightFax utilises on premises storage with storage of faxes received and sent, activity and audit logs, and any associated metadata this is on the OAIC IT infrastructure.
The OAIC will use RightFax to send and receive documents to and from complainants, respondents, third party advisors to the OAIC or either party, and other government agencies or
departments (the Project). This may include sensitive information.
The OAIC’s Director of Corporate who oversees the ICT shared services arrangement is responsible for the Project’s implementation.
The PIA assesses any privacy risks posed by the use of the OpenText RightFax by the OAIC to the OAIC, and any risks associated with the handling of personal and sensitive information by the OAIC for the Project.
Topics addressed in this PIA include how personal information will flow through the system and an assessment of compliance with the APPs.
2 Dec 2022
Use of closed-circuit television cameras
This PIA assesses the privacy impacts of using closed-circuit television (CCTV) cameras in the OAIC’s Sydney office.
Topics covered in this PIA include how personal information will flow through the CCTV system, an assessment of compliance with the APPs, and recommendations to mitigate any privacy impacts.