The Office of the Australian Information Commissioner (OAIC) has updated their guide to handling personal information security breaches.
“Agencies and organisations have obligations under the Privacy Act 1988 (Cth) to put in place reasonable security safeguards and to take reasonable steps to protect the personal information that they hold from misuse, interference and loss, and from unauthorised access, modification or disclosure.”
This guide provides general guidance for agencies and organisations when responding to a data breach involving personal information that they hold.
An important message is that ‘data breaches’ are not only the result of malicious actions (theft or hacking). Data breaches can be as simple as internal errors or failure to follow information handling policies that cause accidental loss or disclosure.
Click on the image to access the OAIC website.
For nearly 15 years Shred-X Document Destruction has been the leader in secure destruction services. We assist organisations in complying with the Privacy Act 1988 and its Amendments providing tailored services to thousands of commercial sites and households across Australia. Our secure destruction services include document destruction, digital media destruction, hard drive destruction & degaussing, archive box cleanouts, and clothing destruction to name a few.