NDIS Criterion
MEDIA, JOBS & RESOURCES FOR THE COMMON GOOD
NEWS  |  Leadership

Not for Profits Warned on Privacy and Data Security


Tuesday, 13th March 2012 at 9:27 am
Staff Reporter
Data security has emerged as a major challenge for organisations and agencies across Australia, according to the Australian Privacy Commission.


Tuesday, 13th March 2012
at 9:27 am
Staff Reporter


1 Comments


FREE SOCIAL
SECTOR NEWS

 Print
Not for Profits Warned on Privacy and Data Security
Tuesday, 13th March 2012 at 9:27 am

Data security has emerged as a major challenge for organisations and agencies across Australia, according to the Australian Privacy Commission.

Australian Privacy Commissioner, Timothy Pilgrim, has told the Emerging Challenges in Privacy Law Conference that in the modern world of cloud computing, portable storage devices, electronic databases and hackers, the parameters around data security and document storage have shifted immeasurably.

Pilgrim said organisations should make sure their privacy practices are up to date and customers' personal information is secure to avoid embarrassing privacy breaches in 2012.

“All it takes is a single careless incident to cause a massive data breach,” Pilgrim said.

He recalled that in the UK in 2007, two computer discs belonging to Her Majesty's Revenue and Customs went missing.

The discs were thought to contain names, addresses, national insurance numbers and banking details of approximately 25 million people in the UK.

Pilgrim says a data breach on this scale would have been inconceivable when the Privacy Act was introduced.

“Sometimes, your records can be compromised even without a careless mistake and data security has emerged as a major challenge for organisations and agencies.

“Organisations must ensure that they have implemented robust information-security measures. But this alone is not enough. Data breaches can occur even when all reasonable steps have been taken to protect information.

“Organisations and agencies need to have contingency plans in place so that if a data breach occurs, they can deal with it swiftly, mitigating any risk of harm that the breach may cause.

He said that while a data breach alone can cause reputational damage, recent experience shows that customers can be quite understanding if an organisation openly acknowledges a breach, apologises and acts promptly to resolve it.

“Greater reputational damage can occur if an organisation is seen to try to cover up a breach. Having the courage to acknowledge your mistakes, knowing when to notify affected individuals or the OAIC, and acting quickly to resolve them is another important challenge.”

Not for Profits have responsibilities under the Privacy Act if they earn over $3 million per year and/or hold health information.

Not for Profits will be a focus for the Privacy Commission during Privacy Awareness Week 2012 which is held from April 30 – May 5. 



FEATURED SUPPLIERS


Yes we’re lawyers, but we do a lot more....

Moores

...


HLB Mann Judd is a specialist Accounting and Advisory firm t...

HLB Mann Judd

NGO Recruitment is Australia’s not-for-profit sector recru...

NGO Recruitment

More Suppliers

Get more stories like this

FREE SOCIAL
SECTOR NEWS

YOU MAY ALSO LIKE

Simple Formula to Keeping your Data Safe

Contributor

Tuesday, 14th November 2017 at 8:08 am

Four Reasons to Work with NFPs (and Five Ways to Do it)

Staff Reporter

Tuesday, 28th March 2017 at 3:16 pm

Learning for Purpose: Investing in People and Organisation Capability

Staff Reporter

Wednesday, 8th March 2017 at 4:20 pm

POPULAR

Disability Advocacy Group Fights to Restore State Funding

Luke Michael

Thursday, 9th November 2017 at 8:37 am

Red Cross Moves to Wage-Based Fundraising Model

Lina Caneva

Thursday, 16th November 2017 at 8:30 am

New Same-Sex Marriage Bill Looks to Protect Faith-Based Charities

Luke Michael

Monday, 13th November 2017 at 5:25 pm

Donors Looking for a Personalised Experience to Give More – Study

Lina Caneva

Wednesday, 8th November 2017 at 1:43 pm

One Comment

  • Joan Seymour Joan Seymour says:

    Just a query – why do NFPs have no responsibilities under the privacy act if they earn less than $3 000 000? I think the state privacy legislation applies to any organization which holds personal information records. It’s possible that federal legislation may not apply to organizations with a lower turnover. It would be good to check this – smaller organizations might get an unpleasant surprise if they accepted your statement at face value.

Write a Reply or Comment

Your email address will not be published. Required fields are marked *


NDIS Criterion
pba inverse logo
Subscribe Twitter Facebook

Get the social sector's most essential news coverage. Delivered free to your inbox every Tuesday and Thursday morning.

You have Successfully Subscribed!