No legal professional privilege for Deloitte forensic report in Optus data breach litigation
Optus has lost a bid in the Australian federal court to keep secret a Deloitte...
19 November, 2023
OAIC Data Breach Report: January – June 2023
Key Findings in the OAIC’s Data Breach Report: January – June 2023 Some of the most...
28 September, 2023
What To Do If a Third Party Mishandles Data Your Organisation Shared with It
Earlier this year, news broke about a third-party data breach that impacted the personal information...
27 September, 2023
5 Tips for Managing Third Party Security Risk
It’s rare for an organization to not use at least one third party – whether...
28 July, 2023
Lessons from the HWL Ebsworth Data Breach
The HWL Ebsworth data breach has sent shivers down the spine of every professional consulting...
28 July, 2023
Australia’s First Major Financial Services Provider Breach: Latitude Financial Ransomware Update
Australian financial services provider, Latitude Financial, has announced that it has suffered a data breach...
27 March, 2023
OAIC Data Breach Report: July – December 2022
Key Findings in the OAIC’s Data Breach Report: July – December 2022 The OAIC highlighted the...
03 March, 2023
Melbourne School Data Breach: Lessons for Handling Credit Card Hacks
Around 400 parents of current and former Mount Lilydale Mercy students were recently alerted to...
03 February, 2023
Key Takeaways from TechCrunch’s List of Badly Handled Data Breaches in 2022
TechCrunch recently released its list of the most badly handled data breaches in 2022. Surprisingly...
10 January, 2023
Worried about Data Breaches? How Privacy by Design can help
The increase in data breaches has highlighted that organisations are holding onto data, a lot...
24 November, 2022
Privacy Act changes proposed … but will they work?
This week the Federal Attorney General introduced legislation to increase fines for privacy breaches, largely...
27 October, 2022
The Optus Data Breach Communications – A Case Study of What Not to Do in the Wake of a Breach
There has been a great deal of backlash in the wake of the Optus data...
05 October, 2022
Optus Data Breach: Time for change?
The Optus data breach has exposed how harmful a cyber incident can be. Many are...
05 October, 2022
Data Sharing and Third Parties: Questions to ask before sharing personal information you’ve collected
Regulators around the globe have been targeting their enforcement efforts at companies that engage in...
05 February, 2022
The end to ASIC v RI Advice: Cyber security take-aways for Australian organisations
In early May 2022, the Australian Federal Court released its judgement in the long-running ASIC...
06 May, 2022
Delayed Data Breach Notification: When is it okay to delay?
Under Australian law, organisations are required to notify the Office of the Australian Information Commissioner...
22 April, 2022
7-Eleven’s Photo Faux Pas: 3 key privacy compliance take-aways
The recent decision of the Office of the Australian Information Commission (OAIC) about privacy interferences...
10 November, 2021
Australia’s Response to The Uber Privacy Breach: Fallout from Uber Paying Hackers to Conceal a Massive Data Breach
In July 2021, the Australian Privacy Commissioner issued a determination relating to Uber’s well publicised...
28 September, 2021
Is cyber security regulation possible in Australia?
On 13 July 2021, the Australian Government through the Department of Home Affairs (DHA) opened consultation...
05 August, 2021
Australia’s first cyber security case? ASIC v RI Advice
ASIC's action against RI Advice Group might be Australia's first cyber security case. On 21 August...
11 March, 2021
How much for using the wrong email address?
A recent determination from the OAIC (Office of the Australian Information Commissioner) sheds a little...
24 September, 2020
Who’s responsible? Employer liability for data breaches
Are employers responsible for their employees' data breaches? A recent decision in the UK might allay...
21 July, 2020