Notifiable Data Breaches Scheme
Notifiable Data Breaches scheme becomes effective on the 22nd February 2018
The Privacy Amendment (Notifiable Data Breaches) Act 2017 established the Notifiable Data Breaches (NDB) scheme in Australia (to be Part IIIC of the Privacy Act 1988 on commencement).
It is TechnologyOne’s understanding that the NDB scheme sets out obligations for notifying affected individuals and the Australian Information Commissioner about a data breach which has occurred and is likely to result in serious harm, and that the NDB scheme seeks to strengthen protections to personal information including by providing affected individuals with an opportunity to take steps themselves to reduce their risk of harm following a data breach.
How TechnologyOne will respond to a suspected data breach
TechnologyOne has a comprehensive information security management program in place with the aim to prevent data breaches. However, in the event that a data breach occurs, TechnologyOne has a documented Data Breach Response Plan in place to meets its obligations under the NDB scheme which includes notification to affected individuals and supervisory authorities.