- Page 1: Data Security Compliance
- Page 2: EU Data Security Compliance
- Page 3: Japan Data Security Compliance
- Page 4: Korea Data Security Compliance
- Page 5: Australia Data Security Compliance
- Page 6: U.S. Data Security Compliance
Australia Data Security Compliance
National Legislation:
- The Privacy Act 1988 (Privacy Act)
- The Privacy Amendment (Enhancing Privacy Protection) Act 2012 amending the Privacy Act
- The Taxation Administration Act 1953
- Telecommunications Act 1997
Scope of Legislation:
- Applies to activities of organizations within Australia and overseas Australian organizations and foreign organization linked with Australia.
- Private sector organizations and federal government agencies.
Security Method/Requirements:
- Requires organizations to take reasonable steps to protect the personal data they hold from misuse, interference, loss and unauthorized access, modification or disclosure. No mandate on specific security obligations or standards or guidance as to the matters that may be relevant or reasonable to consider in assessing compliance with this obligation.
International Transfer of Data:
- Obligation for organizations to take reasonable steps to ensure that any third party handling personal data on their behalf also takes the same steps to protect personal data.
Other Details:
- Australia has a “Guide to Information Security” provided by the Office of the Australian Information Commissioner that provide non-binding guidance on the reasonable steps organizations are required to take (such as the use of encryption) to protect the personal data they hold.
Continue: U.S. Data Security Compliance
Related Posts