Changes to the Privacy Amendment Act 2012 (Cwlth) commenced on 12 March 2014. These changes establish 13 Australian Privacy Principles (APPs), which replace the existing National Privacy Principles.
- How, what, why and for what purpose the business collects and holds personal information
• Whether the entity is likely to disclose personal information to overseas recipients
• If the entity is likely to disclose personal information to overseas recipients, the countries in which such recipients are likely to be located, if it is practicable to specify those countries in the policy.
Personal information is defined as information that identifies or could reasonably identify an individual. That might include a person’s name, address and date of birth, but it can also include bank account details, photos and videos.
For cloud data stored outside Australia – on computer servers outside Australia – the country where the cloud service provider’s servers are located will need to be disclosed to clients.
Is your Business Ready? For more information go to: http://www.oaic.gov.au/images/documents/privacy/privacy-guides/comparison_guide_APP_NPP.pdf
Source: Institute of Chartered Accountants