Have you just become victim of a data breach, accidental or malicious? Then keep reading! A new legislation in Australia makes it compulsory to report data breaches, and its called the Notifiable Data Breach Scheme (NDBS).
This legislation commenced on February 2018 and states that if you are victim of a data breach, you have to notify the individuals affected and the Office of the Australian Information Commissioner (OAIC).
So what is a data breach? A data breach definition from the OAIC states that: "A data breach occurs when personal information held by an organisation is lost or subjected to unauthorised access or disclosure."
Do you have to comply? The OAIC states that the NDBS applies to: "agencies and organisations that the Privacy Act requires to take steps to secure certain categories of personal information. This includes Australian Government agencies, businesses and not-for-profit organisations with an annual turnover of $3 million or more, credit reporting bodies, health service providers, and TFN recipients, among others."
Cognivity Director Dr. Nick Patterson has written a number of articles and reported on the outcomes from the NDBS quarterly reports and is on hand to assist you with your questions. Reach out now for a consultation session.