Australia: Are you ready for a data request deluge?

The Improbability of Privacy Act Compliance, Pt 4

For the past three days I've opined as to the reasons why Australian organisations are unlikely to be prepared for the updated Privacy Act come March 12, with emphasis on what constitutes personal data and the impact of the amended Act on cloud computing and big data.

Today I'm focusing on one part of the Act that isn't entirely new, but that remains among the most problematic from a systems perspective.

Any Australian business with over $3 million in annual revenues wears an obligation under the Privacy Act to tell a customer exactly what data you have on them upon request, and if necessary modify or delete that data at their request.

This obligation was introduced with the best of intentions — transparency. Balanced against that privacy outcome is a compliance burden that few organisations can meet.

Also in this blog series:

Some comments from our readers…
“The articles are extremely timely and highly applicable”
“I often find critical information not available elsewhere”
“As in-house counsel, Mondaq’s service is of great value”

Related Video
Up-coming Events Search
Font Size:
Mondaq on Twitter