The Notifiable Data Breaches (NDB) scheme was established in February 2018 to improve consumer protection and drive better security standards for protecting personal information. Under the scheme, any organisation or agency the Privacy Act 1988 covers must notify affected individuals and the Office of the Australian Information Commissioner (OAIC) when a data breach is likely to result in serious harm to an individual whose personal information is involved.
The OAIC publishes twice-yearly reports on notifications received under the NDB scheme to track the leading causes and sources of data breaches. In all reports since the scheme’s introduction, malicious or criminal attacks has been the leading cause, followed by human error. The reports show there are significant opportunities for organisations to improve how they protect personal information by training employees, bolstering security and revising systems and processes for responding to breaches.
Watch this webinar to learn directly from the OAIC about:
complying with the NDB scheme
determining a ‘notifiable data breach’
emerging data breach issues and areas for ongoing attention
how to develop suitable data breach response plans.
Data breaches can result in serious harm, distress and financial loss to an individual whose personal information is involved. For businesses, the cost of a data breach goes far beyond regulatory enforcement and straight to the core of whether your customers can trust your brand.