Lessons to be learned from the OAIC’s security assessment of St Vincent’s Hospital

Authors: Michael Swinson (Partner) and TJ Saw (Solicitor) Last month the Office of the Australian Information Commissioner (OAIC) issued a privacy assessment report of St Vincent’s Hospital Sydney Limited (St Vincent’s).[1] The Privacy Commissioner has the power to carry out assessments under section 33C of the Privacy Act in order to determine whether an organisation read more...

Data security breach by Australian Immigration Department

The Australian Privacy Commissioner has found that the Department of Immigration and Border Protection contravened the Privacy Act when the Department accidentally published the personal details of almost 10,000 asylum seekers in a document that was intended to provide statistical information about the number and status of applications made for refugee status. The contravention occurred read more...
Subjects: Privacy