Lessons to be learned from the OAIC’s security assessment of St Vincent’s Hospital

Authors: Michael Swinson (Partner) and TJ Saw (Solicitor) Last month the Office of the Australian Information Commissioner (OAIC) issued a privacy assessment report of St Vincent’s Hospital Sydney Limited (St Vincent’s).[1] The Privacy Commissioner has the power to carry out assessments under section 33C of the Privacy Act in order to determine whether an organisation read more...

OAIC releases privacy ‘better practice guide’ for mobile app developers

The Office of the Australian Information Commissioner (OAIC) has been busy of late.  As well as releasing the second stage of its Draft Australian Privacy Principles Guidelines for consultation in late September, it recently sent an open letter to Facebook, which we posted about here. However, it’s not very often that we see regulators encouraging the read more...