Tag archives: incident

A Trend Has Emerged – Third Quarter Report on Data Breaches by the OAIC

The Office of the Australian Information Commissioner (OAIC) recently released its third quarterly report in relation to data breaches notified under the Notifiable Data Breach (NDB) Scheme between 1 July and 30 September 2018. For this quarter, the OAIC received 245 data breach notifications which is on par with the previous quarter. With this being … Continue reading

Cloud cover: 5 tips to mitigate the risks of cloud computing services

In mid-2017, the Australian Bureau of Statistics revealed that almost a third of sampled businesses are using commercial cloud computing services.  This year, Gartner reported Australian businesses will spend $4.6 billion on cloud services (an 18.5% increase from last year). Below we highlight some of the risks for businesses associated with the use of cloud … Continue reading

Data breaches notifications are on the rise

As many readers know, the Notifiable Data Breach Scheme (NDB Scheme) came into force on 22 February 2018.  It has resulted in changes to Australia’s privacy law in relation to notification obligations on individuals and organisations that experience an eligible data breach. The Office of the Australian Information Commissioner (OAIC) recently released its second quarterly … Continue reading

 Cyber aggregation risk – the elephant in the cyber room

  Although cyber insurance is seen as one of the biggest opportunities in insurance and reinsurance right now, the risks to insurers and insureds could be equally large. One significant threat is ‘cyber risk aggregation’. What is ‘cyber risk aggregation’? Risk aggregation in the insurance industry refers to multiple claims being generated by the same … Continue reading

The results are in: weekly data breach notifications have increased fivefold!

The Notifiable Data Breach Scheme (NDB Scheme) came into force on 22 February 2018.  It has resulted in changes to Australia’s privacy law in relation to notification obligations on individuals and organisations that experience a data breach.  In this post, we look at the first quarterly report issued by the Office of the Australian Information … Continue reading

Cyber Risk, Data Breaches and the NDB Scheme – What are the Australian Privacy Commissioner’s range of powers?

The Notifiable Data Breach Scheme (NDB Scheme) came into force on 22 February 2018, resulting in various changes to Australia’s privacy law. In previous posts, we have considered: the nature and contents of notification statements; how to identify which data breaches need to be notified; the steps to be taken when an organisation suspects a … Continue reading

Data breach of jointly held information: who is responsible?

The Notifiable Data Breach Scheme (NDB Scheme) came into force on 22 February 2018, resulting in various changes to Australia’s privacy law.  In previous posts, we have considered the nature and contents of notification statements, how to identify which data breaches need to be notified, and the steps to be taken when an organisation suspects … Continue reading

Suspicious of a data breach? You’ve got 30 days to finish your assessment

The Notifiable Data Breach Scheme (NDB Scheme) came into force on 22 February 2018, resulting in various changes to Australia’s privacy law. In previous posts, we have considered the nature and contents of notification statements, and how to identify which data breaches need to be notified. Those posts set out the notification requirements where an … Continue reading
LexBlog