Australian Data Breach Notification Laws to Take Effect
The financial implications of not complying and the steps you need to take immediately.
The passage of the Privacy Amendment (Notifiable Data Breaches) Act 2017 established a Notifiable Data Breaches (NDB) scheme in Australia.
The NDB scheme requires organisations covered by the Australian Privacy Act 1988 (Privacy Act) to notify any individuals likely to be at risk of serious harm by a data breach.
This notice must include recommendations about the steps that individuals should take in response to the data breach. The Office of the Australian Information Commissioner (OAIC) must also be notified.
Organisations will need to be prepared to conduct quick assessments of suspected data breaches to determine if they are likely to result in serious harm.
Who must comply with the NDB scheme
The NDB scheme will apply to businesses, Australian Government agencies, and other organisations that are already required by the Privacy Act to keep information secure.
Which data breaches are notifiable
Not all data breaches are notifiable — the NDB scheme only requires organisations to notify when there is a data breach that is likely to result in serious harm to any individual to whom the information relates.
Assessing Suspected Data Breaches
Organisations that suspect a data breach may have occurred are required to undertake an expeditious assessment to determine if the data breach is likely to result in serious harm.
HOW SPARX NETWORK SECURITY SERVICES CAN HELP YOU COMPLY
In line with the government recommendations on appropriate measures to take in protecting personal information on your network we offer the following services
Penetration testing is the practice of attacking IT systems in the same way a hacker would to identify security holes. Our non-exploitive penetration testing will report on detected vulnerabilities or weaknesses and will validate your devices to ensure there are no vulnerable systems.
Sparx Solutions can ensure your security policy is effective by providing both internal and external vulnerability assessments and penetration tests. Additionally, we can also provide external — Internet sourced — vulnerability assessments as an ongoing managed service to ensure your infrastructure and applications are continually secured.
For every organization, information is the most valuable asset that needs to be kept safe and protected from the rest of the world, by ensuring its confidentiality, integrity and availability. In order to keep critical information secure from exposed threats, businesses need to develop and implement information security policies and procedures and ensure that they are made functional at all levels of the organization.
Sparx Solutions offer professional services to draft effective policies and procedures compliant to your specific needs and requirements. Our policies are tailor-made according to client requirements. We cover all necessary information on how to protect confidential information along with establishing guidelines for employees.
With Sparx Access Control Solutions we can deliver an easy-to-use BYOD ready granular access control solution that is context aware, identity enabled, location and device based for the most complex datacenter and cloud environments. This enables safe, protected network and cloud access for a diverse user audience over a wide range of devices and provides best-in-class performance and scalability while delivering centralised policy management with visibility.
THIRD PARTY PROVIDERS
THIRD PARTY PROVIDERS
Sparx will assess use of technologies like mobile and cloud in your environment and help your organisation define a strategy for securing these services. This service is designed to ensure the outcome is secure anytime access to Hybrid IT environments.