Guide to Big Data and the Australian Privacy Principles

In May 2016, the OAIC released the draft Guide to assist entities to undertake big data activities in accordance with privacy laws.

In brief

  • The Office of the Australian Information Commissioner (OAIC) has released a draft ‘Guide to Big Data and the Australian Privacy Principles’1 (Guide) for consultation.
  • The OAIC recognises the value in and importance of big data activities and aims to strike a balance between the benefit that can be obtained from big data activities and the protection of personal information and privacy.
  • The Guide proposes various measures entities should take when personal information is collected, dealt with and maintained for the purposes of big data activities.

Click here for the full briefing.

Save the data: EU General Data Protection Regulation to apply from 25 May 2018

The EU General Data Protection Regulation has finally been approved and published in the Official Journal. The countdown to its application date of 25 May 2018 has therefore begun.

The European Commission published its first draft of the EU General Data Protection Regulation (the “GDPR“) in January 2012, a comprehensive reform of current the existing EU regime. In April 2016, after over four years of debate, the final text of the GDPR was formally approved.

The GDPR has now been published in the Official Journal (on 4 May 2016) and will enter into force on the 20th day following that publication (i.e. on 25 May 2016). There is then a two year implementation period, meaning that it will apply from 25 May 2018.

This eBulletin gives an overview of some of the key compliance issues for organisations in relation to the GDPR, including as to data security and sanctions which are not only relevant from a pure data protection compliance perspective, but also in the broader context of data issues and cyber security.#

Continue reading