Roger Clarke, Principal of Xamax Consultancy Pty Ltd, Visiting Professor in at UNSW and ANU, Chair of the Australian Privacy Foundation and a Director of the Internet Society of Australia has this commentary on IT News:
Dear Attorney-General, please get on with it, and submit a Bill to create a privacy right of action.
Added to that, we need criminal offences on the statute books for serious and/or repeated failures to implement security safeguards commensurate with the sensitivity of the data.
But all that mandatory data breach notification – raised in your Discussion Paper this week – does is expose the fact that organisations are culpably cavalier with sensitive data, and fail to implement well-understood security safeguards.
And, um, we know that already.
Read more on IT News.