This year, Privacy Awareness Week runs from 12 - 18 May 2019 and there are a number of very relevant messages being touted by the many organisations involved. There are also considerable resources available that provide straight forward advice and guidance on privacy obligations and options, including help identifying aspects to not be concerned about. Data collection and privacy ‘challenges’ are increasingly complex and yet increasingly crucial for organisations in creating and maintaining people’s trust and meeting the expectations for services delivered. Government agencies and private companies need to start by knowing their privacy obligations; this is what privacy awareness is about.Read More
Over the last six months, I have frequently been asked by people who know about my involvement with eHealth whether I am opting out or staying in My Health Record. To me, there is only one answer – of course I am staying in! There may be limitations today but it is only by participating that we will see improvements in the quality of information and the real longer term value of the record in supporting health care.Read More
Social engineering has been around for a long time and efforts have traditionally been overt, for example on the spot fines for littering or more subtle for example, posters urging people not to litter, placing bins at convenient places.However, what is new is the application of data science to social engineering. Masses of data is being collected by search engines, social media, website cookies, apps and CCTVs. The technology is here now to link these collections as input to social engineering programs to influence social outcomes.Read More
A significant new data protection requirements are being introduced in May 2018 that will impact Australian organisations. This is the European Union General Data Protection Regulation or GDPR.
The GDPR contains new data protection requirements that will apply from 25 May 2018. Although this is an EU regulation, it has broad coverage that will affect many Australian businesses, educational institutions and Government agencies.
Australian businesses should determine whether they need to comply with the GDPR and if so, take steps now to ensure their personal data handling practices comply with the GDPR before its commencement.Read More