Notifiable Data Breaches
Notifiable Data Breaches Scheme
Robust data security was legislated in Australia under the Privacy Amendment (Notifiable Data Breaches) Act 2017 which makes it mandatory for businesses to report eligible data breaches from 22 February 2018.
Under the Notifiable Data Breaches (NDB) scheme, businesses need to notify individuals and the Australian Privacy Commissioner in the case of eligible data breaches which are likely to result in serious harm to the individual.
Not all data breaches are eligible.
For guidance on what constitutes an eligible data breach, what serious harm means and the notification process download CPA Australia's IT checklist for small business.