Guide

Guide to securing personal information

‘Reasonable steps’ to protect personal information
Publisher
Consumer protection Government regulatory policy Privacy Cyber security Australia
Resources
Attachment Size
Guide to securing personal information 524.41 KB
Description

This guide provides guidance on the reasonable steps entities are required to take under the Privacy Act 1988 (Cth) (Privacy Act) to protect the personal information they hold from misuse, interference, loss, and from unauthorised access, modification or disclosure. It also includes guidance on the reasonable steps entities are required to take to destroy or de-identify personal information that they hold once it is no longer needed (unless an exception applies).

This guide is intended for use by entities covered by the Privacy Act, including organisations, agencies, credit reporting bodies (CRBs), credit providers and tax file number recipients. However, this guide may also be relevant to organisations not subject to the Privacy Act as a model for better personal information security practice.

Related Information

Guide to information security /node/33866

Publication Details
License type:
CC BY