Online privacy
Guide
Guidance on privacy and the use of commercially available AI products
This guidance is intended to assist organisations to comply with their privacy obligations when using commercially and freely available AI products, in particular generative and general-purpose AI tools. Overall, it is recommended organisations do not enter personal information into publicly available generative AI tools due to the significant and complex privacy risks involved.
Report
Any buyer accepted: unregulated data markets create personal security risks
This report calls for urgent reforms to the Privacy Act to protect against insufficiently regulated data markets in which sensitive and personal data is currently bought, sold and broadcast without controls. It argues that stronger data protections to regulate the flow of this information is required to counteract the risk of scams and foreign interference.
Briefing paper
Privacy and Other Legislation Amendment Bill 2024: bill digest
The Bill amends the Privacy Act 1988 to implement an initial tranche of reforms arising from the proposals of a review.
Briefing paper
Key milestones in Australian regulation of digital platforms 2015–2023: a chronology
This chronology provides an overview of key milestones in digital platform regulation from the introduction of the Enhancing Online Safety for Children Act 2015 to the end of 2023.
Report
Breaching boundaries: improving data breach notifications in Australia
This report presents the findings of a research project examining organisational data breach disclosure and notification practices with the aim of evaluating how organisations are navigating the increasingly complex space of data breach notifications. The report presents ten key findings and associated recommendation(s) to support an improved disclosure regime and guide organisational best practice as...