NZ enhances privacy breach reporting with online tool
The NZ Office of the Privacy Commissioner (OPC) has launched NotifyUs — an online tool that enables businesses and organisations to assess whether a privacy breach is notifiable.
Under the Privacy Breach Act, which comes into effect on 1 December, it will be mandatory for organisations to notify the OPC if a privacy breach has caused, or is likely to cause, serious harm.
Serious harm is defined as the unwanted sharing, exposure or loss of access to people’s personal information. Some information is more sensitive than others and therefore more likely to cause people serious harm.
Other examples of serious harm include physical harm, intimidation, financial fraud (including unauthorised credit card transactions or credit fraud), family violence, and psychological or emotional harm.
Businesses and organisations that fail to report a notifiable privacy breach may be fined up to $10,000. Privacy Commissioner John Edwards said NotifyUs will guide organisations through the reporting process.
“We want the privacy breach pre-assessment and reporting process to be straightforward. NotifyUs has undergone extensive testing ahead of today’s launch to ensure the guidance is clear and easy to follow. I encourage people to use it in advance of the new legislation taking effect on 1 December,” said Edwards.
The OPC has also provided other resources on privacy breach reporting, including a short e-learning module and breach reporting brochure.
Digital trust leaders outperform their peers: research
Companies categorised as leaders in implementing digital trust strategies are reaping the...
IT decision-makers believe AI is key to protect against cyber threats: report
According to reseach, 40% of Australian IT decision-makers believe the use of AI will help them...
New Relic upgrades app security testing suite
The New Relic Interactive Application Security Testing solution has been upgraded with new...