Ensuring Compliance to Privacy Act and Mandatory Data Breach Reporting for Schools
iSpeech.org
Entities covered by the Australian Privacy Act 1988 have obligations under the Act need to take reasonable steps to protect the personal information held from misuse, interference and loss, and from unauthorised access, modification or disclosure. The Privacy Amendment (Notifiable Data Breaches) Bill 2016, establishes a mandatory data breach notification scheme in Australia.
Private Schools are covered under this scheme in Australia.
https://www.oaic.gov.au/individuals/faqs-for-individuals/education-and-child-care/are-private-schools-and-tertiary-educational-institutions-covered-by-the-privacy-act.
The Privacy Act and mandatory data breach reporting (NDB Scheme) fundamentally require the need of a data governance tool that can identify and protect sensitive student data and provide clear visibility in the event it is breached.
e-Safe Compliance is the technology response which forms an integral part of the overall policy and procedural response required to address the privacy legislation.
To assist the organizations with this legislation what OAIC has done well is to come out with a guide to securing personal information. This is an important piece of document because OAIC states that they will refer to this guide when doing its investigations on whether a school has complied with its personal information security obligations or when undertaking an assessment.
https://www.oaic.gov.au/agencies-and-organisations/guides/guide-to-securing-personal-information
The video showcase how e-Safe Compliance full fills the requirement of a governance tool and can assist organization to comply with all the nine areas highlighted within the Guide.
2017-11-21 23:43:18
source
Gloss