Click here for case studies, whitepapers and other useful vendor content WebCentral boosts Security and Reliability with Windows Server 2008
Microsoft® takes legal action against software pirates
Australian water treatment company uses four GFI products to protect its network
V/Line and Oakton use Microsoft SQL Server 2008 to develop an Executive HR Dashboard
Dimension Data, La Trobe University and Windows Server 2008 partner to improve compliance
Newsletter Subscription
Australia could see its biggest data breach yet when tough privacy laws clash with lax security culture.
Amendments to the Privacy Act include a range of sweeping new powers allowing the Privacy Commissioner to enforce the mandatory reporting of new data breaches.
Melbourne-based law firm Holding Redlich special counsel Lyn Nicholson said businesses may face a rude awakening when tough privacy enforcement clashes with a blase attitude to security.
"Online retailers not subject to significant regulation will be the ones hardest hit; their assumptions that a bit of security is enough will be tested," Nicholson said.
"We haven't had big data breaches in Australia and it is easier for companies to keep people quiet.
"Industry will react when someone has a big breach and is served a large fine."
The changes could see Australia heading down the US path where data breaches attract hefty fines and civil action, according to Nicholson.
She said the turning point will be after the prosecution of a high-profile privacy breach.
"I don't expect the Privacy Commission to start handing out draconian fines, but infringement penalties could be followed by civil action. Australians are not as aware as Americans of their privacy rights, but this will change when the new laws settle in."
An Australian Law Reform Commission (ALRC) discussion paper detailing 301 privacy reforms is expected to go to parliament in June after it was delayed past its March 31 deadline.
The reforms will be mandated after the paper and submissions have been discussed in parliament, which industry experts say will be no earlier than 2009.
Businesses can already be dealt harsh fines for data breaches under a clause in the Trade Practices Act.
The clause can be enforced similarly to the case against online apparel retailer Life Is Good, which was ordered by the US Federal Trade Commission (FTC) in January to undergo external security audits for the next 20 years.
The FTC alleged the company stored credit card information indefinitely on its computers, without using proper encryption software or sufficient access controls. The FTC also claimed the company violated federal law by allegedly making security claims on its Web site that were false.
Parliament will most likely pass the general provisions of the new privacy laws first, followed by components pertaining to sensitive records and credit reporting.
ARN Member Login
ARN Panel Sessions: Day 3The last of our panel sessions recorded live at CeBIT 2008. Today, the topic is storage. Data is growing at an enormous rate, so what does the future hold?
Weekly Tech News update - July 4th, 2008YouTube stars gather in Boston, a laptop is gone in 90 seconds, a look at new robots, a tearful farewell to Bill Gates and a look inside a cable laying ship.
Brian's bloopersIt takes a long time to produce an episode of Channel Watch. Maybe you'll understand why after watching this...
When an IT disaster occurs, how handy it would be to push a button and start again as if nothing had happened.
Discover and learn more about CA XOSoft today.
Media release: 40 Per Cent of Australian Businesses Do Not Validate Their Data 04 July, 2008 10:29:00
Kaseya helps turbo charge BlueFire’s service delivery model 03 July, 2008 17:23:00
Computershare Selects Symantec for Data Loss Prevention Globally 03 July, 2008 14:52:00
DST International moves to new Shanghai office 03 July, 2008 13:21:00
Put your home based business on the map! Australian Home Based Business Awards 2008 03 July, 2008 12:39:00
Dimension Data, La Trobe University and Windows Server 2008 partner to improve compliance
La Trobe University partnered with Dimension Data to deploy Windows Server 2008 and Network Access Protection technology to improve their existing network security solution.
Subscribe to ARN
