National Privacy Policy compliance and breaches

What are the National Privacy Principles?

The National Privacy Principles (NPPs) are the standards applying to all information collection.

How does this relate to Information System security?

Section 4 of the NPPs relates directly to data security:

4. Data security

4.1 An organisation must take reasonable steps to protect the personal information it holds from misuse and loss and from unauthorised access, modification or disclosure.

4.2 An organisation must take reasonable steps to destroy or permanently de-identify personal information if it is no longer needed for any purpose for which the information may be used or disclosed under National Privacy Principle 2.

How does this affect me?

Companies which fail to comply with the NPP4 can and will be prosecuted. Senior managers are considered to be personally liable for the security of the personal information help by their company of employment.

Senior managers are considered to be personally liable for the security of the personal information help by their company of employment.

How can Sentinel help?

Sentinel Data Security provides a "signing off" service in which we confirm a companies compliance with relevant policies.


Read more about Australian privacy here : http://www.privacy.gov.au/publications/npps01.html

Sentinel Data Security