AU: OAIC updates data breach guidelines
Hamish Barwick reports:
The Office of the Australian Information Commission (OAIC) has updated its voluntary data breach guidelines as a means of encouraging organisations to notify the public in the advent of a data breach.
The new guidelines, entitled Data breach notification, update the August 2008 Guide to handling personal information security breaches.
Information Commissioner, John McMillian, launched the guidelines in Sydney to coincide with Privacy Awareness Week.
Read more on CIO.
Ah, for my youth, when I stupidly thought that guidelines had the force of regulations.
You can lead a horse to water, but if you want to ensure they drink, you’d better have a strong stick to go with any carrot, and guidelines just don’t do it.