Voluntary breach reporting doesn’t seem to be working too well in Australia. Michael Lee of ZDNet in Australia, reporting on a new annual report by the Office of the Australian Information Commissioner, notes:
The OAIC also received, separately, 56 voluntary data breach notifications, representing a 21 per cent increase from the previous financial year.
Somehow I think there were a lot more than 56 data breaches in Australia last year.
Then again, Australia’s not the only country that doesn’t have a mandatory data breach notification law, is it? We still don’t have one here, either.