The Schools Privacy Compliance Manual has been updated jointly with the Catholic Education Commission and contains some substantial changes which were required by the introduction of the Privacy Amendment (Enhancing Privacy Protection) Act 2012, the Privacy Amendment (Notifiable Data Breaches) Act 2017 (Cth), and also amendments to reflect changes in other legislation generally.
In particular, the Manual now contains a section on how to respond in the case of data breaches and eligible data breaches under the notifiable data breaches scheme. It is essential for schools to be aware there are substantial penalties for serious or repeated interferences with privacy and the Information Commissioner has the power to seek enforceable undertakings. The notifiable data breaches scheme obligations under the Privacy Amendment (Notifiable Data Breaches) Act 2017 (Cth) commences on 22 February 2018.
The previous Manual should be discarded to ensure that only the current Manual is used and appears on websites.