MARK DREYFUS MP

Member for Isaacs

Labor Introduces Privacy Alerts Bill

20 March 2014

Shadow Attorney-General Mark Dreyfus QC and Shadow Parliamentary Secretary to the Shadow Attorney-General Senator Lisa Singh have announced the introduction today of the Privacy Amendment (Alerts Bill) 2014 as a Private Senators Bill.

THE HON MARK DREYFUS QC MP
SHADOW ATTORNEY-GENERAL
SHADOW MINISTER FOR THE ARTS
MEMBER FOR ISAACS

SENATOR THE HON LISA SINGH
SHADOW PARLIAMENTARY SECRETARY TO THE SHADOW ATTORNEY-GENERAL
SENATOR FOR TASMANIA

Shadow Attorney-General Mark Dreyfus QC and Shadow Parliamentary Secretary to the Shadow Attorney-General Senator Lisa Singh have announced the introduction today of the Privacy Amendment (Alerts Bill) 2014 as a Private Senators Bill.

The Privacy Amendment (Privacy Alerts) Bill 2013 had passed through the House of Representatives in the last Parliament and was awaiting a vote in the Senate when the election was called.

"Senator Brandis doesn't appear to have any clear legislative agenda," Mr Dreyfus said.

"By introducing the Privacy Alerts Bill, which the government supported in opposition, Labor is giving the Government the opportunity to support this important privacy measure."

"Today I introduced into the Senate the Privacy Amendment (Alerts Bill) 2014, which will require businesses and government agencies to notify people when a data breach affecting their privacy occurs," Senator Singh said.

"This important measure was a recommendation of the Australian Law Reform Commission in 2008.

Senator Singh stated: "Australians should be told when there has been a breach of their privacy. People have a right to know."

Internationally, data breaches by social media websites and multi-national department stores have seen the release of private details of millions of people, while in Australia the publication of information by telecommunications companies and Government departments has endangered the privacy of many.

"This law will alert consumers to breaches of their privacy, so that they have the opportunity to change passwords or cancel their credit card," Mr Dreyfus said.

"It will require the notification of data breaches to the Office of the Australian Information Commissioner.

"The Information Commissioner will then be able to direct agencies and businesses to notify individuals of data breaches.

"The Commissioner will be able to seek civil penalties if there is serious or repeated non-compliance with the notification requirements."

The Bill will apply to all entities covered by the Privacy Act 1988 including many businesses, but will not impose an unreasonable burden on business.

The notification requirements would not apply to all data breaches, only breaches that give rise to a risk of serious harm.