03 545 0877  
Legislation update

Privacy Act – What’s Changing?

Privacy Act 2020 comes into effect 1 December 2020

The current privacy laws were last put in place in 1993.  A lot has changed since, including the use of the internet as a business tool and to store data.  So, the Privacy Act has been updated.

What key changes will there be?

  1. The revised Act will require businesses to report serious privacy breaches, where there is a risk of harm (such as leaked personal information published online or identity theft), to the privacy commissioner and to the individual/s concerned.
  2. The Act will enforce penalties of up to $10,000 for certain types of privacy breaches.
  3. Individuals affected by the breach may also appeal to the Human Rights Review Tribunal, which can award up to $350,000 per person.

What preparation should businesses consider?

  1. Consider what customer and employee information you collect, how it is stored, which role is responsible for its collection and use and how it is used.
  2. Check no personal information is collected that is unnecessary – the less you collect, potentially the lower the risk of a breach.
  3. Are you sufficiently controlling/limiting who has access to the data, including deleting access from those who no longer need it or have left?
  4. Do you use a secure password and two-factor authentication system (including for cloud-based data storage)?
  5. Has any information been copied and/or stored in a variety of places?
  6. Is data regularly and fully deleted when it is no longer required?
  7. What process do you have in place with any third-party providers to ensure they are following the right security protocols on your behalf. Does this get audited?
  8. Do you have a sufficiently trained go-to person and policy for managing privacy? Who else might need to know more or have training about privacy requirements?
  9. How do you know if there has been a breach? Are you monitoring your IT systems, performing regular checks/audits and are there reporting systems and a response plan (including communications) in place?

Don’t hesitate to let us know if we can assist you with any questions about this, to develop a policy and processes, or to provide some training for identified roles who have a responsibility for privacy management.

Related Posts

HOT OFF THE PRESS – Big change in legislation
There is an important development in employment law occurred on 13 June 2023.  It extends the time frame to allow a claim of sexual harassment in the workplace from the standard 90 days to 12 months.
Fair Pay Agreement Update
The first union application for a Fair Pay Agreement (FPA) to be negotiated has been approved by the Chief Executive of MBIE. Bus Drivers are the first cab off the rank. Here is a reminder of what this is all about and why it is important for all employers to understand the impact.
Fair Pay Agreements: Test your Knowledge
Are you up to speed with the Fair Pay Agreement process, your obligations, and how it may affect your business? Test your knowledge by reviewing these scenarios.

This Post Has 0 Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

You get reassurance that your employment matters are dealt with professionally, so you can go back to doing what you do best.

Help with anything in the employment life cycle from recruitment and employment agreements to disciplinaries and disputes and anything else in between.

Contact

Phone: 03 545 0877
Email: [email protected]

Follow Us

LinkedIn

Location

Physical Address:
56 Waimea Road Nelson 7010

Postal Address:
PO Box 1615 Nelson, 7040

Our Newsfeed

Subscribe to our News Feed for the latest industry updates.

Back To Top