![]() the General Data Protection Regulation ( GDPR).The Notifiable Data breach scheme ( NDB Scheme) or.However, organisations may have obligations under other legal instruments such as under a contract or under other legislation. We encourage organisations to report data breaches to OVIC even though the PDP Act does not impose any mandatory breach reporting requirement upon organisations when they experience a data breach (see below for more guidance on notifying OVIC and individuals affected by a breach). As such, it will usually involve a failure to comply with one or more of the IPPs and organisations must therefore take steps to address this non-compliance. The PDP Act contains 10 Information Privacy Principles ( IPPs) that underpin how public sector organisations should collect and handle personal information.Īs mentioned above, a data breach occurs when personal information held by an organisation is subject to misuse, loss or unauthorised access, modification or disclosure. Part 2: Privacy implications of a data breach The PDP Act and the Information Privacy Principles Furthermore, data breaches can result in reputational damage and a loss of public trust. ![]() ![]() Responding to the initial breach and subsequent complaints may have financial, legal and resource implications. Organisations can also suffer harm as a result of a data breach.
0 Comments
Leave a Reply. |