New laws have been introduced that require business entities, with turnovers greater than $3 million, to report serious data breaches to Office of the Australian Information Commissioner.
The NDB scheme applies to all agencies and organisations that the Privacy Act requires to take steps to secure certain categories of personal information.
If this is of concern to your business I recommend you click on the link below and it will take you to the relevant page of the Office of the Australian Information Commissioner’s website.
https://www.oaic.gov.au/privacy-law/privacy-act/notifiable-data-breaches-scheme