Breach Notification , Breach Response , Data Breach

Australia's Breach Notification Law: What to Watch

Data Protection Expert Gordon Hughes Analyzes the Requirements
Gordon Hughes, director, Davies Collison Cave

Australia's mandatory data breach notification law, which goes into effect next February, brings a host of new requirements. Gordon Hughes, an attorney and data protection expert, discusses what organizations need to be aware of ahead of its implementation.

See Also: Effective Cyber Threat Hunting Requires an Actor and Incident Centric Approach

In an interview at Information Security Media Group's recent Sydney Fraud and Breach Prevention Summit, Hughes discusses:

  • What kind of personal information is regulated by the law;
  • Some of the law's gray areas;
  • Who is responsible for reporting a breach under the new requirements.

Hughes is a director with Davies Collison Cave, one of Australia's largest intellectual property legal firms. He's an expert in the areas of intellectual property commercialization, IT law and data protection. Hughes has authored and co-authored eight legal texts, including "Data Protection in Australia."


About the Author

Jeremy Kirk

Jeremy Kirk

Managing Editor, Security and Technology, ISMG

Jeremy Kirk is a veteran journalist who has reported from more than a dozen countries. Based in Sydney, he is Managing Editor for Security and Technology for Information Security Media Group. Prior to ISMG, he worked from London and Sydney covering computer security and privacy for International Data Group. Further back, he covered military affairs from Seoul, South Korea, and general assignment news for his hometown paper in Illinois.




Around the Network