Critical.
Authoritative.
Strategic.
Subscribe to CIO Magazine »

Privacy guidelines not enough to prevent data breaches: Law lecturer

Australian privacy watchdog needed to prevent more Medvet data leaks, another Sony hack

To prevent online privacy breaches Australia needs a privacy watchdog rather than merely guidelines, a law lecturer has argued.

In an article at Thecoversation.edu.au University of Canberra law lecturer, Bruce Arnold, argues the high number of data leaks happening in Australia and overseas shows that the government must step up and move beyond privacy guidelines.

“Australia needs a privacy watchdog that is quick to act, a watchdog that, like its overseas counterparts in the UK and US, is equipped with the sort of financial penalties that get the attention of executives,” Arnold wrote.

“Shaming is not enough: where there is improper sharing we need real punishment to stop future problems.”

Using the example of the South Australia-based paternity and drug-testing laboratory, Medvet which last month experienced an online software error that caused the details of 800 patients’ delivery addresses to be visible online, Arnold claimed such organisations must take their privacy responsibilities more seriously.

“The incident shows we need stronger privacy law and meaningful enforcement,” Arnold wrote. “We also need a cultural change, whereby institutions regard themselves as data custodians rather than data owners and therefore take their responsibilities more seriously.”

Arnold agreed with Clearswift’s Phil Vasic that the Sony hacks showed the need for data breach laws needing to be changed.

“Medvet has been unfortunate but there is no reason to believe that such a breach is exceptional,” Arnold wrote. “Other organisations – including universities, government agencies and multinational corporations with the very best information technology money can buy – have experienced unwanted exposure of “their” data, i.e. information about you, me and the people next door.”

Follow Lisa Banks on Twitter: @CapricaStar

Follow Computerworld Australia on Twitter: @ComputerworldAu

Join the CIO Australia group on LinkedIn. The group is open to CIOs, IT Directors, COOs, CTOs and senior IT managers.

More about: Clearswift, Sony, University of Canberra, University of Canberra
References show all

Comments

Post new comment

The content of this field is kept private and will not be shown publicly.
Users posting comments agree to the CIO comments policy.
Login or register to link comments to your user profile, or you may also post a comment without being logged in.
Related Coverage
Related Whitepapers
Latest Stories
Community Comments
Tags: privacy, security
Latest Blog Posts
Whitepapers
  • Customer Case Study: Yarra Valley Water Turns to Enterprise Software to Improve Information Flow
    “We don’t need to wait till month-end for management reports—they’re now available whenever we need them. We have much more efficient management, as everyone across the organization is looking at the same set of figures. Read on.
    Learn more »
  • Virtualise, Manage, Backup, Consolidate
    Datacenter sprawl is one of the larger challenges that datacenter managers are facing today. Over time, applications, servers, and storage can create many unique architectures across the IT infrastructure. This can introduce complexity, increase costs, and compromise business-critical application performance and availability. Read on.
    Learn more »
  • Top 10 Mistakes in Data Centre Operations: Operating Efficient and Effective Data Centers
    For years, the data centre industry has accepted that human operational error, not poor data centre design or engineering, is the number one cause of data centre downtime. Now is the time for companies to evaluate their data centre operations programs. They must be able to clearly articulate operational requirements and design an operations program based on the risk profile of the data centre. However, the road to creating an industry-best operations program will not be easy, especially for those companies whose core expertise is not in business critical facilities. Read on.
    Learn more »
All whitepapers
rhs_login_lockGet exclusive access to Invitation only events CIO, reports & analysis.
Recent comments