News and Articles

  • Notifiable Data Breaches Scheme We are just about two weeks into Australia’s first laws that require entities to notify individuals and the OAIC of certain types of data breaches.
  • New Member Initiatives DGA has introduced some exciting new initiatives to ensure its members are kept abreast of new developments in data governance and related areas.
  • Millennials don't care about privacy. Or do they? Millennials are generally seen as 'oversharers' and there is a general assumption that they're not concerned about privacy. But is that really the case?
  • ACCC Inquiry into Digital Platforms Consultation: 13 April 2018 The ACCC Inquiry into Digital Platforms follows a similar Senate Inquiry into the Impact of Google and Facebook on Public Interest Journalism in mid-2017
  • DGA Board reiterates its purpose and sets a path for increased momentum On 16 April 2018 the DGA Board held a day-long workshop to renew its strategy for DGA, setting its direction and priorities for the year ahead, and reiterating DGA’s long term goals.
  • OAIC Guidelines Mandatory Data Breach The Office of the Australian Information Commissioner (OAIC) has released business resources for the new Notifiable Data Breaches (NDB) scheme set to commence in 2018. The NDB scheme was established earlier this year with the passage of the Privacy Amendment (Notifiable Data Breaches) Act 2017. The NDB requires organisations covered by the Privacy Act 1988 (Cth) (“Privacy Act”) to notify…
  • Sharing without caring: The challenges of an open-data economy With the rapid growth of the open-data economy, businesses need to ensure that they stay ahead of changing technologies to avoid unintended consequences.
  • DGA meets with PM&C Taskforce about Data Portability DGA representatives discussed Data Portability and the DGA's Draft Code of Practice with the PM&C Taskforce to ensure an effective self-regulatory regime.
  • Predictions for 2017 2017 is set to be a big year for data. Merging technologies and increasing consumer understanding will propel further forward the current data revolution.
  • Privacy Amendment Bill 2016: cause and effect Amendments to two key pieces of legislation relating to data will be considered in this Australian parliamentary year.
  • Privacy Amendment: The Law Explained webinar The Privacy Amendment (Notifiable Data Breaches) Bill 2016 recently passed in the Senate, with significant implications for business. Joining forces, ADMA and DGA hosted a webinar on 1 March to shed light on the changes and implications brought on by the amendment. You can view a recording of the webinar below.
  • Privacy Amendment Passes On Monday 13 February, the Privacy Amendment (Notifiable Data Breaches) Bill 2016, passed in the Senate with support from both sides of the aisle. It will be sent to the Governor General shortly for Assent – the final formality before a bill becomes law in the next 12 months. Widely known as the Mandatory Reporting Bill, its passing into law …
  • Privacy, metadata and the new landscape Barely underway and the new year is already delivering some interesting things. On 19 January the Federal Court of Australia handed down its long-awaited decision in the Privacy Commissioner’s submission: Grubb vs Telstra – a case of some significance to privacy. For those of you who may have missed it, here’s a quick précis: This case was initiated by Fairfax…
  • Data Governance Australia goes to Canberra Having clear links to and solid relationships with Government is a vital part of DGA's purpose, especially at a time of digital transformations.
  • The art of building consumer trust According to a recent Data Governance Australia roundtable, transparency is the key to building consumer trust. Participants in the roundtable also uncovered some key insights around consumer trust.
  • Regulation of (Borderless) Data How laws or regulations limited to clearly defined borders effectively govern borderless issues is becoming increasingly complex
  • Research Findings Overview – Consumer Attitudes Towards Privacy The research undertaken by DGA and ADMA is the first research into consumer attitudes to be conducted on a global scale.
  • Submission to Productivity Commission on data availability and use In November, Australia’s Productivity Commission published a set of findings and recommendations in response to the Inquiry into Data Availability and Use.
  • Artificial Intelligence, Australia's Ethics Framework The Federal government recognises that ‘Artifical Intelligence (AI) has the potential to provide social, economic and environmental benefits. For Australia to realise these benefits, it’s important for citizens to have trust in how AI is being designed, developed and used by business and government.’ In order to seek public input, CSIRO’s Data61 was engaged to draft the Artifical Intelligence, Australia’s…
  • The Australian privacy agency is investigating Facebook The OAIC has is conducting a formal investigation into Facebook following the Cambridge Analytica scandal.
  • The Digital Platform Inquiry – regulatory creep personified! DGA’s sister association, ADMA, has taken a deep dive into the content of the report in its article. In brief, the inquiry was launched with terms of reference that focused on the impact of digital platforms on competition and market powers, particularly in relation to the “supply of news and journalistic content, and the implications of this for media content…
  • Australia to Participate in APEC Cross Border Privacy Rules Businesses participating in the APEC Cross Border Privacy Rules will need to implement data privacy policies consistent the Framework. Read more...
  • Australian Information Commissioner and Privacy Commissioner departs Australian Information Commissioner and Privacy Commissioner Timothy Pilgrim will retire leave his role next month.
  • The Limits of Consent A recent decision in a privacy case challenges the limits of consent, suggesting consumer consent does not validate over-collection of personal information and cannot override an entity’s requirement to only collect the personal information reasonably necessary for its functions and activities.
  • Book review: "Who Can You Trust?" Although this book doesn't specifically focus on data governance, "Who Can You Trust" reveals some timely lessons on trust.
  • Data collection - Three pitfalls Consumers are not willing to write brands a blank cheque when it comes to the use of personal data. Read about the pitfalls marketers encounter around data.
  • Can good business outcomes and government regulation happily coincide? According to Forrester’s Predictions 2019: B2C Marketing report, ‘Brands know that their most valuable asset is their relationship with existing customers.’ Trust. To build trust, consumers want control over their info, and so marketers will turn to zero-party data. “Zero-party data is explicit, the consumer knows when they’re giving it, chooses to, and normally there’s a reward when it’s done…
  • China Releases New Personal Information Privacy Standards On 25th January 2018, the Standardisation Administration of China (SAC) released the final version of the Personal Information Security Specification.
  • Data Innovation - DGA Chairman Press Club Address DGA Chairman, Graeme Samuel AC, delivered an address to the National Press Club on the balancing act of consumer protection and benefits of data innovation.
  • Three reasons why consumers share data In a digital economy consumers often give up part of their personal data for added benefits. Here are the top 3 reasons why consumers will share their data.
  • Data Governance Australia Code of Practice The DGA Code of Practice will be built upon genuine insights about Australian consumers and the way Australian companies using data operate.
  • CLOUD Moots Microsoft Case The long-awaited decision between Microsoft and the US Justice Department about cross-border access to data will be waited no more, with the US Supreme Court declaring there is no longer a case to decide following the passage of the CLOUD Act. The CLOUD Act will allow law enforcement agencies to access data with warrants, regardless of where the data is located.
  • National Digital Economy Strategy Roundtable DGA is actively participating in the consultation process for the National Digital Economy Strategy, through roundtable discussions and submissions.
  • DGA Code Enforcement Delayed The DGA Board unanimously passed a vote to delay the enforcement provisions of the DGA Code of Practice until the DGA Code Guidelines are complete.
  • DGA Code of Practice update Data Governance Australia released its Draft Code of Practice for public consultation earlier in the year. Read the latest update on the Code.
  • DGA meets with Government to discuss Code of Practice and PC Report During May, Jodie Sangster (CEO) and Irene Halforty (Legal & Regulatory Affairs Manager) were in Canberra as part of DGA’s advocacy strategy, for a series of high-level government meetings with the Department of the Prime Minister and Cabinet, the office of Minister Fifield, Minister for Communications and the Arts, and the office of Minister Taylor, Assistant Minister for Cities and…
  • Update Consumer Data Right consultation: October 2018 Consumer Data Right (CDR) Following the announcement of the national Consumer Data Right (CDR) last year and subsequent recommendations of the review into open banking in Australia the Australian Competition and Consumer Commission (ACCC) and Treasury have been undertaking consultation regarding various aspects of the proposed Consumer Data Right and, by implication, its application in Open Banking. Background ACCC Chair…
  • Just because you can, doesn’t mean you should… Clive Palmer has been the face of the United Australia Party’s recent campaign, the SMS aspect of which raised the ire of many. While sending the messages was not in contravention of Australian laws his response to consumer sentiment only added fuel to the fire. Registered political parties (and others) are exempt from certain provisions of the Commonwealth’s Spam…
  • The importance of data governance in the case of ATO’s data loss The continual expansion of data in businesses of all levels means that high quality data governance is not an option, it is vital.
  • My Health Record – the latest in the ongoing debate The My Health Records Amendment (Strengthening Privacy) Bill 2018 was before both the House of Representatives and the Senate on 19 September 2018. The House of Representatives agreed to a third reading and the Senate moved the second reading of the Bill. The Senate had previously referred the Bill on 23 August 2018 for inquiry and report. That report was…
  • Your voice in Canberra: DGA meets with Government Data Governance Australia aims to have your voice heard when and where it counts. Recently DGA met with various Government bodies to drive data innovation.
  • Happy 30th anniversary to the Privacy Act In addressing highlights from its 2017 – 2018 Annual Report, the Australian Information Commissioner and Privacy Commissioner, Angelene Falk, said “the OAIC’s work across the reporting period has continued to enhance transparency and accountability for the community”. Key statistics for the period noted by the OAIC included: drafted 29 submissions on legislative proposals and other issues such as open banking…
  • The Importance of Customer Data Security Attorney-General and Minister for Law Enforcement and Cyber Security send a message that cyber security and data security is on the Government’s agenda.
  • Governance and Analytics Will Be Top Priorities Summary Gartner’s first survey of working chief data officers finds that their main mandate and objective is to manage, govern and exploit information as an organizational asset. As a newly emerging role, there is a high degree of variability in what CDOs do, to whom they report and how they are measured. Overview Key Findings Most responding chief data officers…
  • Good privacy is good for business, says study Privacy is a key concern for consumers and for business. A recent study by Cisco highlighted the importance of good privacy practices in business.
  • The Consumer Data Right – coming to a bank near you… 1 July 2019 sees the four big Australian banks commence a pilot program for the Consumer Data Right (CDR) to test how they will comply with the federal government’s plan (announced on 26 November 2017) to enable consumer’s data to be made available to third parties (with the customer’s permission) in order to more easily be able to compare banking…
  • The Consumer Data Right – draft technical standards released The Consumer Data Right has moved on to its next phase with The Treasury announcing on 5 November 2018 that the Working Draft of the technical standards has been published. In referring to the draft standards The Treasury observed: “These standards have been developed to facilitate the Consumer Data Right by acting as a specific baseline for implementation. The standards…
  • Coming Soon: Consumer Data Right and the Government’s Response to the PC Report On 26 November 2017 the Government announced that it will legislate a national Consumer Data Right in 2018, allowing customers open access to their data.
  • Trust more important than convenience to Aussie consumers Research shows that Australian consumers value trust above convenience, giving businesses something to think about when it comes to dealing with data.
  • Customer Data Right & Review into Open Banking in Australia The Prime Minister & Cabinet Data Availability & Use Taskforce has completed its review of the PC Final Report.
  • Cybersecurity and privacy: it takes two to tango! With vast amounts of data generated via the increasing number of connected devices, new methods need to be implemented for data security and protection.
  • Avoidable data breaches threaten innovation in health sector Sixty per cent of data breaches are due to human error. Avoidable breaches are threatening innovation, especially in the health sector.
  • Data Governance Australia – what is our purpose? Data Governance Australia (DGA) is a member of the Australian Alliance for Data Leadership (AADL) network which comprises three associations including the Association of Data-driven Marketing and Advertising (ADMA) and the Institute of Analytics Professionals of Australia (IAPA). DGA appeals to all organisations that hold and use data – and, in particular, Chief Data Officers, Chief Privacy Officers, Chief Risk…
  • Data Governance – What is it? The shift to the digital economy has seen the volume of data created by consumers and business grow exponentially in the past five years. Indeed, it has been estimated that in the past two years more data has been created than in the entire previous history of the human race. The staggering potential benefits of data for everything from marketing …
  • DGA Working groups assist the Board The Board Advisory Committees (BACs) report to the DGA Board, ensuring focus on data issues that affect Australian businesses now and into the future.
  • Brexit and data governance – where to now? As the Brexit aftershock rolls on, many commentators have questioned the impact of the UK leaving the European Union (EU) on matters of data protection, data transfer and data sovereignty.
  • DGA Working groups assist the Board The Board Advisory Committees (BACs) report to the DGA Board, ensuring focus on data issues that affect Australian businesses now and into the future.
  • Employees Cause Majority of Notifiable Data Breaches Privacy regulator, OAIC, releases first Quarterly Report into the Notifiable Data Breaches Scheme, revealing majority of notifiable data breaches are caused by employees and human error. This highlights the need for organisations to take a holistic approach to data security and invest in company-wide data and privacy training for employees.
  • Encryption –vital laws or a backdoor for hackers? The “Telecommunications and Other Legislation Amendment (Assistance and Access) Act 2018” (known as the A&A Act) has an innocuous name though many may believe it to be something of a misnomer, certainly with respect to the “assistance” and “access” references! Passed on 6 December 2018, the impetus for the new encryption laws is national security, and the rush was Christmas…
  • European Data Protection Laws explained In recent months there has been much talk about the changes to the European Data Protection legislation and how it will impact marketers around the globe. Importantly, the European law doesn’t just affect those companies based in Europe – it extends far beyond to any organisations that hold data about individuals based in Europe. In essence, this means that Australian…
  • Facebook scandal reveals urgent need for greater data transparency, trust and ethics Greater data use relies on improved consumer understanding and control, and a higher standard of ethics. Head of Allens’ Technology, Media and Telecommunications law practice and DGA Board Member, Gavin Smith, discusses Cambridge Analytica, misconceptions about data ownership, and the need for a new model for consumers to control and understand the value of their data.
  • Digital Platforms Inquiry: submission in response to the Preliminary Report The Association for Data-driven Marketing & Advertising (ADMA) submitted a response to the Australian Competition & Consumer Commission’s (ACCC) Digital Platform Inquiry Preliminary Report on behalf of ADMA and its sister associations, Data Governance Australia (DGA) and the Institute of Analytics Professionals of Australia (IAPA). Incorporated in the submission were, as appropriate, responses received by DGA from a survey it…
  • Draft APS Privacy Governance Code revealed The OAIC has revealed the Draft APS Privacy Governance Code. The Commissioner is now seeking feedback about the Code, so have your say.
  • DGA viewpoint: Healthcare and data - Universal Declaration of Human Rights HEALTHCARE is well-worth a focus when discussing data generally as many of the issues that sector faces apply equally throughout the economy. According to CISRO’s recently released Future of Health report ‘Behavioural change is needed by all healthcare stakeholders to ensure the growing volume of personal health data is securely shared, collated, analysed, interpreted, and paired with action for improved…
  • DGA discusses Productivity Commission’s Final Report at Roundtable with Government’s new Taskforce Recently the Government established a Data Availability & Use Taskforce (“Taskforce”) within the Department of the Prime Minister and Cabinet. The purpose of the Taskforce is to develop the Government’s response to the Productivity Commission’s Final Report into Data Availability & Use (“PC Final Report”). The Taskforce invited DGA to a special Round Table held on 2 June 2017 to…
  • The Digital Platform Inquiry – in a nutshell The ACCC Digital Platform Inquiry’s Preliminary Report covers a lot of ground. In the interests of brevity (and sanity) DGA has prepared a summary of key points for your reference. Issues for consideration The ACCC has indicated that it is interested in a range of issues. assessing the market power of digital platforms the implications of digital platforms for media…
  • Privacy vs convenience: A smart trade-off? In the era of convenience, where the Internet of Things and smart devices make our lives so much easier, is giving up our privacy worth it?
  • Share your thoughts on the APEC Cross Border Privacy Rules The APEC Cross Border Privacy Rules facilitate the flow of personal information across borders. Provide feedback about the rules today.
  • First Anniversary of GDPR Passes Quietly but Ominously When Europe’s General Data Protection Regulation took effect a year ago, many in Australia shrugged their shoulders and said, “Nice for them, but not my problem.” But that might not be quite the case. In California a ‘lite’ version of GDPR called the California Consumer Privacy Act has already passed into law. Can changes to Australia’s privacy laws be far…
  • Accelerating Privacy Regulation – the Top Emerging Risk for Organisations According to Gartner’s recent quarterly Emerging Risks Monitor Report (1Q19), 98 risk, audit and compliance executives have ranked rapidly accelerating privacy regulations and their associated regulatory burdens as their top emerging risk that organizations face globally (see: Gartner, Inc.’s Emerging Risks Monitor Report). Rapidly accelerating privacy regulations is defined as the risk of progressively complicated statutory regimes, which cover the use …
  • DGA, ADMA, IAPA and D+TC join forces with ACS DGA, ADMA, IAPA, and D+TC join ACS to bolster Australia’s global position in digital innovation, technology and data-driven business Data-driven business today got a shot in the arm with leading data-driven associations, ADMA (Association for Data-Driven Marketing and Advertising), IAPA (Institute of Analytics Professionals of Australia), D+TC (Digital + Technology Collective) and DGA (Data Governance Australia), announcing they have been…