加强数据隐私:组织有义务通知受影响的个人数据泄露

Q1 Social Sciences

International Review of Law, Computers and Technology Pub Date : 2019-09-02 DOI:10.1080/13600869.2017.1379368

Niloufer Selvadurai, Nazzal Kisswani, Yaser Khalaileh

{"title":"加强数据隐私:组织有义务通知受影响的个人数据泄露","authors":"Niloufer Selvadurai, Nazzal Kisswani, Yaser Khalaileh","doi":"10.1080/13600869.2017.1379368","DOIUrl":null,"url":null,"abstract":"ABSTRACT The Privacy Amendment (Notifiable Data Breaches) Act 2017 (Cth) introduced a new Part IIIC into the Privacy Act to strengthen the existing information privacy laws by requiring the designated organisations to notify the Information Commissioner and affected individuals of data breaches that are likely to cause serious harm. The objective of this article is to consider the proper public policy basis for data breach notification laws, the likely ambit of operation of the new provisions and the merits of the law in enhancing data security. Whilst the article focuses on the Australian legislative framework, the provisions European Union’s new General Data Protection Regulation 2016/679, 27 April 2016, will also be considered to extend the discussion of appropriate law in this area. The article will conclude by identifying continuing areas of concern and suggesting initiatives to further strengthen the data privacy of individuals.","PeriodicalId":53660,"journal":{"name":"International Review of Law, Computers and Technology","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2019-09-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"2","resultStr":"{\"title\":\"Strengthening data privacy: the obligation of organisations to notify affected individuals of data breaches\",\"authors\":\"Niloufer Selvadurai, Nazzal Kisswani, Yaser Khalaileh\",\"doi\":\"10.1080/13600869.2017.1379368\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"ABSTRACT The Privacy Amendment (Notifiable Data Breaches) Act 2017 (Cth) introduced a new Part IIIC into the Privacy Act to strengthen the existing information privacy laws by requiring the designated organisations to notify the Information Commissioner and affected individuals of data breaches that are likely to cause serious harm. The objective of this article is to consider the proper public policy basis for data breach notification laws, the likely ambit of operation of the new provisions and the merits of the law in enhancing data security. Whilst the article focuses on the Australian legislative framework, the provisions European Union’s new General Data Protection Regulation 2016/679, 27 April 2016, will also be considered to extend the discussion of appropriate law in this area. The article will conclude by identifying continuing areas of concern and suggesting initiatives to further strengthen the data privacy of individuals.\",\"PeriodicalId\":53660,\"journal\":{\"name\":\"International Review of Law, Computers and Technology\",\"volume\":null,\"pages\":null},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2019-09-02\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"2\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"International Review of Law, Computers and Technology\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1080/13600869.2017.1379368\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"Social Sciences\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"International Review of Law, Computers and Technology","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1080/13600869.2017.1379368","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"Social Sciences","Score":null,"Total":0}

引用次数: 2

摘要

2017年隐私修正案(应通报的数据泄露)法案(Cth)在隐私法中引入了新的IIIC部分，要求指定组织将可能造成严重损害的数据泄露通知信息专员和受影响的个人，以加强现有的信息隐私法。本文的目的是考虑资料外泄通知法例的适当公共政策基础、新条文可能的运作范围，以及该法例在加强资料保安方面的优点。虽然本文侧重于澳大利亚的立法框架，但也将考虑2016年4月27日欧盟新颁布的《通用数据保护条例2016/679》的规定，以扩大对该领域适当法律的讨论。本文最后将确定持续关注的领域，并建议进一步加强个人数据隐私的举措。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Strengthening data privacy: the obligation of organisations to notify affected individuals of data breaches

ABSTRACT The Privacy Amendment (Notifiable Data Breaches) Act 2017 (Cth) introduced a new Part IIIC into the Privacy Act to strengthen the existing information privacy laws by requiring the designated organisations to notify the Information Commissioner and affected individuals of data breaches that are likely to cause serious harm. The objective of this article is to consider the proper public policy basis for data breach notification laws, the likely ambit of operation of the new provisions and the merits of the law in enhancing data security. Whilst the article focuses on the Australian legislative framework, the provisions European Union’s new General Data Protection Regulation 2016/679, 27 April 2016, will also be considered to extend the discussion of appropriate law in this area. The article will conclude by identifying continuing areas of concern and suggesting initiatives to further strengthen the data privacy of individuals.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

International Review of Law, Computers and Technology Social Sciences-Law

CiteScore

3.70

自引率

0.00%

发文量