The Office of the Australian Information Commissioner (OAIC) has updated its Privacy regulatory action policy consistent with its privacy regulatory priorities in 2022-2023.

The four areas for privacy regulatory focus in 2022-23 are:

• Online platforms, social media and high privacy impact technologies;
• Security of personal information;
• Ensuring the privacy safeguards in the Consumer Data Right are effectively implemented by participants;
• The timely and proactive release of government-held information.

The OAIC says:

“The OAIC’s preferred regulatory approach is to facilitate voluntary compliance with privacy obligations and to work with entities to ensure best privacy practice and prevent privacy breaches. When resolving matters brought to its attention, the OAIC will take into account the steps taken by an entity to comply with its privacy obligations, in addition to considering the factors outlined in this policy.”

Its Guide to Privacy Regulatory Action sets out a detailed explanation of the OAIC’s particular privacy regulatory powers.

If you found this article helpful, then subscribe to our news emails to keep up to date and look at our video courses for in-depth training. Use the search box at the top right of this page or the categories list on the right hand side of this page to check for other articles on the same or related matters.