Privacy update – Final APP guidelines published

facebook Twitter LinkedIn RSS

The final guidelines for the 13 Australian Privacy Principles (APPs) that will underpin the new Privacy Laws, which commence on March 12, have now been released.

The guidelines, which are published on the website of the Office of the Australian Information Commissioner (OAIC), outline the mandatory requirements organisations will need to fulfil to comply with the changes in the Privacy Act.

The guidelines also help remove any potential areas of confusion by providing the Privacy Commissioner’s interpretation of the 13 APPs. While the guidelines are not legally binding themselves, they provide a clear understanding of how the OAIC will interpret the new laws  and its expectations with respect to compliance.

The 13 APPs represent the most significant change to privacy laws in Australia since they were first introduced in 1988. They apply to all entities unless they have annual revenues of less than $3m and do not provide a health service.

A central feature of the new laws is that entities must have procedures, practices and systems integrated into their organisational governance framework to ensure compliance with each of the 13 APPs and to manage privacy queries and complaints.

Key changes include stricter rules on sending personal information overseas, complaints handling, the use of personal details for direct marketing, the security of personal information and the treatment of unsolicited information.

The new laws also, for the first time, give the Privacy Commissioner teeth with fines of up to $1.7 m for companies and $340,000 for individuals for breaches of the Privacy Act.

How can CompliSpace help?
CompliSpace combines specialist governance, risk and compliance consulting services with practical, technology-enabled solutions.

If you are looking to update your existing governance, risk or compliance programs and make them more relevant to your organisation, contact us via the details below:

P: 1300 132 090



This blog is a guide to keep readers updated with the latest information. It is not intended as legal advice or as advice that should be relied on by readers. The information contained in this blog may have been updated since its posting, or it may not apply in all circumstances. If you require specific or legal advice, please contact us on (02) 9299 6105 and we will be happy to assist.

Compliance with Current and Future Child Protection Laws – Embedding a Child Protection Culture. How can this be achieved?

Financial Services Updates

Financial Services Updates