ADAPT by Maddocks debuts just in time for Privacy Awareness Week
Maddocks has revealed a new data and privacy tool in time for Privacy Awareness Week.
Named ADAPT by Maddocks (Australian Data and Privacy Tool), the tool was developed to help clients navigate privacy risks laid out in the Privacy Act 1988 (Cth) (Privacy Act) and the 13 Australian Privacy Principles (APPs). The tool is also designed to help users anticipate proposed amendments to these legislations by the Federal Government.
“The OAIC has clearly stated that the mandatory data breach regime under our Privacy Act is a mature regime, yet we still find organisations who don’t have a data breach response plan or have one that falls well short of regulatory expectations. While the OAIC expects organisations to be conducting Privacy Impact Assessments for new projects, many organisations don’t have a framework in place for conducting these”, said Sonia Sharma, Maddocks privacy and cyber partner and project sponsor.
She explained that Maddocks identified the need for a solution that would speedily aid organisations in clearing up their current compliance.
“From our extensive work with clients, we know it’s critical for businesses to have a baseline understanding of their current information handling practices and current compliance measures across their organisation. Having a clear understanding is key to proactively managing privacy compliance risks and improving privacy compliance maturity”, Sharma said.
ADAPT was developed with the help of Maddocks Innovus, the firm’s innovation programme. The digital tool is currently in BETA form and has been crafted to collect and analyse information concerning an organisation’s practices, policies, processes and organisational measures when it comes to handling personal information. The tool applies a survey and mapping data tool that looks to determine critical gaps in compliance.
Sharma explained that the tool comes at a time when Australia is “now considered a ‘soft target’ globally” for data breaches.
"Following the large scale data breaches of recent times, the conversation around privacy has moved from the parliament to the pub. Community expectations have changed and so have the laws. Not complying with these obligations can lead to penalties in excess of $50m for serious or repeated breaches. The reputational damage that comes from losing digital trust from customers and other stakeholders can be immense", Sharma said.
ASIC has issued warnings to boards and executives as to the possible legal action if organisations are not prepared to deal with cyberattacks.
