Proactively protect your business – operationally and legally

With mandatory data breach notification laws now in force in Australia and the online nature of many businesses now meaning they fall under international privacy laws such as the EU’s General Data Protection Regulation, it has never been more important for businesses to have control over their information.

The reality is, just about every business in every industry collects sensitive information from a variety of sources. Customer databases, online and offline payment transactions, websites and surveys are just some of the avenues from which our businesses collect and store customer data.

Our team advises businesses on how to collect and store sensitive information in a manner that is legally compliant, commercially useful and efficient in process.  We’re also passionate about helping you beyond compliance.  We advise clients in a number of industries on how to mitigate data breaches and manage the risks of customer information on external platforms such as cloud-based software-as-a-service platforms, website hosts and of course, social networks.

Our experience includes advising on planning, responding, and dealing with a data breach event, including advising on disclosure obligations, working with law enforcement and recovering against participants. We also advise on implementing cyber insurance programs including assisting with claims and other risk mitigation strategies.


Thought Leadership & Past Experiences

Should we be worried? The impact of the Google GDPR decision for Australian companies

Google has been fined €50 million by the French data protection agency, Commission Nationale de l’Informatique et des Liberts (CNIL). Whilst the penalty likely caused more than a sharp intake of breath from Google executives, it would have also caused...
14 May, 2019

‘Data is not unique to Google and Facebook’: Recent proposed amendments to the Privacy Act

Proposed changes to the Privacy Act could signal a new approach to regulating privacy compliance.
8 May, 2019

I didn’t use the BCC email function – have I just breached privacy laws?

Sent a mass email and didn’t BCC all recipients? You could be breaching data breach notification laws.
7 February, 2019