Practice Areas
Cybersecurity, Data Protection & Privacy
- Get free trial for practice areas as below
- Business
- Consumer
- Corporations
- Criminal
- Employment
- Family
- General Counsel
- Governance
- Immigration
- Intellectual Property
- Personal Injury NSW
- Personal Injury Qld
- Personal Injury Vic
- Personal Property Security
- Property
- Succession
- Work Health & Safety
- Tax
- Mergers & Acquisitions
- Banking & Finance
- Social Justice
- Cybersecurity, Data Protection & Privacy
- Insolvency
- Competition
LexisNexis Practical Guidance®
Straightforward guidance across a range of topics
- Mandatory data breach notification
- Notifying of an eligible data breach
Notifying the Privacy Commissioner
An entity is required to prepare a statement notifying the Privacy Commissioner of an eligible data breach and to send it the Privacy Commissioner as soon as practicable.
This statement should contain:
- • the entity’s identity and contact details;
- • a description of the eligible data breach that the entity has reasonable grounds to believe has happened;
- • the kind or kinds of information concerned; or
- • recommendations about the steps that individuals should take in response to the eligible data breach.
See Notifying the Privacy Commissioner.