Skip to content
Home Info & Advice

Privacy Act 2020

Are your staff aware that the new rules of the Privacy Act 2020 came into effect on 1 December? There are new legal requirements which your company and staff must comply with.The Act introduces greater protection for individuals and some additional obligations above and beyond the previous act. Not only are you required to comply with the Act, but there are also increased fines for organisations that do not comply, and new rules when sending personal information overseas.

If your company collects personal information about people, you need to ensure that all staff who are involved with this information understand your legal obligations.

Changes you may have heard about in the news include the requirement to report serious privacy breaches to the Privacy Commissioner and to any people who may have been affected.

The Act introduces new criminal offences with fines of up to $10,000 for committing offences, such as destroying personal information, knowing that a request has been made to access it.

You can get more information from the official website of the Privacy Commissioner here.

 

Contact us

Facebook
Twitter
LinkedIn
  • Read more

Related Posts

Being hacked isn’t that big a deal. What you do after, is..

So, in recent times we’ve seen airline Qantas falling victim to a cyberattack which hit a third-party contact centre platform potentially exposing personal details of up to 6 million customers. On the NZ side of the ditch, New World took an arrow to the knee with a password spraying attack.
  • News

Remote Work Security Strategies.

The landscape of remote work has transformed dramatically over the past several years. What began as a reactive shift to keep operations going during a major global disruption has now solidified into a permanent mode of working for many organisations, especially small businesses.

Client Advisory – July 2025.

On Friday, 30th June 2025, Qantas confirmed a cyber incident affecting one of its offshore third-party contact centres. Approximately six million customer records were accessed, exposing personal information including names, contact details (email and phone number), Date of Birth and frequent flyer numbers. No financial or authentication credentials (such as passwords or card data) were determined to be accessed at this time.