Award winning team, responsive time frames and fixed fee solutions

Need an expert data & privacy lawyer to protect your retail business?

Managing privacy and data is imperative for any business, especially those who collect personal information. Did you know that any entity covered by the Privacy Act, must now provide mandatory data breach notifications within 30 days of becoming aware of a data breach has occurred? Furthermore, any business which stores personal information should provide for destruction of that information or risk facing hefty fines.

Privacy and DataBusinesses with a turnover of over $3 million or those who collect ‘sensitive information’, require a Privacy Policy.  However, many businesses choose to implement a Privacy Policy in their business to encourage customer trust and to provide clear guidelines for the business when dealing with data, which can mitigate potential liability in the future. Our lawyers can help your business to comply with the Privacy Act and draft your Privacy Policy.

In addition to work relating to Privacy Policies, we can also assist with data breach issues, including preparing mandatory data breach notifications and providing advice if your business suffers a data breach.

Gladwin Legal's privacy policy and data breach lawyers can assist you with

  • Privacy Policy
  • Data breach notification procedures and policies
  • Privacy law compliance advice (including the Privacy Act, Spam Act and Do Not Call Register Act)
  • General information regarding the General Data Protection Regulation (GDPR)

Frequently Asked Questions

In addition to compliance the Australian Privacy Principles, there has been a recent change to European privacy law known as the General Data Protection Regulation (GDPR) which requires some international businesses to comply.  The GDPR contains a number of stricter requirements which means that it is important that your processes and Privacy Policy complies.  Please let us know if you offer goods/services to Europe as part of your business when enquiring about Privacy Policies.

We highly recommend that all businesses seek legal advice as soon as they become aware of a data breach as it is important to take steps to reduce liability as quickly as possible.

However, only businesses that have a turnover of more than $3 million need to comply with the Notifiable Data Breaches scheme (NDB scheme) where notification of a data breach is mandatory in some instances.

Under the NBD scheme, if a business has reasonable grounds to believe that a data breach, containing personal information, has occurred, that is likely to result in serious harm to any affected individual, then it must not only notify the affected individuals but also notify the Office of the Australian Information Commissioner.