General Data Protection Regulation (GDPR) Guidance for Australian businesses
In May 2017, The Office of the Australian Information Commissioner (OAIC) published new guidance for Australian businesses on the European Union’s (EU) General Data Protection Regulation (GDPR) requirements. From 25 May 2018 Australian businesses of any size may need to comply with the GDPR if they have an establishment, offer goods and services or if they monitor the behaviours of individuals in the EU.
The GDPR has similar requirements to the Privacy Act 1988, and provide additional measures around data handling, which foster transparent information handling practices and business accountability (Read more here: https://goo.gl/sTjqFg )
In the lead up to the GDPR taking effect, businesses should confirm whether they meet requirements and if not, take the necessary steps to implement changes to ensure they are compliant.
If your business requires support, guidance or advice with GDPR compliance, contact ES2 to discuss compliance and assessment strategies.