Select your nation of interest

Home

Some companies that have chosen us

Privacy Officer and Privacy Consultant
CDP Scheme according to ISO/IEC 17024:2012
European Privacy Auditor
ISDP©10003 Certification Scheme according to ISO/IEC 17065:2012
Auditor
According to standard UNI 11697:2017
Lead Auditor ISO/IEC 27001:2022
According to standard ISO/IEC 17024:2012
Data Protection Officer
According to standard ISO/IEC 17024:2012
Anti-Bribery Lead Auditor Expert
According to standard ISO/IEC 17024:2012
ICT Security Manager
According to standard UNI 11506:2017
IT Service Management (ITSM)
According to the ITIL Foundation
Ethical Hacker (CEH)
According to the EC-Council
Network Defender (CND)
According to the EC-Council
Computer Hacking Forensics Investigator (CHFI)
According to the EC-Council
Penetration Testing Professional (CPENT)
According to the EC-Council

Professional qualifications

Stay up-to-date with world news!

Select your topics of interest:

News

Home / News
/
AUSTRALIAN SUPERVISORY AUTHORITY: OAIC issues first 6-month COVIDSafe privacy report

AUSTRALIAN SUPERVISORY AUTHORITY: OAIC issues first 6-month COVIDSafe privacy report

Australian Information Commissioner and Privacy Commissioner Angelene Falk today released the first six-month report on the privacy protections in the COVIDSafe app.

Commissioner Falk said the report highlights the proactive work by the Office of the Australian Information Commissioner (OAIC) to ensure the system’s strict privacy measures are upheld.

“My office has worked to increase awareness and understanding of privacy protections and obligations related to COVIDSafe by developing guidance and providing advice to government, regulated entities and the community,” Commissioner Falk said

“We have also established a robust assessment program to audit the handling of personal information in the COVIDSafe system for compliance with the strict privacy protections the Australian Government put in place.”

The OAIC’s COVIDSafe Assessment Program follows the ‘information lifecycle’ of personal information collected by COVIDSafe.

During the reporting period (16 May to 15 November 2020), the OAIC commenced four assessments:

  • Assessment 1 – Access controls applied to the National COVIDSafe Data Store by the data store administrator, the Digital Transformation Agency
  • Assessment 2 – Access controls applied to the use of COVID app data by state and territory health authorities
  • Assessment 3 – Functionality of COVIDSafe against specified privacy protections set out under the COVIDSafe privacy policy and collection notices and against the requirements of the Privacy Act 1988
  • Assessment 4 – Compliance of the data store administrator with data handling, retention and deletion requirements under the Privacy Act 1988.

The OAIC received 11 enquiries about COVIDSafe during the reporting period. Seven enquiries raised general issues or concerns, and four related to a request to download or use the app.

Commissioner Falk said oversight of the operation of the privacy aspects of COVIDSafe is a key priority for the OAIC.

“The privacy protections that accompany COVIDSafe are important outcomes for privacy in Australia,” Ms Falk said.

“My office will continue to work to ensure that the protections are being applied so that Australians can be confident in the protection of their personal information within the COVIDSafe system.”

COVIDSafe-Report-May-Nov-2020-final   SOURCE: AUTORITA’ PER LA PROTEZIONE DEI DATI DELL’AUSTRALIA – OAIC

Team Privacy & Data Protection
23 November 2020

Recommended to you

Apple: 0-day detected in WebKit rendering engine (AL02/250312/CSIRT-ITA)

12 March, 2025

Adobe: Security Updates (AL03/250312/CSIRT-ITA

12 March, 2025

Joomla! Updates (AL04/250312/CSIRT-ITA)

12 March, 2025

HONG KONG SUPERVISORY AUTHORITY: Publishes Investigation Findingson the Data Breach Incident of the Companies...

12 March, 2025

Zoom Vulnerability (AL05/250312/CSIRT-ITA)

12 March, 2025

Laravel: Public PoC for CVE-2024-13919 Exploitation (AL06/250312/CSIRT-ITA)

12 March, 2025

Resolved vulnerabilities in Cisco products (AL07/250312/CSIRT-ITA)

12 March, 2025

ROMANIAN SUPERVISORY AUTHORITY: Sanction for violation of the GDPR

12 March, 2025

Schneider Electric: Vulnerabilities discovered in various products (AL03/250311/CSIRT-ITA)

11 March, 2025

Siemens Product Updates (AL04/250311/CSIRT-ITA)

11 March, 2025

Ivanti March Security Update (AL05/250311/CSIRT-ITA)

11 March, 2025

Fixed vulnerabilities in Google Chrome (AL06/250311/CSIRT-ITA)

11 March, 2025

ROMANIAN SUPERVISORY AUTHORITY: Sanction for violation of the GDPR

11 March, 2025

Vulnerabilities discovered in Fortinet products (AL07/250311/CSIRT-ITA)

11 March, 2025

LATVIAN SUPERVISORY AUTHORITY: Can my personal data be transferred to extrajudicial debt collection or...

11 March, 2025

CROATIAN SUPERVISORY AUTHORITY: A new coordinated action by the EDPB has begun: the right...

11 March, 2025

CISCO Product Updates (AL01/230112/CSIRT-ITA)

10 March, 2025

HONG KONG SUPERVISORY AUTHORITY: A Female Arrested for Suspected Doxxing Arising from Online Shopping Dispute

10 March, 2025

Vulnerability in QNAP Products (AL01/250310/CSIRT-ITA)

10 March, 2025

ICELANDIC SUPERVISORY AUTHORITY: Information obligation for automated decision-making

7 March, 2025

Advanced Research