Despite the necessary legislation not having been passed, the federal government is “streamrolling” ahead with its plan to launch a national facial recognition database and is already on the hunt for a private provider to build out the new services. The Department of Home Affairs last week approached the market for a provider to deliver identity matching services, including to host the new National Driver Licence Facial Recognition Solution (NDLFRS). This database, incorporating drivers licence photos from state and territory governments, has been launched but is not yet in operation because the necessary legislation has still not passed through Parliament. The move to issue a tender for this week, before the legislation has been passed, has been criticised by privacy advocates as putting the cart before the horse, with calls for a moratorium on facial recognition technology until better privacy precautions are in place. Read More
Open letter: Australian Border Force warrant-less seizure of comms
The Australian Privacy Foundation (APF) is alarmed by the ongoing privacy incursions enabled by Government legislation reported in the media this week, stating that returning Australian travellers were asked to write their passcodes on paper before a Border Force official seized their smartphones and disappeared with these for around 30 minutes without a warrant.
Read More
Why can’t Aunty get the ABCs of privacy right?
The ABC says it is “committed to protecting your privacy”. So why are they giving our data to Facebook and Google? The ABC Privacy Policy was updated in late 2021, to “reflect some changes to the way in which your information will be handled as we look to help Australians find more content likely to be of interest to them”. The changes include “disclosing hashed email addresses to Google and Facebook to show you promotions for ABC Content likely to be of interest to you on those platforms, unless you choose to opt out”. In other words, if you have an ABC Account (e.g. if you login to watch iview or use the ABC Listen app), you will be individually profiled and potentially targeted by Facebook or Google, based on information about you given to those companies by the ABC – unless you have first figured out this practice is going on and then activated your privacy settings to opt out. Read More
Open Letter: Frontier software data breach and Ambulance SA data breach
This open letter from the Australian Privacy Foundation (APF) primarily responds to the recent Frontier software data breach, which rapidly followed on the heels of knowledge about the Ambulance SA data breach. As of yet, no publicly available response or remedial follow up has occurred in the context of the Ambulance breach, nor have affected individuals been contacted about the data loss. Read More
Privacy law reform in Australia – the good, the bad and the ugly
On 25 October 2021 the Australian government released a Discussion Paper crammed full of proposals to amend the national privacy law, as well as a Bill intended to progress certain reforms ahead of the rest. Here’s what you need to know, to help you prepare for what’s likely ahead, or to draft a submission in response to the proposals. Read More
Kiss your privacy goodbye when you use an ambulance? The Australian Privacy Foundation says No.
People in South Australia need real answers and real responses to yet another data breach. The SA Ambulance Service has disclosed that the personal details of 28,000 patients have been stolen. Those details include people’s name, date of birth, age, address, and in some cases, their pension number and health notes. Juanita Fernando, chair of the Australian Privacy Foundation’s (APF’s) Health Committee said, “That’s prime fodder for identity theft and something we all need to take seriously.” The Ambulance Service says the data was on a storage device that was stolen from a consultancy firm in July. The consultants had apparently held the data since the early 2000s. Read More
Victorian information sharing Bill a threat to privacy
The Victorian Government’s Health Legislation Amendment (Information Sharing) Bill 2021 was rushed through its first parliamentary vote on 14 October 2021, raising many unanswered questions for patients and health care professionals in that state. Put plainly, this legislation allows agents of the Victorian Government a complete record of every Victorian person’s most sensitive and private information. The powers embodied in the Bill are unprecedented. Why does the Victorian Government need to harvest and store such a rich database of patient information? Read More
A new proposed privacy code promises tough rules and $10 million penalties for tech giants
This week the federal government announced proposed legislation to develop an online privacy code (or “OP Code”) setting tougher privacy standards for Facebook, Google, Amazon and many other online platforms. These companies collect and use vast amounts of consumers’ personal data, much of it without their knowledge or real consent, and the code is intended to guard against privacy harms from these practices. The higher standards would be backed by increased penalties for interference with privacy under the Privacy Act and greater enforcement powers for the federal privacy commissioner. However, relevant companies are likely to try to avoid obligations under the OP Code by drawing out the process for drafting and registering the code. They are also likely to try to exclude themselves from the code’s coverage, and argue about the definition of “personal information”. Read More
Attorney General’s Department releases discussion paper on reform to the Privacy Act 1988
On 25 October the Attorney General’s Department released its long awaited Privacy Act Review Discussion paper (the “Paper”). It is far from comprehensive. It avoids making recommendations about a statutory tort of privacy. Rather it continues the continual policy loop as governments of every persuasion push this issue into further review, then consultation then bury it in a report and then hope it goes away until it is recommended or otherwise finds itself before the Government. It has been a hugely expensive, time intensive waste of time. Read More
The government wants to expand the ‘digital identity’ system that lets Australians access services. There are many potential pitfalls
The federal government has been asking the public for feedback on proposed legislation to create a “trusted digital identity” system. The aim is for Australians to use it to prove their identity when accessing public services. But what will a national digital identity system actually involve, who will it serve, and if we need it, how should it be implemented? Read More