Under the Notifiable Data Breaches (NDB) scheme, organisations and IT providers are obligated to notify individuals where personal information involved in a data breach and likely to result in serious harm. At Evongo, we are dedicated to protecting our clients and ensuring we are compliant with all obligations.
What are my obligations in the case of a data breach?
The Privacy Amendment (Notifiable Data Breaches) Act was passed in 2017 and requires organisations to:
- notify individuals where their personal information is involved in a data breach situation and could result in serious harm
- recommend steps individuals can take
- notify the Australian Information Commissioner about eligible data breaches
- be prepared to undertake suspected data breach assessments to determine the severity of the breach and likely impact.
The NDB applies to Australian Government agencies, credit reporting bodies, health service providers and businesses and not-for-profit organisations with an annual turnover of $3 million or higher. You can find out more via the Office of the Australian Information Commissioner website.
How can our IT providers protect your business?
Our trained specialists conduct vulnerability assessments and testing to understand potential points of weakness in your business, and install security frameworks and programs. We can:
- perform penetration testing to assess how effective your business security measures are
- install and test firewalls
- encrypt data using a VPN
- enforce access control and web security policies
- monitor emails and mobile devices.
At Evongo, we ensure all staff are educated and trained in the latest IT systems, data, access and protocols, and all staff policy documents are kept up to date – so we can help you protect your business and your data.
Please contact us for more information.