ENG

Data Protection - Tougher Penalties for Serious Data Breaches

Published

Oct 28 2022

Written By

emma croft Module
Emma Croft

Senior Associate
Australia

I am a senior associate in our Dispute Resolution Group in Sydney, specialising in media and technology disputes, commercial litigation and privacy and cybersecurity advisory work.

Related

Practices

Regions

Countries

Offices

On 22 October 2022, the Australian Government announced that it will introduce legislation next week to significantly increase penalties for repeated or serious privacy breaches.

The Privacy Legislation Amendment (Enforcement and Other Measures) Bill 2022 (Bill) will increase maximum penalties for serious or repeated privacy breaches under the Privacy Act 1988 (Cth) (Act) from the current $2.22 million penalty to whichever is the greater of:

  1. $50 million;
  2. three times the value of any benefit obtained through the misuse of information; or
  3. 30% of a company’s adjusted turnover, during the breach turnover period if the court cannot determine the value of the benefit under (b).

The “breach turnover period” will be the longer of either:

Full article available on Disputes +

Read More

Latest insights

More Insights
featured image

KSA: SDAIA Opens Consultation for New Data Protection Consultancy Rules

3 minutes May 01 2025

Read More
featured image

Coimisiún na Meán Publishes Its Strategy Statement 2025–2027

3 minutes Apr 25 2025

Read More
Curiosity line teal background

UK/EU data protection in financial services round-up – 2025 so far….

5 minutes Apr 23 2025

Read More
More Insights