News

Audit of awareness of privacy obligations

February 12, 2019 - 9:40am

On Tuesday, 12 February 2019, we tabled our report in Parliament on how three government agencies educate and train their employees about their privacy obligations.

The public entrusts Queensland government agencies with their personal information in delivering their services to the community. The inadvertent or deliberate disclosure of personal information in carrying out these services can have serious consequences for the individual whose privacy has been breached, the organisation and the employee responsible for the breach.

Read more...

Storm and flood event impacts on RTI Act and IP Act timeframes

February 11, 2019 - 8:40am

The recent storm and flood events in Queensland may impact on the ability of agencies and applicants to meet the timeframes prescribed under the Right to Information Act 2009 (Qld) (RTI Act) and the Information Privacy Act 2009 (Qld) (IP Act) for making decisions, lodging applications for review and handling privacy complaints.

Read more...

Safer Internet Day

January 21, 2019 - 1:53pm

Safer Internet Day will be held on 5 February 2019.

Read more...

We need your feedback!

January 16, 2019 - 4:48pm

The Office of the Information Commissioner (OIC) is currently reviewing its website to look at where we can make changes to deliver a better experience for our stakeholders.

To help us understand more about what you want, need and expect we invite you to participate in a short survey.

Read more...

GDPR & Queensland Government Agencies

January 16, 2019 - 4:46pm

The European Union’s (EU) General Data Protection Regulation (GDPR) came into effect on 25 May 2018. It aims to harmonise data privacy laws across Europe and replaces existing national data protection rules. The UK Information Commissioner’s Office (ICO) has issued a formal enforcement notice in an extra-territorial area (to a Canadian data analytics firm). This confirms that the GDPR regime not only applies to companies within the European Union, but also other areas so long as the processing activities relate to data subjects within the EU.

Read more...