A privacy collision course
- {{x.value}}
{{ twilioFailed ? 'SMS Code Failed to Send…' : 'Enter verification code' }}
{{ completedStep1 ? 'Authentication & Security' : content.trialHeading.replace('{0}', user.FirstName) }}
{{ content.upgradeHeading.replace('{0}', user.FirstName) }}
The email address you entered is registered with InvestSMART
Please login to continue
We have sent you an email with the details of your registration.
Looks you are already a member. Please enter your password to proceed
{{ upgradeCTAText }}
Updating information
Please wait ...
Your membership to InvestSMART Group recently failed to renew.
Please make sure your payment details are up to date to continue your membership.
Having trouble renewing?
Please contact Member Services on support@investsmart.com.au or 1300 880 160
You've recently updated your payment details.
It may take a few minutes to update your subscription details, during this time you will not be able to view locked content.
If you are still having trouble viewing content after 10 minutes, try logging out of your account and logging back in.
Still having trouble viewing content?
Please contact Member Services on support@investsmart.com.au or 1300 880 160
Please click on the ACTIVATE button to activate your Intelligent Investor 15-day free trial
Please click on the ACTIVATE button to finalise your membership
Unsuccessful registration
Registration for this event is available only to Eureka Report members. View our membership page for more information.
Registration for this event is available only to Intelligent Investor members. View our membership page for more information.
- You are already registered for this event.
- This event is already full.
- Please select a quantity for at least one ticket.
- {{ i }}
Forgotten password
Please enter your email address below to request a new password
- Verify your email address by clicking on the link we sent to {{user.Email}}
- You now have free access, we look forward to helping you on your financial journey.
National Privacy Principles, legislated this year after five years of development, are not intended to make life simpler for business in the short term.
Indeed, for many businesses, it has raised quite a few questions about how their present practices reconcile with the principles, and whether they will need to do things differently.
Many other businesses who to date have not even heard of the National Privacy Principles are likely to find that they have to think about the way they treat their customers’ and clients’ information in coming months and years.
Principles are like that. They are intended to set a standard that sits above daily practice where they can act as a benchmark against which particular circumstances and practices can be measured.
The Privacy Commissioner is an important – perhaps the central – intermediary in this process.
Its job is to help translate the Principles and, in some cases, to enforce them.
One would think that other regulatory agencies with responsibility for particular industries would understand and respect the importance of this process.
After all, while implementing the principles is likely to create short term pain, irritation and possibly complaints from businesses, they are there to ultimately help create consumer confidence to ensure that there is economy wide certainty for businesses and their customers about rights and obligations.
That is core business for the regulatory agencies who have the job of overseeing particularly sensitive parts of the economy.
And that is why the decision by the Australian Prudential Regulatory Agency to ignore the advice of the Privacy Commissioner about what APRA should be telling lenders as to how to treat the private information of Australians (as suggested in this article) is so hard to understand, not to say short sighted.
The banks were hostile to the privacy principles when they were being debated by the Parliament, fearful that they might impinge upon the banks’ ability to move large parts of their data and customer management processes overseas, to places such as India, in pursuit of lower costs.
The movement of the sensitive personal information of Australians overseas has, understandably, caused wide concerns among unions and consumers.
The Privacy Commissioner had recommended to APRA that it tell the banks that they were required to follow domestic rules when they transferred private information overseas. Rather than prevent information going overseas per se, APRA adopted the sensible approach of telling the banks that they needed to advise APRA when personal information went offshore and then put to the relevant financial institution that the privacy protections at the offshore country needed to be at least as robust as our own.
That is, the person overseeing the implementation of the principles to all industries advised the regulator overseeing one particular industry that it should tell that industry how the law applied to it. Nevermind that the industry did not like the law. You don’t have to like a law. You just have to obey it.
Astonishingly, APRA ignored the advice of its fellow regulator.
Instead, it told the banks they should take a measured and cautious approach when sending Australian clients’ data overseas and take account of the “risks”.
Why would one regulator not simply repeat the words of a fellow regulator?
One is tempted to wonder if this is an example of regulatory capture – that the regulator begins to see the industry it oversees as a client and resists saying something that might create conflict.
But the real clients of APRA are the customers of the lenders. Australian citizens are the ones the Privacy Principles aim to protect. That means some businesses face change in order for that to be delivered.
Ultimately, the lenders can’t avoid their obligations under the Privacy Principles. APRA would be doing everyone a service if it just passed on the advice of the expert agency charged with overseeing those obligations.
Matt Healy is chairman is OzHub, an association representing Australian cloud computing companies.
Call 1300 880 160
Start a chat
Schedule a call
