information APP 13 introduces new obligations with respect to the correction of personal information. This principle now requires an organisation to take reasonable steps to correct personal information to ensure that, having regard to the purpose for which it is held, it is accurate, current, complete, relevant and not misleading. reasonable period after the request is made, and must not charge the individual for making the request. must generally provide to the individual written reasons for the refusal and notify them of available complaint mechanisms. Commissioner has been provided with significantly increased powers, which will generally be exercised by the Privacy Commissioner, to encourage and enforce compliance of the new regime. performance of businesses and agencies, which includes being able to conduct investigations and audits. The Information Commissioner will also be able to make determinations, accept enforceable undertakings, commence legal proceedings and, in cases of serious or repeated breaches, seek civil penalties of up to $340,000 against individuals and $1.7 million against bodies corporate. overview and guide to the subject matter. Specialist advice should be sought about specific circumstances. procedures, information-technology policies and confidentiality agreements. include a review of any statutory framework, complaint or legal process which applies to that provider, with respect to privacy. (Note: If this relationship is to continue, then the practice or organisation could consider seeking, but only as an additional measure, an undertaking or indemnity from the provider with respect to any future privacy breach.) Enore Panetta, Director, Panetta McGrath Lawyers, Perth on 08 9321 0522 or visit |