Monash University
Browse
02. MonULR - Prictor.pdf (354.41 kB)

Mandatory Data Breach Notification Laws and Australian Health Data Privacy: Fragments and Fault Lines

Download (354.41 kB)
Version 2 2023-04-25, 09:20
Version 1 2022-12-04, 10:07
journal contribution
posted on 2023-04-25, 09:20 authored by MEGAN PRICTORMEGAN PRICTOR

Data privacy breaches — unauthorised access to, disclosure, or loss of people’s personal information — are commonplace, particularly in the health sector. In Australia, provisions under the Privacy Act 1988 (Cth) and the My Health Records Act 2012 (Cth) require data breach notification to affected people and the regulator. However, this mandatory notification, as it pertains to health information, has two key problems: fragmentation, and lack of fitness for purpose. In this article, I analyse the goals of the Australian legislative developments and the extent to which these are met in relation to health data. I propose legal and procedural reforms to mend the fragments and fault lines so that breach notification can more effectively address healthcare data breaches in Australia.  

History

Publication Date

2021

Volume

47

Issue

2

Type

Journal Article

Pages

21–47

AGLC Citation

Megan Prictor, 'Mandatory Data Breach Notification Laws and Australian Health Data Privacy: Fragments and Fault Lines' (2021) 47(2) Monash University Law Review 21

Usage metrics

    Monash University Law Review

    Categories

    Keywords

    data breach notificationhealth recorddataprivacyPrivacy ActMy Health Record

    Licence

    In Copyright

    Exports

    RefWorks
    BibTeX
    Ref. manager
    Endnote
    DataCite
    NLM
    DC