Across 2-3 December, the IAPP ANZ Summit was held in Sydney – the largest ever gathering of privacy professionals in our region, with more than 500 attendees. The Helios Salinger team was out in force, catching up with old friends, making new con…
Archives for 2025
Is identifiability in the eye of the beholder? EU case tests limits of pseudonymisation
In Australia, our information privacy rights turn on the threshold definition of ‘personal information’. If data meets the definition of ‘personal information’, there will be privacy obligations attached to it; otherwise, all bets are off. The co…
Mind the gap: when legal permission is not enough to ensure compliance
A recent NSW case illustrates the complexity of obtaining lawful authority to disclose personal information – and the equal importance of on-going vigilance, to ensure compliance. Rather than privacy compliance being determined with a single assessment…
Why “Don’t worry it’s de-identified” should (still) be a red flag when considering privacy risk
‘Fingers crossed’ is not smart business strategy. The Privacy Commissioner’s report into I-MED shows that to pursue innovation and compliance, getting de-identification right is complex – but worth it. Last month’s Office of the Australian Information…
How to get ahead of the new ADM rules before they rule you
Are you across the new Automated Decision-Making transparency requirements? Getting ready to comply with the changes will take time, so organisations should start now. Many of the first tranche privacy reforms passed in December 2024 require organisati…
Helios Salinger launches ground-breaking report on privacy maturity
How are organisations really dealing with their privacy obligations? Our new report into privacy maturity reveals a mixed scorecard for Australian businesses. Launched on 19 June 2025, the Privacy Pulse 2025: Measuring Maturity report presents the resu…
Productivity or privacy … why not both?
Now that the dust has settled on the federal election, what will happen to privacy reform? Prior to the election, Australia appeared poised for a significant uplift in privacy regulation. However, the government has now been vocal in promising a produc…
How are other organisations really managing their privacy? You’re about to find out
Australia’s first national survey on privacy maturity is almost here, and it will be a game changer for understanding how your organisation’s privacy practices are stacking up against peers. Ahead of the report launch on 19 June, here’s a sneak preview…
A new enforcement era is here: will your projects pass the OAIC’s privacy pub test?
A new age of privacy enforcement is here, with implications well beyond one sector or technology. We have taken a fresh look at recent decisions from the Office of the Australian Information Commissioner (OAIC) and the ‘privacy pub test’ you may need t…
Smart to secure: Australia’s new cyber rules for everyday devices
As digital security continues to evolve, Australia has introduced sweeping reforms aimed at tightening cybersecurity standards for consumer-grade devices. The passage of the Cyber Security Act 2024 marks a pivotal step toward addressing the growing ris…
Australians now have a direct right of action under the Privacy Act. So what’s the catch?
The Privacy and Other Legislation Amendment Act (POLA Act) reforms have changed the privacy risk landscape under the Privacy Act. For years, discussions about individual privacy rights of action have focused on two major reforms. Firstly, a statutory t…
What happens when the west coast leaps ahead of the east?
Western Australia is late to the (privacy) party, but it might just become the belle of the ball. Late last year, the Western Australian Government introduced the Privacy and Responsible Information Sharing Act 2024 (PRIS Act). The implementation…
