Office of the Australian Information Commissioner

International Access to Information Day is held on 28 September every year and recognises the community’s right to access government-held information.   This year, the OAIC will use the UNESCO theme: ‘mainstreaming access to information and participation in the public sector’.   We’re planning an event for freedom of information practitioners, which will be held in Canberra and livestreamed on Wednesday 25 September.   Stay tuned for information about the event and our supporter toolkit.   #InternationalAccessToInformationDay #IAID2024 #IAID #AccessToInfoDay #AccessToInfo

Our colleagues share some ways access to government-held information has empowered them or a community. #OpenGov #FOI #FreedomOfInformation #Transparency

The 4 members of the Digital Platform Regulators Forum (DP-REG) – the OAIC, ACCC, Australian Communications and Media Authority (ACMA) and eSafety Commissioner – met last week. Members reflected on activities over the past financial year, which are summarised in a yearly wrap up released today: https://lnkd.in/g9MwCCvE We agreed to goals that guide the purpose, direction and objectives of DP-REG: - to build capacity - to promote regulatory coherence - to respond to emerging risks and opportunities. DP-REG members have also agreed on strategic priorities for 2024–26 to progress these goals with a view towards ensuring Australia’s digital economy is a safe, trusted, fair, innovative and competitive space. Read more: https://lnkd.in/ggqMG6FH

Our Information Publication Scheme (IPS) review showed that 67% of Australian Government agencies have websites that include information about how to complain about an IPS entry. If your agency is one of the 33% who don’t do this, we encourage you to publish information about how individuals can make a complaint or provide feedback on your IPS. Providing clear mechanisms for feedback builds trust and better lines of communication with the community – key components of a participative democracy.  

Our 3 commissioners joined the Law Council of Australia yesterday for a discussion about the future direction of privacy, freedom of information and information management in Australia. If you missed the event, you can now watch the recording: https://lnkd.in/geKceVZY   #Privacy #FOI #InformationManagement

We have signed a memorandum of understanding (MoU) with ASIC for the sharing of data and privacy breach information. Australian Information Commissioner Angelene Falk said, ‘Protecting the public interest is best served by ensuring a joined-up approach by regulators that can efficiently and effectively deal with matters that cross regulatory domains. This MoU supports that approach.’ Read more: https://lnkd.in/en4Pi3N6

The OAIC has been advised by former prescription delivery service provider MediSecure that approximately 12.9 million individuals may have had their personal and limited health information relating to prescriptions, as well as healthcare provider information, exposed in a cyber security incident. MediSecure has issued a public statement on the data breach, which includes an outline of the types of personal information impacted: https://lnkd.in/gdKTAS75 The Australian Government has updated its advice for individuals on what to do to protect yourself if you think your personal information has been compromised: https://lnkd.in/gbsJ8aTc If a data breach causes distress, there are support and resources available: https://lnkd.in/g5cAQWFW

Our Information Publication Scheme (IPS) review showed only 55% of Australian Government agencies have assigned responsibility for the management or coordination of staff training and awareness of IPS obligations. Appointing an information champion who is responsible for driving activities such as training will help to make gradual improvements towards a culture of proactive publication.   Working towards best practice will also place the agency in a better position to meet community expectations and build trust.

ICYMI last week, the Global Privacy Enforcement Network (GPEN) published the results of its annual privacy sweep. This year’s sweep looked at the use of deceptive design on websites and mobile apps to influence privacy choices. The OAIC encourages organisations to avoid deceptive design and instead build good, transparent privacy practices into the design of websites and mobile apps. Taking a ‘privacy by design’ approach can help to build consumer trust. #DeceptiveDesignPatterns #DarkPatterns

The Information Publication Scheme (IPS) requires Australian Government agencies to publish specified categories of information. Our review of the IPS found over 70% of agencies indicated they publish each of the required types of information on their website. The types of information least likely to be published were: - information in documents routinely released in response to freedom of information requests (73%) - consultation arrangements for the public to comment on agency policy proposals (75%). We encourage agencies to actively and regularly consider what information is of value to the public and publish that information. The community looks to government agencies for trustworthy information to guide them on important matters. Proactively publishing information is a key way to build trust.