Template – Privacy Audit Report
Template – Privacy Audit Survey
CHECKLIST – Common Privacy Risks and Controls
Briefing Paper – Privacy, Marketing and Cookies
Template – PIA Report
CHECKLIST – Handling a Privacy Complaint
Untangling the APPs – A flowchart guide to using and disclosing personal information
A handy guide to help you untangle the complexities of privacy law.
Our clients often ask us to advise on a seemingly simple question: Can we use or disclose this?
In reality, the question is: Can we use X type of information, for Y purpose?
Or: Can we disclose X type of information, to the recipient Y, in circumstances Z?
Finding the answer amongst the tangle of the Australian Privacy Principles, and various exemptions and exceptions, can be frustratingly complex. For example, some rules only cover health information; some cover personal information but not ‘sensitive information’; some cover cross-border disclosures, but others don’t.
So how do you find your way through the maze?
Untangling the APPs is designed to help you quickly navigate your way through the Use and Disclosure principles in the Australian Privacy Act. It is relevant for private sector organisations and Australian government agencies alike.
Untangling the APPs offers a set of seven visual flowcharts, with yes/no answers determining your path, to quickly guide you through APPs 6-9, and all the exemptions to those principles. As well as the Use & Disclosure principle (APP 6), it incorporates the rules about direct marketing (APP 7), cross-border disclosures (APP 8), and government related identifiers (APP 9).
So now you can quickly figure out the answer to the question: Can we use or disclose this?
Click below to purchase Untangling the APPs – A flowchart guide to using and disclosing personal information.
Alternatively, this eBook can be included along with other resources in one of our value-packed Compliance Kits.
We accept credit card, debit card or PayPal. Questions? See our eBook FAQs.
‘Untangling the APPs’ offers a set of visual flowcharts to quickly guide you through the Use and Disclosure principles – and all the exemptions to those principles – in the Australian Privacy Act.
Template_NSWPSA_Staff Undertaking
Template_NSWPSA_Privacy Risk Assessment Procedure_optional Flowchart
Template_NSWPSA_Privacy Risk Assessment Procedure
Template_NSWPSA_Privacy Manual
Template_NSWPSA_PIA Report
Template_NSWPSA_Data Governance Protocol
Template_NSWPSA_Data Breach Response Plan
Template_NSWPSA_Contract Clauses
Template_NSWPSA_Collection Notices and Consent Forms
Template – Privacy Risk Assessment Procedure: Flowchart
Template – Best Practice Privacy Principles
Briefing Paper – GDPR in a Nutshell
Briefing Paper – Australian privacy law index
CHECKLIST – 10 steps towards GDPR compliance
CHECKLIST – Cloud computing and the cross-border disclosure rule
CHECKLIST – Risks to avoid when selecting and configuring CRM systems
The Privacy Officer’s Handbook
Template – Privacy Policy
Template – Data Breach Response Plan
Template – Privacy Manual for Staff
Template – Data Governance Protocol
Template – Privacy Impact Assessment Framework
Template – Contract Clauses
Template – Collection Notices and Consent Forms
Template – Staff Undertaking
Demystifying de-identification
An introductory guide to de-identification for privacy professionals, risk managers … and anyone else who feels a bit bewildered
When it comes to de-identification, you can’t apply privacy or data protection law, or assess project risk, until you first understand the relative merits and limitations of different de-identification techniques. There are detailed, lengthy guides available for statisticians and data scientists, but what if you want something more accessible as an introduction?
This concise eBook will improve data literacy for privacy, risk & compliance and legal professionals. It covers:
- Why de-identification matters in privacy law
- Why de-identification matters in business practice
- Managing risk: (re)identification and other privacy harms
- A plain language guide to different de-identification techniques, including their strengths and weaknesses, and
- A checklist of factors to consider for any given de-identification proposal.
If you want to understand how de-identification fits into privacy or data protection law, a simple illustration of how each different technique works, and a plain language overview of the strengths and weaknesses to factor into risk assessment considerations, this guide is for you.
Our guide provides a useful introduction to the topic in any jurisdiction.
This fourth (2020) edition has been updated to include new resources published since our first edition in 2017, including guidance from the National Health & Medical Research Council, Australian Computer Society and the Office of the Victorian Information Commissioner, as well as an intro to privacy-preserving computation techniques.
Click below to purchase Demystifying De-identification.
Alternatively, this eBook can be included along with other resources in one of our value-packed Compliance Kits, or with an accompanying eLearning module in our De-identification Bundle.
We accept credit card, debit card or PayPal. Questions? See our eBook FAQs.
“Salinger Privacy is extra-ordinarily effective at integrating law, technology and compliance to provide practical guidance.
The de-identification resources are the best effort at making de-identification easy to understand that I have ever come across.”
– Jules Polonetsky, CEO, Future of Privacy Forum
Untangling Privacy – A flowchart guide to the NSW Disclosure rules
A handy guide to help you untangle the complexities of privacy law.
Our consulting clients often ask us to advise on a seemingly simple question: Can we disclose this?
In reality, the question is: Can we disclose X type of information, to the recipient Y, in circumstances Z?
Finding the answer amongst the tangle of privacy principles, exemptions, exceptions, case law and interpretations offered by the Privacy Commissioner can be frustratingly complex. For example, in NSW privacy law there are thirteen differently-phrased exemptions relating to disclosures for law enforcement and investigations alone! Some rules only cover health information; some cover personal information but not ‘sensitive information’; some cover ‘transborder’ disclosures, but others don’t.
So how do you find your way through all the principles, exceptions and exemptions?
Untangling Privacy is designed to help you quickly navigate your way through the NSW privacy laws. It is relevant for private sector organisations and State-owned corporations regulated by HRIPA, and NSW public sector agencies (including universities and local councils) regulated by both PPIPA and HRIPA.
Untangling Privacy offers a set of six visual flowcharts, with yes/no answers determining your path, to quickly guide you through the Disclosure principles – and all the exemptions to those principles – that apply in NSW. It reflects the legislation as at July 2020.
Untangling Privacy works as a companion guide to our annotated guide to the NSW privacy laws, PPIPA in Practice, which is updated quarterly to reflect the latest case law. PPIPA in Practice incorporates interpretations of both PPIPA and HRIPA, from the more than 400 cases decided to date.
While Untangling Privacy provides the handy navigation tool to steer you in the right direction towards finding the legislative provision most relevant to your circumstances, PPIPA in Practice then fleshes out the detail.
Think of it like this: Untangling Privacy is your map, and PPIPA in Practice is the instruction manual to fly your plane.
So now you can quickly figure out the answer to the question: Can we disclose this?
Click below to purchase Untangling Privacy – A flowchart guide to the NSW Disclosure rules.
Alternatively, this eBook can be included along with other resources in one of our value-packed Compliance Kits.
We accept credit card, debit card or PayPal. Questions? See our eBook FAQs.
‘Untangling Privacy’ offers a set of visual flowcharts to quickly guide you through the Disclosure principles – and all the exemptions to those principles – that apply in NSW.
Big Data – An Ethical Framework for Protecting Privacy
Can we realise the value of Big Data, but maintain our privacy too?
In an information economy, data is the new oil. The computing analytics power of Big Data promises much, but its value cannot be realised without customer trust.
Drawing together global research into the factors that influence customer trust, and our own experience guiding clients through advanced analytics and business intelligence projects, we have developed a framework to balance business objectives with legal and ethical concerns about Big Data.
This eBook will guide you through how to build privacy protection into your Big Data projects.
Click below to purchase Big Data – An Ethical Framework for Protecting Privacy.
Alternatively, this eBook can be included along with other resources in one of our value-packed Compliance Kits.
We accept credit card, debit card or PayPal. Questions? See our eBook FAQs.
This guide offers practical insights into how organisations can engender customer trust, and thus allow the value of their Big Data projects to be realised.
PPIPA in Practice
Need to understand NSW privacy law? Here is your bible. 464 cases read and annotated, and still going strong.
Now in its 14th year of publication, PPIPA in Practice is our signature publication – available as a single-purchase eBook, or as an annual subscription with quarterly updates. The latest edition is also included in both our Premium Compliance Kit and Compliance Kit for NSW Public Sector Agencies.
PPIPA in Practice is a fully annotated guide to the Privacy and Personal Information Protection Act 1998 (NSW). ‘PPIPA’ is the key Act that applies to State government agencies, universities and local councils in NSW. It also includes all cases decided under the Health Records & Information Privacy Act 2002 (NSW), known as ‘HRIPA’, which applies to the private sector in NSW as well as public sector agencies.
Whether you are a privacy officer needing advice, a lawyer advising a client, or a member of the public trying to frame a privacy complaint, PPIPA in Practice is designed to provide you with quick and comprehensive information about how each section of PPIPA (and HRIPA) are being interpreted and applied in practice.
PPIPA in Practice brings together information and interpretations from over 460 NSW privacy cases decided since 2001, including seminal Court of Appeal cases. It also incorporates the Privacy Commissioner’s advice on the legislation, drawn from various guidelines, newsletters and submissions.
The guide is constantly updated so you have the latest information available.
PPIPA in Practice answers common questions such as:
- what is included in the definition of “personal information”?
- are photographs or CCTV footage “personal information”?
- how does the “suitability for employment” exemption work?
- what form should a collection notice take?
- do customers need to consent to our privacy policy?
- what are the “reasonable security safeguards” each agency needs to take?
- what do “express consent” and “implied consent” mean in practice?
- when will the “law enforcement” exemption apply?
- how much compensation can be paid for a privacy breach?
… and plenty of uncommon questions too.
PPIPA in Practice also works as a companion guide to Untangling Privacy, our flowchart guide to the Disclosure rules that apply under NSW law.
Click below to purchase the latest edition of PPIPA in Practice for $450 + GST, or contact us to arrange an annual subscription (four editions p.a.) for $900 + GST.
Alternatively, the latest edition is included along with other resources in either our Premium Compliance Kit and Compliance Kit for NSW Public Sector Agencies.
We accept credit card, debit card or PayPal. Questions? See our eBook FAQs.
“Around here we call it the bible.”
“I love ‘PPIPA in Practice’, it’s a great tool for me as a privacy professional”
“(I) have your guide it’s brilliant”
Anonymous comments on our 2017 customer feedback survey
Conducting Workplace Surveillance
Every employer in NSW, no matter how small, must comply with the NSW Workplace Surveillance Act.
As the leading experts in NSW privacy law, we have developed a practical, 40-page guide to your obligations. Conducting Workplace Surveillance includes:
- a clear and concise explanation of what you can and can’t do
- plain language definitions
- answers to 37 frequently asked questions
- tips and examples to illustrate how the law works in practice
- template forms
- a checklist and flowchart to guide you through every step along the way
Revised in 2020 to incorporate the impact of a recent unfair dismissal case involving workplace CCTV, Conducting Workplace Surveillance provides you with the advice you need: a clear, comprehensive, step-by-step guide to your obligations.
Click below to purchase Edition 5 of Conducting Workplace Surveillance.
Alternatively, this eBook can be included along with other resources in one of our value-packed Compliance Kits.
We accept credit card, debit card or PayPal. Questions? See our eBook FAQs.
Does your organisation use CCTV, an email or internet monitoring system, or GPS in fleet vehicles? All employers in NSW need to understand their obligations under this legislation.
