About Us

We work collaboratively with our clients to build strong, sustainable relationships. Our team is committed to delivering consistent high standards of service, and we understand the importance of accessibility. Working with us, you'll enjoy open communication, meaning well scoped, properly resourced and effectively managed matters.

Learn More

Latest Case

Providing strategic advice on expansion structures November 16, 2018

Founded in Bondi Beach in 2012, Bailey Nelson has rapidly grown into a global eyewear retailer and service provider with boutiques in Australia, London, Canada and New Zealand. The strong demand for their products and … Continued

Latest News

Maddocks advises two leading edge tech companies on their capital raisings July 8, 2019

Monday 8 July 2019 Maddocks has advised global video technology company Atomos Limited on the sale of over $27 million worth of shares released from escrow and its raise of an additional $7.5 million by … Continued

Latest Article

Unsocial media – how third party comments on your public Facebook page can get your company in trouble July 18, 2019

Media companies, and operators of public Facebook pages generally, should exercise great care and diligence to vet, monitor, and control comments published on their public Facebook pages, as they may be liable as a primary … Continued

OAIC releases Notifiable Data Breaches Scheme 12-month insights report

The Office of the Australian Information Commissioner (the OAIC) has released a report (the NDB Report) which provides interesting and helpful insights into the first year of the Notifiable Data Breaches Scheme (the NDB Scheme).

Within the NDB Report, the OAIC:

  • examines trends that have emerged under the NDB Scheme, including the common causes of data breaches;
  • reflects on the purposes of the NDB Scheme;
  • provides guidance on proactive steps that can be taken for better prevention of data breaches in the future; and
  • outlines the OAIC’s expectations for the second year of operation of the NDB Scheme.

Some of the key statistics and trends identified in the NDB Report include:

  • 964 eligible data breaches have been notified under the NDB Scheme from 1 April 2018 to 31 March 2019;
  • there has been a 712 percent increase in notifications since the introduction of the NDB Scheme;
  • in respect of cyber incidents, 153 breaches were attributed to phishing;
  • health service providers are the top reporting sector; and
  • in terms of the causes of data breaches:
    • 60 percent of data breaches were malicious or criminal attacks;
    • 35 percent of data breaches were attributed to human error; and
    • the remaining 5 percent of data breaches were caused by system error.

Importantly, the OAIC indicates that as the NDB Scheme moves into its second year, the OAIC, amongst other things:

  • expects entities to understand the underlying causes of data breaches and take proactive steps to prevent them from occurring;
  • encourages entities to move beyond compliance to support consumers (such as supporting affected individuals to take steps to minimise or prevent harm in a meaningful way); and
  • will ‘take a proportionate and evidence‑based regulatory approach in relation to the NDB scheme, including by exercising our enforcement powers where necessary’.

It’s not possible to cover all of the matters dealt with in the report within this blog post, so you may wish to take a look at the report for yourself.

Maddocks has provided a number of insights into issues relating to the NDB Scheme and privacy generally (see our recent articles on privacy resilience, readiness for the NDB scheme and the GDPR).

Maddocks’ Cyber and Data Resilience Team frequently advises a range of clients on issues relating to privacy, cyber security and data resilience, including how to respond to a data breach.

Author:
Jack Evans  | Senior Associate
61 2 9291 6178
jack.evans@maddocks.com.au
Author:
Stanley Yu  | Lawyer
61 2 9291 6179
stanley.yu@maddocks.com.au

The Office of the Australian Information Commissioner (the OAIC) has released a report (the NDB Report) which provides interesting and helpful insights into the first year of the Notifiable Data Breaches Scheme (the NDB Scheme).

Within the NDB Report, the OAIC:

  • examines trends that have emerged under the NDB Scheme, including the common causes of data breaches;
  • reflects on the purposes of the NDB Scheme;
  • provides guidance on proactive steps that can be taken for better prevention of data breaches in the future; and
  • outlines the OAIC’s expectations for the second year of operation of the NDB Scheme.

Some of the key statistics and trends identified in the NDB Report include:

  • 964 eligible data breaches have been notified under the NDB Scheme from 1 April 2018 to 31 March 2019;
  • there has been a 712 percent increase in notifications since the introduction of the NDB Scheme;
  • in respect of cyber incidents, 153 breaches were attributed to phishing;
  • health service providers are the top reporting sector; and
  • in terms of the causes of data breaches:
    • 60 percent of data breaches were malicious or criminal attacks;
    • 35 percent of data breaches were attributed to human error; and
    • the remaining 5 percent of data breaches were caused by system error.

Importantly, the OAIC indicates that as the NDB Scheme moves into its second year, the OAIC, amongst other things:

  • expects entities to understand the underlying causes of data breaches and take proactive steps to prevent them from occurring;
  • encourages entities to move beyond compliance to support consumers (such as supporting affected individuals to take steps to minimise or prevent harm in a meaningful way); and
  • will ‘take a proportionate and evidence‑based regulatory approach in relation to the NDB scheme, including by exercising our enforcement powers where necessary’.

It’s not possible to cover all of the matters dealt with in the report within this blog post, so you may wish to take a look at the report for yourself.

Maddocks has provided a number of insights into issues relating to the NDB Scheme and privacy generally (see our recent articles on privacy resilience, readiness for the NDB scheme and the GDPR).

Maddocks’ Cyber and Data Resilience Team frequently advises a range of clients on issues relating to privacy, cyber security and data resilience, including how to respond to a data breach.

Author:
Jack Evans  | Senior Associate
61 2 9291 6178
jack.evans@maddocks.com.au
Author:
Stanley Yu  | Lawyer
61 2 9291 6179
stanley.yu@maddocks.com.au