The EU’s General Data Protection Regulation came into effect on the 25th of May 2018.   While this may not have a direct effect on all Australian businesses, it does serve as a blueprint for good data management practices.   It also highlights where things are heading in terms of data privacy and data protection.

“From 25 May 2018 Australian businesses of any size may need to comply with the GDPR if they have an establishment in the European Union (EU), if they offer goods and services in the EU, or if they monitor the behaviours of individuals in the EU.

The GDPR includes requirements that resemble those in the Privacy Act 1988, and additional measures that similarly aim to foster transparent information handling practices and business accountability around data handling.”

https://www.oaic.gov.au