Data Privacy & Protection.

Australia's privacy landscape is changing faster than most organisations can keep pace with. We provide the specialist legal advice that keeps you compliant, prepared and protected.

OVERVIEW

The Privacy Act 1988 imposes significant obligations on Australian businesses — and the landscape has changed materially.

The Privacy and Other Legislation Amendment Act 2024 (Tranche 1) received Royal Assent on 10 December 2024 and is now in force, introducing a statutory tort for serious invasions of privacy, enhanced OAIC enforcement powers, cybersecurity uplift requirements and new automated decision transparency obligations commencing December 2026. A second tranche of reforms — expected to include removal of the small business exemption and a new "fair and reasonable" test — is being progressed by the Attorney General but has not yet been introduced as a Bill. At the same time, the Notifiable Data Breaches scheme, international frameworks including GDPR, and sector-specific requirements in financial services and health create a layered compliance environment that requires genuine specialist expertise to navigate.

For many of our clients, data privacy is where they first discover legal exposure they did not know they had. That is precisely why proactive legal advice in this area pays for itself.

What we advise on.

Who is this for?

General counsel managing enterprise privacy compliance; CFOs and CROs assessing regulatory exposure; healthcare, financial services and legal businesses handling sensitive personal information at scale; and businesses of any size that have experienced or are concerned about a data breach.

Want to understand your privacy obligations?