Salinger Privacy Director and Principal Anna Johnston, CIPP/E, CIPM, FIP, explored case studies from the Office of the Australian Information Commissioner showing how the regulator decides whether a complaint involves personal information as defined by the Privacy Act 1988. "The point of this legal definition is that if no individual is identifiable from a set of data, then the privacy principles — the backbone of an organisation’s legal obligations — simply won’t apply," Johnston said, using cases involving facial recognition claims against 7-Eleven, Clearview AI and the Australian Federal Police.
21 April 2022
A look at OAIC's personal data determinations
RELATED STORIES
A view from DC: Can we have symmetry in privacy choices?
Notes from the IAPP Canada: Fall brings youth privacy issues to the forefront
Notes from the Asia-Pacific region: China privacy landscape 'hot and dynamic as ever'
A view from Brussels: Will health data sharing be a blueprint for other domains?
California awaits fate of legislature-approved AI safety bill