Privacy Awareness Week (PAW) is an opportunity for organisations to move beyond policy and compliance and focus on how privacy, privacy governance, and data protection operate in practice across systems, processes and people.
At Holding Redlich, our Digital Economy and Data & Privacy teams are working with clients navigating increasingly complex privacy challenges. As regulatory expectations evolve, there is a growing focus on whether privacy frameworks are not only well-designed, but effective in operation.
Across sectors, a number of consistent themes are emerging:
Throughout Privacy Awareness Week, we will be sharing insights and practical guidance on strengthening privacy compliance, governance, and data protection with a focus on:
Our team advises across the full spectrum of data and privacy matters, including:
If you would like to discuss how to strengthen your organisation’s approach to privacy compliance, governance or data protection, please get in touch with our team.
With the widespread adoption of AI in the Australian Public Sector, ensuring privacy compliance is an essential element in driving safe, responsible and effective use of AI. The Digital Transformation Agency has established requirements for transparency statements regarding the use of AI.
References:
Top five trends for Australian Government legal practice in 2026, Automated decision making and public reporting lessons for government agencies
The Regulatory Reform Omnibus Act 2025 (Cth) supports a ‘tell us once’ approach to the sharing and use of information by various Australian Government agencies. The reforms enhance the accuracy of personal information held by agencies and authorise sharing under the Privacy Act 1988 (APP 6.2(b)).
Reference: Top five trends for Australian Government legal practice in 2026
Recent data breaches have shone a spotlight on the role of cybersecurity in protecting personal information. Reasonable steps to ensure the security of personal information under APP 11 include both technical and organisational measures.
References: Privacy and Other Legislation Amendment Act 2024 (Cth), The Privacy Law Reforms finally passed in 2024 set the priorities for 2025
The Privacy and Other Legislation Amendment Act 2024 (Cth) includes new ADM transparency requirements scheduled to commence on 10 December 2026, obliging APP entities to disclose in their privacy policies when a computer program makes (or substantially shapes) decisions that significantly affect individuals, including the types of personal information and decisions involved.
Agencies should also review their Information Publication Scheme ADM descriptions to ensure they are consistent with ADM disclosures made in privacy policies.
Reference: Automated decision making and public reporting lessons for government agencies
Safeguarding privacy cannot be achieved by the Privacy team alone. Agency wide understanding supports consistent implementation of good privacy practice. Privacy Awareness Week is the perfect time to hold training and uplift awareness.
