November 14, 2019

November 14, 2019

Subscribe to Latest Legal News and Analysis

November 13, 2019

Subscribe to Latest Legal News and Analysis

November 12, 2019

Subscribe to Latest Legal News and Analysis

Over Half of Notifiable Data Breaches Caused by Human Error

Following on from Friday’s blog, we have looked at a particular aspect of the Office of the Australian Information Commissioner’s Notifiable Data Breaches Scheme quarterly report in more detail.

Interestingly, the report revealed that just over half of the data breaches notified to the OAIC were caused by human error (for example, by incorrectly addressing an email). This suggests to us that organisations have an opportunity to mitigate the risk of a data breach occurring and in turn, reducing the need to notify data breaches to the OAIC. While some cyber risks are outside of our control, human error is not.

Organisations can reduce the risk of suffering a data breach by having processes in place to mitigate the risk of human error and inadvertent disclosures occurring. This may include technology solutions, addressing cyber risk as part of an organisation’s enterprise risk management, regularly conducting privacy training with all staff and undertaking privacy impact assessments for high risk projects.

Copyright 2019 K & L Gates


About this Author

Warwick Andersen Technology Lawyer KL Gates

Mr. Andersen is a senior corporate lawyer with a focus on commercial, technology and sourcing projects. He has advised on large scale outsourcing projects, technology agreements for both vendors and customers, corporate support, privacy and telecommunications regulatory work. He has acted for government departments, large listed companies, telecommunications companies and technology suppliers.

Rob Pulham, KL Gates, Corporate technology requirements lawyer, contracts drafting attorney
Senior Associate

Mr. Pulham is a corporate and commercial lawyer. His practice includes advising clients in managing their technology requirements and contracts (including drafting, review and negotiation of contracts for the provision of technology products and services), providing advice regarding privacy, data protection and copyright law, marketing and advertising, website content and general commercial intellectual property advice.

Mr. Pulham's experience includes having worked for leading technology suppliers, large Australian financial institutions, and food and beverage manufacturers, as well as Australian and Victorian government agencies.

Keely O'Dowd, K&L Gates, attorney, Melbourne

Ms. O'Dowd is an experienced lawyer with a focus on technology and sourcing projects. She advises on a broad range of technology transactions, including procurement, outsourcing and software licensing. This work includes drafting and advising on a range of IT procurement and supply agreements. Ms. O'Dowd advises a range of corporations on privacy and cybersecurity.