This Part deals with privacy codes.

Division   2 deals with codes of practice about information privacy, called APP codes. APP code developers or the Commissioner may develop APP codes, which:

  (a)   must set out how one or more of the Australian Privacy Principles are to be applied or complied with; and

  (b)   may impose additional requirements to those imposed by the Australian Privacy Principles; and

  (c)   may deal with other specified matters.

If the Commissioner includes an APP code on the Codes Register, an APP entity bound by the code must not breach it. A breach of a registered APP code is an interference with the privacy of an individual.

Division   3 deals with a code of practice about credit reporting, called a CR code. CR code developers or the Commissioner may develop a CR code, which:

  (a)   must set out how one or more of the provisions of Part   IIIA are to be applied or complied with; and

  (b)   must deal with matters required or permitted by Part   IIIA to be provided for by the registered CR code; and

  (c)   may deal with other specified matters.

If the Commissioner includes a CR code on the Codes Register, an entity bound by the code must not breach it. A breach of the registered CR code is an interference with the privacy of an individual.

Division   4 deals with the Codes Register, guidelines relating to codes and the review of the operation of registered codes.