Victorian Current Acts

[Index] [Table] [Search] [Search this Act] [Notes] [Noteup] [Previous] [Next] [Download] [Help]

PRIVACY AND DATA PROTECTION ACT 2014 - SECT 86

Information Commissioner may issue protective data security standards

S. 86(1) amended by Nos 20/2017 s. 106(2), 31/2024 s. 58(1).

    (1)     The Information Commissioner may issue standards, consistent with the Victorian protective data security framework, for the confidentiality, integrity and availability of public sector data and access to public sector data ( protective data security standards ).

S. 86(2) amended by No. 20/2017 s. 106(2).

    (2)     The Information Commissioner may issue—

        (a)     protective data security standards that apply to any agency or body referred to in section 84(1) ( general protective data security standards ); or

        (b)     protective data security standards ( customised protective data security standards ) that apply—

              (i)     to a specified agency or body referred to in section 84(1) and all information handled by that agency or body; or

              (ii)     to one or more specified agencies or bodies referred to in section 84(1) and to—

    (A)     any specified information or class of information handled by those agencies or bodies; or

    (B)     any specified activity or class of activity of those agencies or bodies.

    (3)     If a general protective data security standard issued is inconsistent with a customised protective data security standard, the customised protective data security standard prevails to the extent of the inconsistency.

S. 86(4) amended by No. 20/2017 s. 106(2), substituted by No. 31/2024 s. 58(2).

    (4)     The Information Commissioner must not issue a protective data security standard unless it has been agreed to by the Minister.



AustLII: Copyright Policy | Disclaimers | Privacy Policy | Feedback