Have you heard about the Notifiable Data Breaches (NDB) scheme that commences in February 2018? I had not until I attended the SA Institute of Internal Auditors Conference recently and now I think that it may be a topic of conversation in a few Board and Executive Committee meetings. This scheme will require private sector businesses and government agencies covered by the Australian Privacy Act to notify affected individuals and the head of the OAIC of ‘eligible data breaches’. If you’re keen to find out more check out the Office for the Australian Information Commissioner website (oaic.gov.au), or give me a call.