I have noticed at the site:-
http://www.atf.org.au/organiz/privacy.asp
The fairly clearly worded statement:-
"In addition to the above, other uses and disclosures may be conveyed to you
at the point of collection. We will always take reasonable steps to inform
an individual about the use and disclosure of their personal information, if
it is not being used for the primary purpose that it was collected for, or
unless the use is exempt under a National Privacy Principle. "
The Australian Privacy Act Principles are set out differently to the USA's
and UK's, but clearly this paragraph is aimed at compliance with the
equivalent to Principle 2, and attempts to maintain some contextualisation
of personal data.
All of the DP legislative frameworks I have glanced at so far seem to have
as one focus maintaining the contextualisation of personal data, possibly
even weakening existing privacy rights in other portions of the legal
frameworks, whilst also loosely requiring some routinely beneficial
organisational management practices.
If that perception is correct, why do the various sectors in all of the
jurisdictions who have DP laws still maintain the laws are foggy and too
strict?
Being concerned with understanding generic privacy issues on this dry Friday
afternoon the useful questions arises - What is the cause of that lack of
clarity and who creates it?
Ian W
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
All archives of messages are stored permanently and are
available to the world wide web community at large at
http://www.jiscmail.ac.uk/lists/data-protection.html
If you wish to leave this list please send the command
leave data-protection to [log in to unmask]
All user commands can be found at : -
http://www.jiscmail.ac.uk/help/commandref.htm
(all commands go to [log in to unmask] not the list please)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
|