ovic regulatory approach and policy
play

OVIC regulatory approach and policy Annan Boag Assistant - PowerPoint PPT Presentation

Sep 04, 2022 •246 likes •455 views

OVIC regulatory approach and policy Annan Boag Assistant Commissioner, Privacy and Assurance OVIC Regulatory Action Policy 2 OVIC Regulatory Action Policy Types of regulatory action, and what to expect Privacy investigations and

  1. OVIC regulatory approach and policy Annan Boag Assistant Commissioner, Privacy and Assurance

  2. OVIC Regulatory Action Policy 2 OVIC Regulatory Action Policy • Types of regulatory action, and what to expect • Privacy investigations and compliance notices • Forward work program • Freedom of Information | Privacy | Data Protection

  3. Regulatory action policy

  4. OVIC Regulatory Action Policy 4 OVIC Regulatory Action Policy • Sets out OVIC’s approach to regulatory action. • Regulatory action: activities that promote, assure or enforce the Freedom of Information Act 1982 and the Privacy and Data Protection Act 2014. • For privacy, this ranges from advice and guidance to investigations and compliance notices. Freedom of Information | Privacy | Data Protection

  5. Regulatory Action 5 Goals of regulatory action • OVIC uses the regulatory powers in the PDP Act and FOI Act to: • Foster public trust and awareness • Influence government to consider information rights in implementing new programs and policies • Deter conduct that contravenes the IPPs Freedom of Information | Privacy | Data Protection

  6. Regulatory Action 6 Guiding principles for regulatory action • Independent • Collaborative • Targeted and proportional • Transparent and consistent Freedom of Information | Privacy | Data Protection

  7. Types of privacy regulatory action

  8. Regulatory Action 8 Levels of privacy regulatory action Penalties Prosecution Investigations Compliance Notices Audit of records Examination of IPP practices Preliminary inquiries Non-binding recommendations for best practice Advice, education and guidance Freedom of Information | Privacy | Data Protection

  9. Regulatory Action 9 Factors when deciding the appropriate level of action The seriousness of the issue, considering impact and likelihood • Whether the issue arose from inadvertent, deliberate or reckless • conduct Whether the regulated body self-reported the incident to OVIC • Whether the issue is systemic, ongoing or isolated • Whether the regulated body has already addressed the issue • If regulatory action would have educational, deterrent or precedent • value If the regulated body was subject to prior action, and the issue is • related to that previous action Freedom of Information | Privacy | Data Protection

  10. Regulatory Action 10 Preliminary inquiries When OVIC identifies an issue, we may start by making preliminary • inquiries. For example: a telephone call or email to agency privacy officer requesting • information and documents a meeting or in-person briefing about the issue. • OVIC may offer non-binding suggestions. • Preliminary inquiries also help OVIC decide whether more formal action is • required. Freedom of Information | Privacy | Data Protection

  11. Regulatory Action 11 Audits and examinations The PDP Act authorises OVIC to conduct examinations and audits. • OVIC may use an examination or audit: • as a proactive assurance tool • across a number of organisations to assess a particular privacy issue • to respond to a potential breach of the PDP Act. • Freedom of Information | Privacy | Data Protection

  12. Investigations and compliance notices

  13. Regulatory Action 13 Investigations OVIC may commence an investigation on its own initiative or in response to • a complaint or referral. The investigation is to decide whether OVIC should serve a compliance • notice on a regulated body. Freedom of Information | Privacy | Data Protection

  14. Regulatory Action 14 Compliance notices A notice requiring an organisation to take specified action within a specified • time to remedy breaches and comply with IPPs and the PDP Act. To serve a compliance notice, OVIC must be satisfied that: • the organisation has breached an IPP, code of practice or information • usage arrangement, and the breach is serious, flagrant, or repeated (i.e., similar breaches have • occurred at least 5 times in the last 2 years). Freedom of Information | Privacy | Data Protection

  15. Regulatory Action 15 OVIC approach to investigations Our approach to an investigation depends on each case • Objective is to determine • what has occurred • whether the IPPs have been breached • if so, whether the breach is serious or flagrant • if so, whether a compliance notice should be imposed – e.g., has the • issue already been addressed. Freedom of Information | Privacy | Data Protection

  16. Regulatory Action 16 Expectations on OVIC and investigated organisations OVIC expects organisations subject to an investigation to: • provide information on request • make staff available to discuss the issue with OVIC staff. • Regulated agencies should expect OVIC to be transparent in the exercise of • its powers. OVIC will provide organisations a fair hearing and an opportunity to respond • to any proposed adverse findings. Section 122 of the PDP Act provides that it is an offence to obstruct or • mislead a Commissioner or OVIC staff member. Freedom of Information | Privacy | Data Protection

  17. Regulatory Action 17 Conclusion of an investigation Section 111 of the PDP Act permits the Commissioner to publish a report, • where it is in the public interest to do so. Where appropriate, OVIC will publicly report on the outcome of its • regulatory action. OVIC will give a regulated body a reasonable opportunity to respond to any • adverse findings. OVIC will monitor and liaise with the regulated body about its • implementation of a compliance notice or response to any recommendations. Freedom of Information | Privacy | Data Protection

  18. Regulatory Action 18 Other investigative functions Investigations in response to Ministerial request At the request of the Minister, OVIC must investigate and report to the Minister on any matter relating to information privacy under the PDP Act. Freedom of information investigations OVIC can investigate how regulated bodies are meeting their obligations under the FOI Act through own motion investigations. Freedom of Information | Privacy | Data Protection

  19. Forward work program and next steps

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Policy Adviser The Law Society The Law Society approach The Law Society approach First, a

Policy Adviser The Law Society The Law Society approach The Law Society approach First, a

James Woolf Policy Adviser The Law Society The Law Society approach The Law Society approach First, a little bit of history.... HERMAN OUSELEY Independent Review into Disproportionate Regulatory Outcomes for Black and Minority Ethnic

455 views • 18 slides
Understanding Risk: towards an evidence based approach to regulatory policy development Claire

Understanding Risk: towards an evidence based approach to regulatory policy development Claire

www.gdc-uk.org www.gdc-uk.org Understanding Risk: towards an evidence based approach to regulatory policy development Claire Herbert & Guy Rubin General Dental Council IAMRA London 2014 11th INTERNATIONAL CONFERENCE ON MEDICAL REGULATION

393 views • 27 slides
Ease of Doing Business f i i Key Policy and Regulatory Developments Key Policy and Regulatory

Ease of Doing Business f i i Key Policy and Regulatory Developments Key Policy and Regulatory

Ease of Doing Business f i i Key Policy and Regulatory Developments Key Policy and Regulatory Developments R. Sampath Kumar New Delhi June 2015 The contents of this document are confidential Overview Plans announced and steps taken to

496 views • 14 slides
the French approach Ha Noi, 25 November 2010 Charles-Henri Montin Regulatory Policy Division,

the French approach Ha Noi, 25 November 2010 Charles-Henri Montin Regulatory Policy Division,

Regulatory management: the French approach Ha Noi, 25 November 2010 Charles-Henri Montin Regulatory Policy Division, Public Governance and Territorial Development Directorate, OECD charles-henri.montin@oecd.org http://regplus.blogspot.com BR

116 views • 11 slides
Mobile Financial Services and Microfinance: A Risk - Based Approach to Regulatory Policy and

Mobile Financial Services and Microfinance: A Risk - Based Approach to Regulatory Policy and

SEEP Annual Conference 2 November 2011 Mobile Financial Services and Microfinance: A Risk - Based Approach to Regulatory Policy and Mobile Financial Services Maria Stephens USAID/Senior Technical Advisor Daryl Skoog Opportunity International

819 views • 54 slides
Emerging Policy, Regulatory, Emerging Policy, Regulatory, Business and Technical Trends Business

Emerging Policy, Regulatory, Emerging Policy, Regulatory, Business and Technical Trends Business

Emerging Policy, Regulatory, Emerging Policy, Regulatory, Business and Technical Trends Business and Technical Trends Syed Ismail Shah, PhD Chairman, PTA and Contact: ismail@pta.gov.pk Vision of PTA: Create a fair regulatory regime to promote

343 views • 18 slides
Daniel Trnka and Rebecca Schultz, Regulatory Policy, OECD NNR Better Regulation Seminar 27 March

Daniel Trnka and Rebecca Schultz, Regulatory Policy, OECD NNR Better Regulation Seminar 27 March

OECD REGULATORY POLICY OUTLOOK 2018 Daniel Trnka and Rebecca Schultz, Regulatory Policy, OECD NNR Better Regulation Seminar 27 March 2019, Stockholm OECD and Regulatory Policy 25 years of experience in dealing with regulatory

184 views • 16 slides
Governance Nick Malyshev Head, Regulatory Policy Division OECD Why are OECD countries focusing

Governance Nick Malyshev Head, Regulatory Policy Division OECD Why are OECD countries focusing

The Right Time to Focus on Regulatory Reform in Vietnam OECD Work on Regulatory Policy and Governance Nick Malyshev Head, Regulatory Policy Division OECD Why are OECD countries focusing on regulatory reforms? Possibilities of monetary

477 views • 21 slides
International Regulatory Cooperation The regulatory perspective Nick Malyshev, Head, Regulatory

International Regulatory Cooperation The regulatory perspective Nick Malyshev, Head, Regulatory

International Regulatory Cooperation The regulatory perspective Nick Malyshev, Head, Regulatory Policy Division OECD Public Governance and Territorial Development IRC: a long standing concern of regulators OECD (1994), Regulatory Co-operation

362 views • 7 slides
Regulatory and Policy Updates Therapeutic Products Directorate Health Canada Kimby N. Barton

Regulatory and Policy Updates Therapeutic Products Directorate Health Canada Kimby N. Barton

Regulatory and Policy Updates Therapeutic Products Directorate Health Canada Kimby N. Barton Interim Director Medical Devices Bureau Overview Changes to: Policy Regulatory Transparency and Openness Guidance 2 Policy

384 views • 10 slides
A Regulatory Approach to Validation of the CDM Structuring a CDM to improve validity of analyses.

A Regulatory Approach to Validation of the CDM Structuring a CDM to improve validity of analyses.

A Regulatory Approach to Validation of the CDM Structuring a CDM to improve validity of analyses. Common data model Workshop in Europe - 11-12 December 2017 An agency of the European Union Requirem ents for regulatory evidence Provide agreed,

488 views • 20 slides
Information access and privacy, data protection and sharing: A new approach for modern government

Information access and privacy, data protection and sharing: A new approach for modern government

1300 00 6842 | ovic.vic.gov.au Information access and privacy, data protection and sharing: A new approach for modern government Speaker: Sven Bluemmel, Information Commissioner Date: Tuesday, 27 February 2018 Introduction On behalf of Sally,

247 views • 5 slides
OVIC Freedom of Information, Information security and Privacy Sven Bluemmel Graduate Recruit

OVIC Freedom of Information, Information security and Privacy Sven Bluemmel Graduate Recruit

OFFICIAL OVIC Freedom of Information, Information security and Privacy Sven Bluemmel Graduate Recruit Induction Victorian Information Commissioner 16 July 2019 OFFICIAL Presentation Title 2 Overview Who we are What we do

1.66k views • 77 slides
Information Access Series Working with OVIC consultation and notification under the Freedom

Information Access Series Working with OVIC consultation and notification under the Freedom

Information Access Series Working with OVIC consultation and notification under the Freedom of Information Act Seminar 5 28 March 2019 Overview 2 Presentation Overview Consultation under the FOI Act Practicability and

476 views • 20 slides
AER Review of Regulatory Tax Approach APGA Presentation Scott Young, APA Group 7 November 2018

AER Review of Regulatory Tax Approach APGA Presentation Scott Young, APA Group 7 November 2018

AER Review of Regulatory Tax Approach APGA Presentation Scott Young, APA Group 7 November 2018 Summary APGA supports ongoing improvements to the regulatory framework. It is critical to protect the internal integrity of the regulatory

405 views • 9 slides
Enhancements Discussion Keith Johnson Infrastructure & Regulatory Policy Manager Gabe

Enhancements Discussion Keith Johnson Infrastructure & Regulatory Policy Manager Gabe

Reliability Must-Run and Capacity Procurement Mechanism Enhancements Discussion Keith Johnson Infrastructure & Regulatory Policy Manager Gabe Murtaugh Senior Infrastructure & Regulatory Policy Developer Market Surveillance Committee

357 views • 14 slides
CSI: Coaching Science Inquiry in Rural Schools January 30, 2014 Gwen Nugent, Gina Kunz, Jon

CSI: Coaching Science Inquiry in Rural Schools January 30, 2014 Gwen Nugent, Gina Kunz, Jon

CSI: Coaching Science Inquiry in Rural Schools January 30, 2014 Gwen Nugent, Gina Kunz, Jon Pedersen, James Houston, Soon Chun Lee, Melissa Hall CSI: Coaching Science Inquiry in Rural Schools CSI is a research study conducted by the

1.07k views • 40 slides
Project and Environmental Review Presentation to: North Shore Waterfront Liaison Committee May

Project and Environmental Review Presentation to: North Shore Waterfront Liaison Committee May

Project and Environmental Review Presentation to: North Shore Waterfront Liaison Committee May 5, 2016 Legislative Framework Under the Canada Marine Act, Canadian Port Authorities are mandated to: Promote the success of ports to

311 views • 13 slides
EVESHAM TOWNSHIP SCHOOL DISTRICT 2 0 1 7 -1 8 Prelim inary Budget Presentation February 23,

EVESHAM TOWNSHIP SCHOOL DISTRICT 2 0 1 7 -1 8 Prelim inary Budget Presentation February 23,

EVESHAM TOWNSHIP SCHOOL DISTRICT 2 0 1 7 -1 8 Prelim inary Budget Presentation February 23, 2017 Budget Goals & Priorities Maintain/ enhance ALL instructional programs (core subjects, related arts, specialized programs) Continue

579 views • 26 slides
Assistant Principals Professional Learning Day Local District Central Lanterman HS August

Assistant Principals Professional Learning Day Local District Central Lanterman HS August

Assistant Principals Professional Learning Day Local District Central Lanterman HS August 29, 2018 Professional Le Learning Outcomes Review LAUSD Strategic Plan-School Safety Reflect on Student Discipline Data Deepen

1.56k views • 56 slides
Preliminary Issue Report on Protection of Intl Organization Names in new gTLDs Brian Peck

Preliminary Issue Report on Protection of Intl Organization Names in new gTLDs Brian Peck

Preliminary Issue Report on Protection of Intl Organization Names in new gTLDs Brian Peck Red Cross/IOC Names Update Since Costa Rica Meeting On 26 March, GNSO Council approved the IOC/RC DT's recommendations to protect the Red

604 views • 12 slides
Uniformity of Contracts Preliminary Issue Report GNSO Council March 2012 1 Background GNSO

Uniformity of Contracts Preliminary Issue Report GNSO Council March 2012 1 Background GNSO

Uniformity of Contracts Preliminary Issue Report GNSO Council March 2012 1 Background GNSO Council resolved (October 2011) to create Issue Report to: 1) Evaluate whether a minimum baseline of registration abuse provisions should be created

390 views • 4 slides
Preliminary issue hearings: Saving or wasting time and cash? Kiev Arbitration Days Boris

Preliminary issue hearings: Saving or wasting time and cash? Kiev Arbitration Days Boris

Preliminary issue hearings: Saving or wasting time and cash? Kiev Arbitration Days Boris Kasolowsky 3 November 2017 Vetting Procedure under ICC Rules Governed by the ICC Arbitration Rules . Articles 6(3) and 6(4) permit the Secretary

560 views • 7 slides
Preliminary Results Year ended 30 June 2020 > Disclaimer This presentation has been prepared

Preliminary Results Year ended 30 June 2020 > Disclaimer This presentation has been prepared

Preliminary Results Year ended 30 June 2020 > Disclaimer This presentation has been prepared by Genus plc (Genus or the Company) and has not been independently verified. Genus is solely responsible for the contents of this

626 views • 43 slides

More recommend