Australia’s Privacy Act of 1988

The Privacy Act of 1988 is the one principal law protecting users and their data when they go online. This law defines various stages like collection, storage, or data usage in the public and private sectors. It was amended first in 2014 and a third time in 2017 to strengthen the data privacy protection terms, given the emergence of social media networks and cybercrime. In April 2022, the Data Availability and Transparency Act 2022, which is part of the Privacy Act 1988, received a consequential amendment in Schedule 1-3. The Office of Australian Information Commissioner (OAIC) and Attorney-General have complete rights to administer this law.

Who Must Comply

These laws apply to most of the private sector agencies in Australia. Additionally, government agencies operating on Australian grounds, with $3 million worth of annual turnover, must comply with these principles.

What’s Included in the Privacy Act of 1988

What’s Included in the Privacy Act of 1988

Schedule 1 lists 13 main principles apart from 9 parts covering all necessary data protection and processing cases and scenarios. These principles are commonly termed as Australian Privacy Principles (APPs).

  • 1. Open and transparent personal information management
  • 2. Anonymity and pseudonymity
  • 3. How personal information should be collected in a fair and legal way only after an individual consents to it
  • 4. Terms to deal with unsolicited or unwanted personal details
  • 5. Terms defining the notifications to be sent/received alerting the individual about personal information collected
  • 6. Using or disclosing personal information
  • 7. Direct marketing terms and rights for individuals
  • 8. Disclosure of personal details outside Australian boundaries
  • 9. Disclosure or use of govt. or similar identifiers
  • 10. Acceptable quality standards of the personal information collected
  • 11. Security of consumers' or individuals’ personal details
  • 12. Rights to access personal information
  • 13. Corrections or modifications to be made in this personal information

Conditions for Small Business Entities to be Protected

  • Dot Must have $3 million in annual turnover
  • Dot Provide health information, excluding employee records
  • Dot Disclose, store, process, or use personal information for a defined service or benefit
  • Dot Must be registered under the Commonwealth contract or,
  • Dot Must be actively registered under a credit reporting body
Conditions for Small Business Entities to be Protected
Individual Rights

Individual Rights

The Privacy Act permits individuals to:

  • Dot Know why, how, and who collects/processes your data
  • Dot Opt out of disclosing his/her identity and use a fake name in specific situations
  • Dot Access his/her online maintained personal information, including health-related data
  • Dot Choose not to receive any marketing ads online
  • Dot Seek the opportunity to rectify errors in personal information displayed, stored, or processed online
  • Dot Complain against an agency/entity/organization, private or public (acceptable under this law), if they wrongfully use his/her info


  • Dot State or territory agencies already covered or protected under their state or territory’s legislation
  • Dot Actively registered political parties or their representatives
  • Dot A small business not having up to $3 million annual turnover or unable to meet other small business conditions under this law
  • Dot Current and former employee records maintained and stored by organizations
  • Dot Public schools
  • Dot Individuals acting on their own
  • Dot Media houses or journalist committed to using the information in the public interest and morally abiding by pre-existing privacy laws or standards

The information on this page is provided for educational purposes only and should not be confused with or construed as Annex Cloud’s compliance capabilities or scope. Learn more about Annex Cloud’s enterprise-ready solution, including security, privacy and compliance.

See Loyalty in Action

Be inspired with endless ways to make every customer interaction rewarding.


We Can Help

Let's explore how loyalty can help you become one of your customers' most beloved brands.


©2021 All Rights Reserved. AnnexCloud