The Guardian with Revenge porn: nearly one in 10 adults admit to taking nude images without consent and the Canberra Times in One in 10 Australians have perpetrated ‘image-based abuse’ have reported on research by RMIT and Monash University in Image-based sexual abuse: The extent, nature, and predictors of perpetration in a community sample of Australian residents which found that 10% of adults have engaged in this problematical (and in many jurisdictions is criminal) conduct.  

The stories are not a product of detailed analysis but a pick up of the media release by the RMIT on Monday, 18 February 2019 which Read the rest of this entry »

David Crowe, one of the more energetic commentators at the Fairfax Press has put together a piece about the ridiculous exemption that political parties have from regulation of the Privacy Act 1988 in Political parties should be stripped of Privacy Act exemptions after hack: experts.  It is one of those topics that columnists dust off from time to time. Peter Van Onselen has repeatedly drawn from that well though pretty much saying the same thing again and again and again in an Australian article in Political parties violate our rights to privacy  on 23 July 2011, raising the issue Read the rest of this entry »

Judicial Registrar considered an application to wind up a company when administrators had been appointed shortly before the hearing In the matter of Polar Agencies Pty Ltd [2019] VSC 43.

FACTS

The plaintiff  a statutory demand served on the defendant by the plaintiff by post sent on 18 October 2018 [4].  The demand is in respect of debts totalling $558,508.56 for goods supplied by the plaintiff to the defendant and invoiced in the period March to August 2018. The defendant failed to comply with it [4] and made no application to set aside the statutory demand [5] thereby failing to comply with the demand in about midNovember 2018 which gave rise to a statutory presumption of insolvency under s 459C(2)(a) of the Corporations Act (the Act).

By an originating process filed on 16 November 2018 [3] the plaintiff applied for the defendant be wound up in insolvency pursuant to s 459P and s 459Q of the Act [1].

The proceeding first came on for hearing on 19 December 2018 where:

• the plaintiff appeared and the defendant did not.
• the Court was informed that negotiations were underway. Directions were made that any request for a further adjournment was to be supported by an affidavit to be filed and served by 4 February 2019,
• the hearing was adjourned to 6 February 2019 [6].

Read the rest of this entry »

Yesterday, Rod Sims in a speech to the IIC Australian Chapter highlighted the issues that the ACCC raised in its Preliminary report on the Digital Platforms Inquiry.  The final submissions close on 15 February 2019.

As with the Preliminary Report Sims highlights the privacy issues that are associated with the current regime of data collection, the matching and lack of consent.  These are matters that should of primary concern to Read the rest of this entry »

The Information has published its Notifiable Data Breaches Quarterly Statistics Report for the last quarter of 2018.

The media release provides:

The latest quarterly report from the Office of the Australian Information Commissioner (OAIC) shows 262 data breaches involving personal information were notified between October and December 2018.

Itgovernance compiles monthly records of data breaches and works out, often from the victim of the data breaches the number of records leaked. In January 2019 it concluded that 1,769,185,063 records were accessed. That figure is eye wateringly large and even if the Collection#1 breach is not taken into account, which involved 772,904,991 records from historic data breaches it still means just under a billion records were affected.

And into this environment of steadily more effective cyber attacks and generally inadequate protections the Australian My Health Records system will now opt in the records of about 17 million Australians. The legislation has flaws, the system has bigger flaws and the experience overseas is that these centralised digitised health records are failures. Seven Thirty did a very interesting report of the MyHealth Record system.

The biggest difference between consumer goods and apps is that consumer goods generally go through quality control checks, compliance with standards and review by regulators before being sold to the public while apps are focused getting some new or improved feature for whatever system out as quickly as possible without any external review or control. The rationale seems to be that consumer goods that are defective can harm while apps are cool and even when they don’t work what harm do they do.

Apps are often released with design flaws and commonly require patching and all manner of fixes, The recent rush by Apple to fix its Group FaceTime highlights this approach to product development. The defect permitted a person who hadn’t accepted a call through FaceTime nevertheless being heard. The flaw also permitted third party access to iPhone and iPad microcophones and video camera feed.

Facebook had a worse 2018 than Google but to a large extent that is merely a matter of degree. Facebook’s travails with its association with Cambridge Analytica and not doing much with the proliferation of false news stories planted by Russia and other actors made 2018 an annus horribilis. Google has had to deal with the phenonama of false news issues as well as years of litigation in the European Union, the UK and Australia.
It might be that Google will have a hotter time of it in 2019 with the French Regulators, the National Data Protection Commission, fining it 50 million euros for not getting valid user consent to gather data for targeted advertising. The regulators claim that Google breached the GDPR, the General Data Protection Regulation.

In July 2018 the Singaporean Government announced that there was a cyber attack which compromised the personal data of 1,495,364 people and led to outpatient prescription information for nearly 160,000 people being “exfiltrated”.

Courts generally have found the rapid changes in technology a challenge when applying and sometimes adapting legal principles. That is particularly so regarding privacy protections and when a search warrant is required. Smart phones can, and often, do contain more data than the physical contents of a person’s office, a photo collection and diary. While a search warrant is required to enter and search a house police try and often succeed in forcing a person to open their phone to prying eyes. The principle is the same even if the physical circumstances differ. There have been appalling acts of intrusion with no oversight regarding the actions of Australian Border Force officers.