We're a Baker Tilly network member
About Baker Tilly
Contact us
Back to top
Australia’s Privacy laws are changing: What it means for data governance
Article

Australia’s Privacy laws are changing: What it means for data governance

Key points

  • Australia’s Privacy Act is under review, possibly modelled off the EU’s General Data Protection Regulation (GDPR)
  • Updates to the Act may require Australian businesses to have Data Protection Officers (DPO)
  • Businesses may need to upskill internally or look externally for the right skillset

As companies face increasing scrutiny on privacy, the emerging role of a Data Protection Officer(DPO) is gaining prominence. Australia’s privacy laws are under review, and these positions may soon be a staple in Australian workplaces if the updated laws are modelled off the EU’s General Data Protection Regulation (GDPR).

Under the GDPR, a DPO ensures that a company or organisation is processing personal data in compliance with data protection laws. While there is still some clarity required, businesses would do well to begin planning to integrate this role as part of their strategic team before it becomes a necessity. Business leaders should start considering how they might upskill or reskill employees for these future positions, strengthening their data governance. Only once the capture, storage, and use of an organisation’s information and data is understood can the potential risks be assessed, and strategies be implemented.

Some businesses may need to look externally to see if they can source talent capable to take on the responsibilities of data protection for the organisation. With the current state of the talent market, businesses should be taking proactive steps to ensure they are able to secure the best talent and retain them over time

The role requires technical expertise, a working knowledge of privacy policies and legislation, experience in performing audits of information systems, and communication skills. The EU recommends the person have a legal or IT background and be certified by recognised organisations.

Business leaders also need to understand what is being done with their information and data. The Office of the Australian Information Commissioner already states that if there is no longer a requirement or a reason to gather personal information, steps should be taken to ensure that they do not continue to collect it. As the laws begin to change, it is imperative that businesses take active steps to ensure that the way they approach data and data collection aligns with best practice.

The EU provides a window into Australia’s data protection future and forward-thinking business leaders will recognise that a DPO will soon be a pivotal role in strengthening data governance.

See how Pitcher Partners team can help you, contact us today - we'd love to help.

Contact the author
Contact the author
This content is general commentary only and does not constitute advice. Before making any decision or taking any action in relation to the content, you should consult your professional advisor. To the maximum extent permitted by law, neither Pitcher Partners or its affiliated entities, nor any of our employees will be liable for any loss, damage, liability or claim whatsoever suffered or incurred arising directly or indirectly out of the use or reliance on the material contained in this content. Pitcher Partners is an association of independent firms. Pitcher Partners is a member of the global network of Baker Tilly International Limited, the members of which are separate and independent legal entities. Liability limited by a scheme approved under professional standards legislation.

Latest insights

All insights
Podcast
Pitcher Perspective: Understanding Private Ancillary Funds

In this episode, we dive into Private Ancillary Funds (PAFs) and explore their role in effective charitable giving.

Article
Your first audit: What triggers an audit and what to expect

Discover how a first‑time audit can sharpen governance, reveal opportunities and strengthen financial reporting. Read the full article now.

Article
The future of Australian retail: confidence, change, and the AI advantage

Artificial intelligence (AI) is reshaping Australia’s middle market. For retailers navigating rising costs, evolving customer expectations, and supply chain complexity,…

Technical article
$3m super balance tax draft legislation – what you need to know

The Federal Government has released draft legislation for their redesigned tax on earnings for people with more than $3 million in super.  

Pitcher Partners insights

Get the latest Pitcher Partners updates direct to your inbox

Subscribe to our insights

Thank you for you interest

How can we help you?

Business or personal advice
General information
Career information
Media enquiries
Contact expert
Become a member
Specialist query
Please provide as much detail to ensure appropriate allocation of your query
Please highlight a realistic time frame that will enable us to provide advice within a suitable and timely manner. Please note given conflicting demands with our senior personnel, we will endeavour to respond to you within the nominated time frame. If you require an urgent response, please contact us on 03 8610 5477.
Responses to queries submitted via this form (“Response”) are produced by Pitcher Partners Advisors Proprietary Limited and are prepared for the exclusive use and benefit of those who are invited, and agree, to participate in the CRITICAL POINT NETWORK service. Responses provided, or any part thereof, must not be distributed, copied, used, or relied on by any other person, without our prior written consent. Any information provided is intended to be of a general nature and prepared without taking into account your objectives, circumstances, financial situation or particular needs. Any information provided does not constitute personal advice. If you act on anything contained in a Response without seeking personal advice you do so at your own risk. In providing this information, we are not purporting to act as solicitors or provide legal advice. Any information provided by us is prepared in the ordinary course of our profession and is based on the relevant law and its interpretations by relevant authorities as it stands at the time the information is provided. Any changes or modifications to the law and/or its interpretation after this time could affect the information we provide. It is not possible to guarantee that the tax authorities will not challenge a transaction or to guarantee the outcome of such a challenge if one is raised on the basis of the information we provide. To the maximum extent permitted by law, Pitcher Partners will not be liable for any loss, damage, liability or claim whatsoever suffered or incurred by any person arising directly or indirectly out of the use or reliance on the information contained within a Response. We recommend you seek a formal engagement of our professional services to consider the appropriateness of the information in a Response having regard to your objectives, circumstances, financial situation or needs before proceeding with any financial decisions. Pitcher Partners is an association of independent firms. Pitcher Partners is a member of the global network of Baker Tilly International Limited, the members of which are separate and independent legal entities. Liability limited by a scheme approved under professional standards legislation.
CPN Enquiry
Showing 0 results
Business Radar 2025
Dealmakers 2025
Not-for-profit survey 2025
Search by industry