<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"><html lang="en"> <head> <META http-equiv="Content-Type" content="text/html; charset=UTF-16"> <META http-equiv="Content-Type" content="text/html; charset=utf-8"> <META http-equiv="Pragma" content="no-cache"> <title>The Office of the Privacy Commissioner</title> <link href="/css/default_css.asp" rel="stylesheet" rev="stylesheet" type="text/css"> </head> <body> <table cellpadding="8" cellspacing="0" border="0" width="570"> <tr> <td valign="top"> <h1>Guidelines</h1> <H3>Business</H3> <UL> <LI><A href="#3.2">Guidelines to the National Privacy Principles</A>&nbsp;<FONT color=#ff0000>(advisory)</FONT> <LI><A href="#3.1">Guidelines on Privacy Code Development</A> <FONT color=#ff0000>(binding and advisory)</FONT> <LI>Public Interest Determination Procedure Guidelines -&nbsp;<A href="/publications/pidguide.pdf">PDF</A>,&nbsp;<A href="/publications/pidguide.doc">Word</A> <FONT color=#ff0000>(advisory)</FONT> <LI>Tax File Number Annotated Guidelines -&nbsp;<A href="/publications/tfngls.pdf">PDF</A>, <A href="/publications/tfngls.doc">Word</A>&nbsp;<FONT color=#ff0000>(binding)</FONT> <LI><A href="/internet/email/index.html">Guidelines on Workplace E-mail, Web Browsing and Privacy</A>&nbsp;<FONT color=#ff0000>(advisory)</FONT></LI> <LI>For Directors. Privacy and Boards: What You Don't<EM> </EM>Know <EM><STRONG>Can</STRONG></EM> Hurt You (May 2004) - <A href="/publications/privacydirectors.pdf">PDF</A> <FONT color=#ff0000>(advisory)</FONT></LI> <LI><STRONG><FONT color=#cc0000>NEW! </FONT></STRONG><A href="/publications/breach_guide.pdf">Guide to Handling Personal Information Security Breaches (PDF)</A> <FONT color=#ff0000>(advisory)</FONT></LI> </UL> <H3>Health</H3> <UL> <LI><A href="http://www.privacy.gov.au/publications/hg_01.html">Guidelines on Privacy in the Private Health Sector</A>&nbsp;<FONT color=#ff0000>(advisory)</FONT> <LI><A href="http://www.nhmrc.gov.au/publications/synopses/e26syn.htm">Medical Research - Guidelines under section 95 of the Privacy Act 1988</A><FONT color=#ff0000> (binding)</FONT> <LI><A href="http://nhmrc.gov.au/publications/synopses/e43syn.htm">Medical Research - Guidelines approved under section 95A of the Privacy Act 1988</A>&nbsp;<FONT color=#ff0000>(binding)</FONT> <LI><A href="/health/guidelines/index.html#2.8">Privacy Guidelines for the Medicare Benefits and Pharmaceutical Benefits Programs</A>&nbsp;<FONT color=#ff0000>(binding)</FONT></LI> <LI><STRONG><FONT color=#cc0000>NEW! </FONT></STRONG><A href="/publications/breach_guide.pdf">Guide to Handling Personal Information Security Breaches (PDF)</A> <FONT color=#ff0000>(advisory)</FONT></LI> </UL> <H3>Government</H3> <UL> <LI><A href="#3.4">Guidelines to the Information Privacy Principles</A>&nbsp;<FONT color=#ff0000>(advisory)</FONT> <LI><A href="/internet/email/index.html">Guidelines on Workplace E-mail, Web Browsing and Privacy</A>&nbsp;<FONT color=#ff0000>(advisory)</FONT> <LI><A href="/internet/web/index.html">Guidelines for Federal and ACT Government World Wide Websites</A>&nbsp;<FONT color=#ff0000>(advisory)</FONT> <LI>Privacy and Public Key Infrastructure: Guidelines for Agencies using PKI to communicate or transact with individuals - <A href="/publications/pki.pdf">PDF</A>,&nbsp;<A href="/publications/pki.doc">Word</A>, <A href="/publications/pki.rtf">RTF</A>&nbsp;&nbsp;&nbsp;<FONT color=#ff0000>(advisory)</FONT> <LI>Guidelines on the provision of personal information by Commonwealth agencies to Members of Parliament - &nbsp;<A href="/publications/HRC_PRIVACY_PUBLICATION.pdf_file.p6_4_78.48.pdf">PDF</A>, <A href="/publications/HRC_PRIVACY_PUBLICATION.word_file.p6_4_78.48.doc">Word</A>&nbsp;<FONT color=#ff0000>(advisory)</FONT> <LI><A href="http://www.privacy.gov.au/publications/dmgls97.pdf">Guidelines for the conduct of the data-matching program</A><FONT color=#ff0000>(binding)</FONT> <LI>Guidelines for the use of data-matching in Commonwealth administration -&nbsp;<A href="/publications/HRC_PRIVACY_PUBLICATION.pdf_file.p6_4_23.15.pdf">PDF</A>, <A href="/publications/HRC_PRIVACY_PUBLICATION.word_file.p6_4_23.15.doc">Word</A> <FONT color=#ff0000>(advisory)</FONT> <LI>Public Interest Determination Procedure Guidelines&nbsp;- <A href="/publications/pidguide.pdf">PDF</A>,&nbsp;<A href="/publications/pidguide.doc">Word</A> <FONT color=#ff0000>(advisory)</FONT> <LI>Tax File Number Annotated Guidelines - <A href="http://www.privacy.gov.au/publications/tfngls.pdf">PDF</A>, <A href="http://www.privacy.gov.au/publications/tfngls.doc">Word</A>&nbsp;<FONT color=#ff0000>(binding)</FONT> <LI><A href="/health/guidelines/index.html#2.8">Privacy Guidelines for the Medicare Benefits and Pharmaceutical Benefits Programs</A>&nbsp;<FONT color=#ff0000>(binding)</FONT> <LI>Covert surveillance in Commonwealth administration (February 1992) - <A href="../../publications/covertsurveillance.pdf">PDF</A>, <A href="../../publications/covertsurveillance.doc">Word</A> <FONT color=#ff0000>(advisory)</FONT></LI> <LI>Privacy Impact Assessment Guide (August 2006) - <A href="/publications/pia06/index.html">HTML</A>, <A href="/publications/PIA06.pdf">PDF</A>, <A href="/publications/PIA06.doc">Word</A> <FONT color=#ff0000>(advisory)</FONT></LI> <LI>Australian Government agencies in the Northern Territory - Indigenous Protocol (entitled "Minding Your Own Business" - February 1998) - <A href="/publications/HRC_PRIVACY_PUBLICATION.pdf_file.p6_4_79.49.pdf">PDF</A>, <A href="../../publications/HRC_PRIVACY_PUBLICATION.word_file.p6_4_79.49.doc">Word</A> <FONT color=#ff0000>(advisory)</FONT></LI> <LI><STRONG><FONT color=#cc0000>NEW! </FONT></STRONG><A href="/publications/breach_guide.pdf">Guide to Handling Personal Information Security Breaches (PDF)</A> <FONT color=#ff0000>(advisory)</FONT></LI> </UL> <P><SMALL><A href="#top">Back to Top</A></SMALL></P> <HR color=#000000> <A name=3.2></A> <H3>Guidelines to the National Privacy Principles (September 2001)</H3> <P>To assist organisations in understanding their obligations under the <EM>Privacy Act 1988</EM>, the Office of the Privacy Commissioner (the Office) has developed a set of guidelines that give organisations helpful information about the National Privacy Principles (NPPs). For organisations that want more detailed explanations, good practice or compliance tips, the Office has also released a number of <A href="/business/infosh/index.html">information sheets</A>. Organisations subject to the provisions of the Privacy Act will need to comply with the NPPs or an approved privacy code when handling personal information.</P> <UL> <LI>Guidelines to the National Privacy Principles -&nbsp;<A href="/publications/nppgl_01.html">HTML</A>, <A href="/publications/nppgl_01.pdf">PDF</A>, <A href="/publications/nppgl_01.doc">Word</A>, <A href="/publications/nppgl_01.rtf">RTF</A>, <A href="/publications/nppgl_01.zip">Zip</A></LI></UL> <P><SMALL><A href="#top">Back to Top</A></SMALL> </P> <HR> <A name=3.4></A> <H3>Guidelines to the Information Privacy Principles (October 1994)</H3> <P>The <I>Privacy Act 1988</I> recognises the importance that individuals place on the manner in which Federal and ACT government agencies treat their personal information and imposes stringent standards to which agencies must comply. Within the Act, 11 Information Privacy Principles (IPPs) govern the collection, storage, use and disclosure of personal information by Federal and ACT government agencies, as well as providing individuals with certain rights to access their personal information and correct errors.</P> <P>These guidelines discuss how agencies can meet their IPP obligations when handling personal information. They provide a detailed discussion and analysis of each IPP, with explanation given as to the meanings of the various terms and expressions used. Federal and ACT government agencies should find these a valuable resource in understanding their obligations under the IPPs and implementing privacy compliant practices.</P> <UL> <LI>Guidelines to Information Privacy Principles 1-3 - <A href="http://www.privacy.gov.au/publications/HRC_PRIVACY_PUBLICATION.pdf_file.p6_4_14.4.pdf">PDF</A>, <A href="http://www.privacy.gov.au/publications/HRC_PRIVACY_PUBLICATION.word_file.p6_4_14.4.doc">Word</A> <LI>Guidelines to Information Privacy Principles 4-7 - <A href="http://www.privacy.gov.au/publications/HRC_PRIVACY_PUBLICATION.pdf_file.p6_4_15.7.pdf">PDF</A>, <A href="http://www.privacy.gov.au/publications/HRC_PRIVACY_PUBLICATION.word_file.p6_4_15.7.doc">Word</A> <LI>Guidelines to Information Privacy Principles 8-11 - <A href="http://www.privacy.gov.au/publications/ipp8_11.pdf">PDF</A>, <A href="http://www.privacy.gov.au/publications/ipp8_11.doc">Word</A></LI></UL> <TABLE width="100%" border=1> <TBODY> <TR> <TD><STRONG>Document</STRONG></TD> <TD><STRONG>Date amended</STRONG></TD> <TD><STRONG>Guideline</STRONG></TD> <TD><STRONG>Location of change</STRONG></TD></TR> <TR> <TD>IPP Guidelines 8-11 </TD> <TD>1 April 2003 </TD> <TD>Guideline 32 n.b. previous version available in Archived Publications </TD> <TD>1. new text is shaded Note under "What is law", after - For example: regulations determinations. <BR>2. under "What is not law" (replacement) shaded para after dot point state law. </TD></TR></TBODY></TABLE> <P><SMALL><A href="#top">Back to Top</A></SMALL> </P> <P> <HR> <P></P> <H3><A name=3.1></A>Guidelines on Privacy Code Development&nbsp;(September 2001)</H3> <P>The following version of the Code Development Guidelines includes the prescribed standards, as referred to in section 18BB(3)(a)(i) of the Act. Section 18BB(3) of the Privacy Act says that before a code has procedures for making and dealing with complaints can be approved, the&nbsp;Privacy Commissioner must be satisfied that the procedures meet the prescribed standards. The prescribed standards can be found in Appendix A. </P> <UL> <LI>Guidelines on Privacy Code Development&nbsp;- <A href="/publications/cdg_01.html">HTML</A>, <A href="/publications/cdg_01.pdf">PDF</A>, <A href="/publications/cdg_01.doc">Word</A>,&nbsp;<A href="/publications/cdg_01.rtf">RTF</A>, <A href="/publications/cdg_01.zip">Zip</A></LI></UL> <P><SMALL><A href="#top">Back to Top</A></SMALL></P> <p><a href="">Return</a></p> </td> </tr> </table> </body> </html>