This part of the Privacy Commissioner's website provides answers to questions frequently asked of the Office of the Privacy Commissioner. If you have a question you would like us to answer please send it to privacy@privacy.gov.au.

For 10 simple things that your agency or organisation can do to protect the personal information of others, see our handy Guide: 10 Steps to Protecting Other People’s Personal Information - HTML, PDF

General

1. Where can I find more information about privacy for private sector organisations? Answer
2. When is business information covered by the Privacy Act? Answer
3. How do I know if the country I am sending personal information to has privacy rules consistent with the Privacy Act? Answer
4. Centrelink has requested information from my organisation about an individual. Will I breach the Privacy Act if I give out this information? Answer
5. What do I need to think about if I want to put photos on the web? Answer
6. I am a financial adviser (authorised representatitve) acting for a dealer group ('A'). I am considering transferring to another dealer group ('B'). What are the key privacy obligations towards clients to whom I provide advice? Answer
7. Can I use my customer database to send a customer a Christmas Card? Answer

Alternative Dispute Resolution

1. Can Alternative Dispute Resolution Schemes collect sensitive information about another person (a third party)? Answer
2. When do Alternative Dispute Resolution Schemes have to notify other people (third parties) that they have collected their information? Answer
3. What can Alternative Dispute Resolution Schemes use and disclose another person's (a third party's) information for? Answer
4. Do Alternative Dispute Resolution Schemes have to give access to any personal information they hold about an individual? Answer

Privacy and Anti-Money Laundering and Counter-Terrorism Financing Act 2006 (AML/CTF Act)

1. Does your business have privacy obligations in relation to AML/CTF? Answer
2. How much information can be collected for AML/CTF purposes? Answer
3. Can personal information be collected for AML/CTF purposes from sources other than the individual concerned? Answer
4. What happens when personal information for AML/CTF purposes is used or disclosed? Answer
5. What happens if personal information for AML/CTF purposes changes? Answer
6. How does personal information for AML/CTF purposes need to be stored? Answer
7. Can an individual correct their Know Your Customer information? Answer
8. Can sensitive information be collected for AML/CTF purposes? Answer
9. What are my obligations in relation to providing individuals with access to information collected for AML/CTF purposes? Answer

Why not take the Privacy Quiz for organisations - PDF

About the FAQs

Responses to FAQs are based on the Office's understanding of how the Privacy Act works. The responses apply to the various privacy provisions and principles in a given situation and may help individuals, agencies, organisations and community groups in similar circumstances to reach a privacy solution.

Our responses to these questions are advisory only and not legally binding. You may need to seek separate legal advice on the application of the Privacy Act to your particular situation.

Nothing in an FAQ response limits the Privacy Commissioner's ability to investigate complaints under the Privacy Act or to apply the Information Privacy Principles or the National Privacy Principles in the way that seems most appropriate to the facts of the case being dealt with.

You may also wish to consult the Privacy Commissioner's guidelines and information sheets.