<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"><html lang="en"> <head> <META http-equiv="Content-Type" content="text/html; charset=UTF-16"> <META http-equiv="Content-Type" content="text/html; charset=utf-8"> <META http-equiv="Pragma" content="no-cache"> <title>The Office of the Privacy Commissioner</title> <link href="/css/default_css.asp" rel="stylesheet" rev="stylesheet" type="text/css"> </head> <body> <table cellpadding="8" cellspacing="0" border="0" width="570"> <tr> <td valign="top"> <h1>Government Guidelines </h1> <UL> <LI><A href="#34">Guidelines to Information Privacy Principles</A> <FONT color=#ff0000>(advisory)</FONT> <LI><A href="/internet/email/index.html">Guidelines on Workplace E-mail, Web Browsing and Privacy</A> <FONT color=#ff0000>(advisory)</FONT> <LI><A href="/internet/web/index.html">Guidelines for Federal and ACT Government World Wide Websites</A> <FONT color=#ff0000>(advisory)</FONT> <LI><A href="#a">Privacy and Public Key Infrastructure: Guidelines for Agencies using PKI to communicate or transact with individuals</A> <FONT color=#ff0000>(advisory)</FONT> <LI>Guidelines on the provision of personal information to members of Parliament (August 1990) - <A href="/publications/HRC_PRIVACY_PUBLICATION.pdf_file.p6_4_78.48.pdf">PDF</A>, <A href="/publications/HRC_PRIVACY_PUBLICATION.word_file.p6_4_78.48.doc">Word</A> <FONT color=#ff0000>(advisory)</FONT> <LI>Guidelines for the conduct of the data-matching program - <A href="http://www.privacy.gov.au/publications/dmgls97.pdf">PDF</A>, <A href="http://www.privacy.gov.au/publications/dmgls97.doc">Word</A> <FONT color=#ff0000>(binding)</FONT> <LI>Guidelines for the use of data-matching in Commonwealth administration - <A href="/publications/HRC_PRIVACY_PUBLICATION.pdf_file.p6_4_23.15.pdf">PDF</A>, <A href="/publications/HRC_PRIVACY_PUBLICATION.word_file.p6_4_23.15.doc">Word</A>&nbsp;<FONT color=#ff0000>(advisory)</FONT> <LI>Public Interest Determination Procedure Guidelines&nbsp;- <A href="/publications/pidguide.pdf">PDF</A>,&nbsp;<A href="/publications/pidguide.doc">Word</A> <FONT color=#ff0000>(advisory)</FONT> <LI>Tax File Number Annotated Guidelines - <A href="/publications/tfngls.pdf">PDF</A>, <A href="/publications/tfngls.doc">Word</A>&nbsp;<FONT color=#ff0000>(binding)</FONT> <LI>Privacy Impact Assessment Guide - <A href="http://www.privacy.gov.au/publications/pia06/index.html">HTML</A>, <A href="http://www.privacy.gov.au/publications/PIA06.pdf">PDF</A>, <A href="http://www.privacy.gov.au/publications/PIA06.doc">Word</A>&nbsp;<FONT color=#ff0000>(advisory)</FONT> <LI>Privacy Guidelines for the Medicare Benefits and Pharmaceutical Benefits Programs <A href="/health/guidelines/index.html#2.8">Link</A> <FONT color=#ff0000>(binding)</FONT> <LI>Covert surveillance in Commonwealth administration (February 1992) - <A href="../../publications/covertsurveillance.pdf">PDF</A>, <A href="../../publications/covertsurveillance.doc">Word</A> <FONT color=#ff0000>(advisory)</FONT></LI> <LI><STRONG><FONT color=#cc0000>NEW!</FONT></STRONG><strong> </strong>Guide to handling personal information security breaches (August 2008) - <A href="/publications/breach_guide.pdf">PDF</A>, <A href="/publications/breach_guide.doc">Word</A> <FONT color=#ff0000>(advisory)</FONT></LI> </UL> <HR color=#000000> <P><A name=34></A> <H3>Guidelines to Information Privacy Principles</H3> <P>The <I>Privacy Act 1988&nbsp;</I>(Cth) recognises the importance that individuals place on the manner in which federal and ACT government agencies treat their personal information and imposes stringent standards to which agencies must comply. Within the Act, 11 Information Privacy Principles (IPPs) govern the collection, storage, use and disclosure of personal information by federal government and ACT agencies, as well as providing individuals with certain rights to access their personal information and correct errors.</P> <P>These guidelines discuss how agencies can meet their IPP obligations when handling personal information. They provide a detailed discussion and analysis of each IPP, with explanation given as to the meanings of the various terms and expressions used. Federal government agencies should find these a valuable resource in understanding their obligations under the IPPs and implementing privacy compliant practices.</P> <UL> <LI>Guidelines to Information Privacy Principles 1-3 - <A href="/publications/HRC_PRIVACY_PUBLICATION.pdf_file.p6_4_14.4.pdf">PDF</A>, <A href="/publications/HRC_PRIVACY_PUBLICATION.word_file.p6_4_14.4.doc">Word</A> <LI>Guidelines to Information Privacy Principles 4-7 - <A href="/publications/HRC_PRIVACY_PUBLICATION.pdf_file.p6_4_15.7.pdf">PDF</A>, <A href="/publications/HRC_PRIVACY_PUBLICATION.word_file.p6_4_15.7.doc">Word</A> <LI>Guidelines to Information Privacy Principles 8-11 - <A href="/publications/ipp8_11.pdf">PDF</A>, <A href="/publications/ipp8_11.doc">Word</A></LI></UL> <TABLE borderColor=black cellSpacing=0 cellPadding=1 width="100%" align=center border=1> <TBODY> <TR> <TD><STRONG>Document</STRONG></TD> <TD><STRONG>Date amended</STRONG></TD> <TD><STRONG>Guideline</STRONG></TD> <TD><STRONG>Location of change</STRONG></TD></TR> <TR> <TD> <P align=left>IPP Guidelines 8-11 </P></TD> <TD>6 June 2003 </TD> <TD>Guideline 32.<BR>N.b. previous versions available in <A href="/publications/archives/index.html#g">Archived Publications</A> </TD> <TD> <P>1. Note: "change to first sentence in What is Law"</FONT><BR>2. "Shortened sentence in What is not Law". </P></TD></TR> <TR> <TD>IPP Guidelines 8-11 </TD> <TD>1 April 2003 </TD> <TD>Guideline 32.<BR>N.b. previous version available in <A href="/publications/archives/index.html#g">Archived Publications</A></TD> <TD> <P>1. new text is shaded Note under "What is law", after - For example: regulations determinations. <BR><BR>2. under "What is not law" (replacement) shaded para after dot point state law. </P></TD></TR></TBODY></TABLE> <P><A href="#top"><SMALL>Back to Top</SMALL></A></P> <P></P> <HR color=#000000> <P><A name=a></A> <H3>Privacy and Public Key Infrastructure: Guidelines for Agencies using PKI to communicate or transact with individuals</H3> <P>A key issue for the Australian community in the information age is how they can be confident of their privacy while taking advantage of the developments offered in information and communications technology. This is reflected, for example, in recent research into attitudes to privacy conducted by my Office that indicated more than half of all Internet users had more concerns about the security of personal information when using the Internet.</P> <P>Public key technology (PKT) and its surrounding infrastructure - public key infrastructure (PKI) - is a powerful technology which offers benefits to enhance privacy of individuals. It can, for example, provide confidentiality of on-line communications, authentication of parties in on-line transactions, as well as non-repudiation of transactions and message integrity. However, there are privacy risks associated with PKI and these need to be carefully managed.</P> <UL> <LI>Privacy and Public Key Infrastructure - <A href="/publications/pki.doc">Word</A>,&nbsp;<A href="/publications/pki.rtf">RTF</A>, <A href="/publications/pki.zip">Zip</A></LI></UL> <P>&nbsp;</P> <P><A href="#top"><SMALL>Back to Top</SMALL></A></P> <P>&nbsp;</P> <p><a href="">Return</a></p> </td> </tr> </table> </body> </html>