Privacy Act

The Privacy Act 1988 (Cth), as amended by the Privacy Amendment (Private Sector) Act 2000 (Cth), regulates how private sector organisations (including insurers) handle “personal information” relating to policyholders. Organisations are required to comply with the 10 Australian Privacy Principles, which set minimum standards for collection, storage, use, security and disposal of personal information.

The federal Privacy Commissioner has released guidelines to assist insurers and policyholders with their privacy concerns. For more information, see Privacy and your rights.