Osher Digital operates in compliance with the Australian Privacy Principles (APPs) under the Privacy Act 1988.
Where an engagement involves handling personal information, we ensure that collection, use, storage and disclosure practices meet the requirements of the Act. In practice that means:
- Privacy requirements are identified during project inception, alongside data classification and residency
- Solutions are designed so personal information is collected and used only for the purposes your business has established
- Storage and access controls match the sensitivity of the information — see Data protection controls
- If the worst happens, our incident process includes 24-hour notification and support for your Notifiable Data Breaches obligations to the OAIC
For health information there are additional safeguards — see Handling health information.