Are you confident that you are meeting your requirements regarding contact and subscriber data? The Audited Media Association of Australia (AMAA) says that asking these three simple questions can help to ensure you stay on the right side of Australia’s Privacy Principles and the European Union’s GDPR.
- Do you collect data about people who reside outside of Australia?
- Do you have a data breach and response plan?
Data privacy is a key concern for businesses today. If you aren’t sure of the answers to these questions, the AMAA’s Privacy Review Service can assist your team to manage operational risk and meet the Australian law requirements. The AMAA’s new Privacy Review allows marketers to understand how they comply with Australian requirements, where they excel and where, if any, the risks are.
The review primarily focuses on the Australian Privacy Principles (Privacy Act 1988) and the Notifiable Breaches amendments (Feb 2018), but can be expanded to include a review against the EU’s General Data Protection Regulations (GDPR) for marketing actions.
The AMAA is working in partnership with the Australian Marketing Institute (AMI) to deliver the marketing-focused service to allow Australian marketing teams to minimise privacy risk to their businesses.
How it works
Step 1: consultation and information collection
In the first step the AMAA consults with the business to meet the team; learn more about their approach to privacy and how personal information is collected and used; and, to discuss the process and agree outcomes, documented in a project outline. To do this, the AMAA requests information including: privacy policies (both internal and external), examples of marketing use of personal information, and details about who has access to information.
Step 2: compliance customisation, onsite workshop and reporting
In the second step, the AMAA reviews provided information and customises the review to the specific client environment. An onsite workshop is scheduled to enable the review team to meet the marketers and discuss privacy in practice, review systems and practices, and answer follow-up questions, etc.
Step 3: completion and presentation of data privacy findings
The AMAA completes the review process and presents the key review findings and outcomes and completes the review with a detailed report. The report will include detail on:
- How the business implements Australia requirements in its marketing
- A discussion of the privacy procedure in practice in the business
- Potential risks and opportunities for improvement.