Associations need to ensure they comply with legal requirements regarding any personal information it holds about clients, employees, members and other individuals. Any personal information collected must be kept private and confidential and individuals have a right to:
- have their privacy rights respected;
- be assured their information will not be passed onto a third person unless it is authorised by law or they have given their consent;
- know what information will be kept and why; and
- be assured that information will only be used for the purpose it was supplied.
The Commonwealth’s Privacy Act 1988 regulates how personal information is handled by an organisation. The Privacy Act includes thirteen Australian Privacy Principles setting out the standards, rights and obligations for the handling, holding, use, accessing and correction of personal information. While these principles may not be legally binding for all incorporated associations they do provide a framework for managing personal information which any group could use. Visit the website for the Office of the Australian Information Commissioner (OAIC) or telephone 1300 363 992 for more information about privacy laws.