NEW!! - The University's new Privacy Policy has commenced (October 2019)

The main privacy laws that apply to the University are the:

- Privacy and Personal Information Protection Act 1998 (NSW); and the

- Health Records and Information Protection Act 2002 (NSW).

These Acts contain, respectively, the Information Protection Principles (IPPs) and the Health Privacy Principles (HPPs) to ensure personal and health information held by public sector agencies, including the University, is not modified, used or accessed by unauthorised people. The principles regulate the handling of personal and health information, and cover its collection, storage, use, disclosure and disposal. The University's Privacy Policy identifies how the University will comply with the principles.

The Acts also allow a person who feels their privacy has been breached by the University, to make a privacy complaint to the University.

Other privacy laws that impose obligations on the University include the:
- Privacy Act 1988 (Cth), in regard to the University’s handling of tax file numbers (TFNs); and
- European Union General Data Protection Regulation (2016/679) (the “GDPR”), in regard to the University’s handling of personal information of EU residents.

The University's Privacy Officer:

  • acts as a first point of contact with the NSW Privacy Commissioner for matters related to privacy and personal information;
  • acts as a reference point at the University for privacy matters; and
  • acts as a point of contact for privacy complaints and requests to access personal information.

More information

Mr Paul Serov
Privacy Officer
Phone: +61 2 9065 5491