Hotel SA March 2024

More documents

Recommendations

Info

C Y B E R S E C U R I T Y Effective data breach response is about reducing or removing harm to affected individuals, while protecting the interests of your organisation or agency. Notification has the practical benefit of providing individuals with the opportunity to take steps to protect their personal information following a data breach, such as by changing account passwords or being alert to possible scams resulting from the breach. It is important that staff are capable of engaging with individuals who have been affected by a data breach with sensitivity and compassion, in order not to exacerbate or cause further harm. Notification can also help build trust in an entity, by demonstrating that privacy protection is taken seriously. STEP 4: REVIEW Once steps 1 to 3 have been completed, an entity should review and learn from the data breach incident to improve its personal information handling practices. This might involve: • a security review including a root cause analysis of the data breach • a prevention plan to prevent similar incidents in future • audits to ensure the prevention plan is implemented • a review of policies and procedures and changes to reflect the lessons learned from the review 32 | Hotel SA | W W W . A H A S A . A S N . A U Back to Contents
C Y B E R S E C U R I T Y “Effective data breach response is about reducing or removing harm to affected individuals, while protecting the interests of your organisation or agency.” • changes to employee selection and training practices • a review of service delivery partners that were involved in the breach. In reviewing information management and data breach response, an entity can refer to the OAIC’s Guide to Securing Personal Information. 10 When reviewing a data breach incident, it is important to use the lessons learned to strengthen the entity’s personal information security and handling practices, and to reduce the chance of reoccurrence. A data breach should be considered alongside any similar breaches that have occurred in the past, which could indicate a systemic issue with policies or procedures. If any updates are made following a review, staff should be trained in any changes to relevant policies and procedures to ensure a quick response to a data breach. Source: oaic.gov.au Endnotes 10 See Guide to Securing Personal Information, OAIC website https://www.oaic.gov.au. Back to Contents W W W . A H A S A . A S N . A U | Hotel SA | 33
Page 1 and 2: THE OFFICIAL PUBLICATION OF THE AUS
Page 3 and 4: Shortcut to Stories MARCH 2024 Clic
Page 5 and 6: F R O M T H E P R E S I D E N T pos
Page 7 and 8: F R O M T H E C E O Evolving To Mee
Page 9 and 10: Smooth & Mellow you can thank the b
Page 11 and 12: S P O N S O R S Back to Contents W
Page 13 and 14: Back to Contents W W W . A H A S A
Page 15 and 16: S T U D Y T O U R “Great tour wit
Page 17 and 18: O N E F O R T H E R O A D W I T H V
Page 19 and 20: R E G I O N A L M E E T I N G S Bac
Page 21 and 22: A U S T R A L I A N D I N I N G Exp
Page 23 and 24: A U S T R A L I A N D I N I N G REV
Page 25 and 26: W O R K P L A C E R E L A T I O N S
Page 31: C Y B E R S E C U R I T Y This asse
Page 35 and 36: Back to Contents W W W . A H A S A
Page 37 and 38: GAMING CARE GAMING CARE works with

Hotel SA March 2024

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?