Data Breach Self-assessment Tool for Mandatory Notification of Data Breaches

The purpose of this Self-assessment Tool is to assist NSW public sector agencies to determine whether a data breach is an eligible data breach under the Mandatory Notification of Data Breach Scheme (MNDB Scheme).

This tool is made available for general information only and is not meant to replace an agency’s own assessment.  The IPC's MNDB Scheme guidance and this self-assessment must be read and completed within the context of an individual public sector agency’s relevant internal policies and processes, together with the statutory guidance issued by the Privacy Commissioner. The IPC's guidance is available via the MNDB Scheme webpage.

If you are an individual and you believe that a NSW public sector agency has breached your personal information, please see our page on How do I make a complaint for more information about your options.