Privacy

The IPC oversees a number of laws that protect and promote the protection of personal and health information in NSW.

You can make an informal application under both the PPIP Act or HRIP Act, however, most agencies will require authorisation in writing and will ask for proof of identification.

The IPC provides guidance and resources for individuals seeking to make a complaint to the NSW Privacy Commissioner about their privacy being breached by a NSW public sector agency.

The Information and Privacy Commission NSW (IPC) has forms to assist you in making a privacy complaint under the PPIP Act.

The IPC cannot provide any advice related to individual rights and obligations in relation to surveillance laws. This page provides you with further support on where to receive such advice.

The Mandatory Notification of Data Breach Scheme (MNDB Scheme) is a mandatory notification requirement under the PPIP Act for NSW public sector agencies in the event of an ‘eligible data breach’.

If you have been affected by a data breach, there are support services available to help. This page provides you with more information on some of the support services you can access.

This toolkit includes fundamental regulatory guidance to ensure that agencies are able to meet their requirements under NSW information access and privacy legislation.

The Mandatory Notification of Data Breach (MNDB) Scheme requires agencies to notify the Privacy Commissioner and provide notifications to affected individuals in the event of an 'eligible data breach'.

The IPC monitors the compliance of NSW public sector agencies with the PPIP and HRIP Act.

The Public Interest Disclosures Act 2022 (PID Act) provides a system to encourage public officials to report wrongdoings about privacy contraventions.

The IPC's e-Learning portal contains a number of online training modules to provide training across privacy and government information access legislation.