OAIC compels Ashley Madison to improve privacy
The owners of notorious dating site Ashley Madison have agreed to legally binding undertakings following an investigation by the Office of the Australian Information Commissioner.
Avid Life Media has pledged to conduct a thorough review of the protections it has in place to protect personal information to avoid a repeat of the major data leak involving its customer database last year.
By May next year, Avid Life Media has also agreed to augment its information security framework and adequately document this framework and its information security processes.
The enforceable undertakings also involve staff and contractor training and the production of an independent report documenting the measures taken to fulfil the promises.
Australian Privacy Commissioner Timothy Pilgrim said the incident shows how important it is for businesses to protect customers’ personal information, and the reputational damage that can result from failing to do so.
“The enforceable undertakings ... are a positive approach to improving privacy practices. But the impact of this incident reinforces what my office has stressed for some time — that privacy is not a bolt on accessory; it needs to be integrated into businesses and products by design,” he said.
As the Ashley Madison case demonstrates, companies not in compliance with Australian privacy regulations need to enhance privacy safeguards, amend information retention practices, improve information accuracy and increase transparency.
Securing SMB organisations: closing the cyber gap through culture
Limited budgets and resources mean SMBs cannot financially prioritise cybersecurity as much as...
The silent cyberthreat lurking in mismanaged tokens
It took years of painful breaches for organisations to recognise the importance of secure...
Excite Cyber makes cybersecurity predictions for 2026
Cybersecurity company Excite Cyber has released some trends and predictions for the coming year...
