Corporate Australia is increasingly concerned about class actions, with privacy and data breach claims topping their worry list, according to a new report.
The OAIC will not investigate Clearview AI further after finding in 2021 that the US-based facial recognition software company breached privacy rules by scraping facial images from the web, but the regulator promised to weigh in soon on when the use of personal information to train AI could run afoul of privacy laws.
Experts say the chaos of last month’s CrowdStrike outage is likely to spark a flurry of litigation both overseas and at home, including class actions, but lawyers bringing the claims will face significant hurdles.
The number of new class actions so far this year has fallen short of recent years, and not a single shareholder proceeding has been lodged in 2024 to date, according to a new report.
Johnson Winter Slattery has boosted its cybersecurity, privacy and technology team by luring a senior technology lawyer from Herbert Smith Freehills.
Law firm HWL Ebsworth is facing a representative complaint filed with the Office of the Australian Information Commissioner over a 2023 cyber attack, which allegedly compromised the data of 65 government agencies and affected NDIS participants.
The Australian Communications and Media Authority says a coding error on a dormant website that went undetected for four years was behind a massive data breach that exposed the information of close to 10 million Optus customers, with the regulator saying the hack was “not highly sophisticated”.
Medibank failed to put in place baseline security measures, including multi-factor authentication, to safeguard sensitive information from a hacker in 2022, who stole an IT contractor’s credentials and logged in to the health insurer’s private network three months before the company learned its data was compromised, the OAIC says.
A judge overseeing several cases against Optus over a September 2022 data breach has raised the possibility of hearing a class action against the telco alongside new proceedings brought by the Australian Communications and Media Authority.
After an 18-month investigation, the Office of the Australian Information Commissioner has lodged civil penalty proceedings against Medibank over its October 2022 data breach, accusing the health insurer of breaching the Privacy Act.