Privacy in Australian law

Last updated March 04, 2024

There is no absolute right to privacy in Australian law and there is no clearly recognised tort of invasion of privacy or similar remedy available to people who feel their privacy has been violated. Privacy is, however, affected and protected in limited ways by common law in Australia and a range of federal, state and territorial laws, as well as administrative arrangements.^[1]

What is privacy?

There is no statutory definition of privacy in Australia.^[1] The Australian Law Reform Commission (ALRC) was given a reference to review Australian privacy law in 2006. During that review it considered the definition of privacy in 2007 in its Discussion paper 72.^[2] In it, the ALRC found there is no "precise definition of universal application" of privacy; instead it conducted the inquiry considering the contextual use of the term "privacy".^[2]^{: para 1.37–1.45}

In reaching that conclusion, the ALRC began by considering the concept of privacy:^[2]^{: para 1.29}

"It has been suggested that privacy can be divided into some separate, but related concepts:

Information privacy, which involves the establishment of rules governing the collection and handling of personal data such as credit information, and medical and government records. It is also known as "data protection";^[3]
Bodily privacy, which concerns the protection of people’s physical selves against invasive procedures such as genetic tests, drug testing and cavity searches;
Privacy of communications, which covers the security and privacy of mail, telephones, e-mail and other forms of communication; and
Territorial privacy, which concerns the setting of limits on intrusion into the domestic and other environments such as the workplace or public space. This includes searches, video surveillance and ID checks.

Privacy at common law

It is unclear if a tort of invasion of privacy exists under Australian law.^[4] The ALRC summarised the position in 2007:^[2]^{: para 5.12, 5.14}

"In Australia, no jurisdiction has enshrined in legislation a cause of action for invasion of privacy; however, the door to the development of such a cause of action at common law has been left open by the High Court in Australian Broadcasting Corporation v Lenah Game Meats Pty Ltd (Lenah Game Meats).^[5] To date, two lower courts have held that such a cause of action is part of the common law of Australia. ..."
"At common law, the major obstacle to the recognition in Australia of a right to privacy was, before 2001, the 1937 High Court decision in Victoria Park Racing & Recreation Grounds Co Ltd v Taylor (Victoria Park).^[6] In a subsequent decision, the High Court in Lenah Game Meats indicated clearly that the decision in Victoria Park 'does not stand in the path of the development of … a cause of action (for invasion of privacy)'. The elements of such a cause of action – and whether the cause of action is to be left to the common law tradition of incremental development or provided for in legislation – remain open questions."

However, in 2008, the Court of Appeal of the Supreme Court of Victoria held "damages should be available for breach of confidence occasioning distress, either as equitable compensation, or under Lord Cairns' Act."^[7] This is a reference to the equitable doctrine of breach of confidence, which is different from a tort of invasion of privacy, although it has some applications to situations where one's privacy has been invaded.^[8]^[9]

In 2013, Attorney-General of Australia Mark Dreyfus QC MP again referred the issue of privacy to the ALRC. Its terms of reference included a detailed legal design of a statutory cause of action for serious invasions of privacy, and to consider the appropriateness of any other legal remedies to redress for serious invasions of privacy. The final report, Serious Invasions of Privacy in the Digital Era (ALRC Report 123) , was tabled in September 2014, after there had been a change of government. There has not been a formal response from the Australian government.

Postal confidentiality

Since at least the 19th century, it has been the practice to enclose mail in an envelope to prevent infringement of confidentiality. The unauthorised interception of mail of another is a criminal offence.^[10]

Telecommunications privacy

Telecommunications (Interception and Access) Act 1979

An Attorney-General discussion paper notes:

"The primary objective of the current legislation governing access to communications is to protect the privacy of users of telecommunications services in Australia by prohibiting covert access to communications except as authorised in the circumstances set out in the Telecommunications (Interception and Access) Act 1979."^[11]

Telecommunications (Interception and Access) Amendment (Data Retention) Act 2015

On 26 March 2015 both Houses of Parliament passed the Telecommunications (Interception and Access) Amendment (Data Retention) Act 2015 , which received royal assent on 13 April 2015.^[12]

The Act implements recommendations of the Parliamentary Joint Committee on Intelligence and Security (PJCIS) Report of the Inquiry into Potential Reforms of Australia’s National Security Legislation by amending the Telecommunications (Interception and Access) Act 1979 to:

require telecommunications service providers to retain for two years telecommunications data (not content) prescribed by regulations;
provide for a review by the PJCIS of the mandatory data retention scheme no more than three years after the end of its implementation phase;
limit the range of agencies that are able to access telecommunications data and stored communications;
provide for record-keeping and reporting the use of, and access to, telecommunications data; and
require the Commonwealth Ombudsman to inspect and oversight these records for compliance, and Telecommunications Act 1997 to make consequential amendments.

Controversy over 2015 Act

Despite being considered by some ^{[ who? ]} an absolute and whole violation of the right to privacy under the Privacy Act 1988, the topic, whilst debated,^{[ when? ]} was never brought to light by mainstream media.^{[ clarification needed on the role of media and definition of "mainstream"]} The consideration was postured ^{[ clarification needed on the meaning of this phrase]} due to the nature of the metadata being retained under the Act and the concept that ^{[ clarification needed on how this concept relates to the law that was passed]} while not directly capturing the content of communications undertaken, the bill gives considerable leeway in the kind of metadata being collected.

Australian privacy laws

Commonwealth

Privacy Act 1988
Telecommunications Act 1997
National Health Act 1953
Data-matching Program (Assistance and Tax) Act 1990
Crimes Act 1914
Anti-Money Laundering and Counter-Terrorism Financing Act 2006
The Healthcare Identifiers Act 2010
Personally Controlled Electronic Health Records Act 2012
Telecommunications (Interception and Access) Amendment (Data Retention) Act 2015

New South Wales

Privacy and Personal Information Protection Act 1998
Health Records and Information Privacy Act 2002
Freedom of Information Act 1989 (Repealed)^[13]
State Records Act 1998
Criminal Records Act 1991
Surveillance Devices Act 2007
Workplace Surveillance Act 2005
Telecommunications (Interception and Access) (New South Wales) Act 1987
Access to Neighbouring Land Act 2000
Crimes (Forensic Procedures) Act 2000

Victoria

Privacy and Data Protection Act 2014
Health Records Act 2001
The Charter of Human Rights and Responsibilities Act 2006
Freedom of Information Act 1982
Public Records Act 1973
Surveillance Devices Act 1999
Telecommunications (Interception) (State Provisions) Act 1988

Queensland

Human Rights Act 2019
Public Interest Disclosure Act 2010
Information Privacy Act 2009
Right to Information Act 2009
Public Records Act 2002
Police Powers and Responsibilities Act 2000
Criminal Law (Rehabilitation of Offenders) Act 1986
Invasion of Privacy Act 1971
Private Employment Agents (Code of Conduct) Regulation 2005

South Australia

Freedom of Information Act 1991
State Records Act 1997
Surveillance Devices Act 2016
Listening and Surveillance Devices Act 1972
Telecommunications (Interception) Act 1988

Western Australia

Freedom of Information Act 1992
Health Services (Conciliation and Review) Act 1995
State Records Act 2000
Spent Convictions Act 1988
Surveillance Devices Act 1998
Telecommunications (Interception) Western Australia Act 1996

Tasmania

Personal Information Protection Act 2004
Right to Information Act 2009
Archives Act 1983
Annulled Convictions Act 2003
Listening Devices Act 1991
Telecommunications (Interception) Tasmania Act 1999

Northern Territory

Information Act 2002
Criminal Records (Spent Convictions) Act 1992
Surveillance Devices Act 2007
Telecommunications (Interception) Northern Territory Act 2001

Australian Capital Territory

Privacy Act 1988 (Cth)
Australian Capital Territory Government Service (Consequential Provisions) Act 1994 (Cth)
Health Records (Privacy and Access) Act 1997
Human Rights Act 2004
Freedom of Information Act 1989
Territory Records Act 2002
Spent Convictions Act 2000
Listening Devices Act 1992

Related Research Articles

Privacy is the ability of an individual or group to seclude themselves or information about themselves, and thereby express themselves selectively.

The right to privacy is an element of various legal traditions that intends to restrain governmental and private actions that threaten the privacy of individuals. Over 150 national constitutions mention the right to privacy. On 10 December 1948, the United Nations General Assembly adopted the Universal Declaration of Human Rights (UDHR), originally written to guarantee individual rights of everyone everywhere; while right to privacy does not appear in the document, many interpret this through Article 12, which states: "No one shall be subjected to arbitrary interference with his privacy, family, home or correspondence, nor to attacks upon his honour and reputation. Everyone has the right to the protection of the law against such interference or attacks."

$<span class="mw-page-title-main">Mass surveillance</span> Intricate surveillance of an entire or a substantial fraction of a population$

Mass surveillance is the intricate surveillance of an entire or a substantial fraction of a population in order to monitor that group of citizens. The surveillance is often carried out by local and federal governments or governmental organizations, such as organizations like the NSA, but it may also be carried out by corporations. Depending on each nation's laws and judicial systems, the legality of and the permission required to engage in mass surveillance varies. It is the single most indicative distinguishing trait of totalitarian regimes. It is also often distinguished from targeted surveillance.

Center for Democracy & Technology (CDT) is a Washington, D.C.–based 501(c)(3) nonprofit organisation that advocates for digital rights and freedom of expression. CDT seeks to promote legislation that enables individuals to use the internet for purposes of well-intent, while at the same time reducing its potential for harm. It advocates for transparency, accountability, and limiting the collection of personal information.

Lawful interception (LI) refers to the facilities in telecommunications and telephone networks that allow law enforcement agencies with court orders or other legal authorization to selectively wiretap individual subscribers. Most countries require licensed telecommunications operators to provide their networks with Legal Interception gateways and nodes for the interception of communications. The interfaces of these gateways have been standardized by telecommunication standardization organizations. As with many law enforcement tools, LI systems may be subverted for illicit purposes.

Data retention defines the policies of persistent data and records management for meeting legal and business data archival requirements. Although sometimes interchangeable, it is not to be confused with the Data Protection Act 1998.

The Native Title Act 1993(Cth) is a law passed by the Australian Parliament, the purpose of which is "to provide a national system for the recognition and protection of native title and for its co-existence with the national land management system". The Act was passed by the Keating government following the High Court's decision in Mabo v Queensland (No 2) (1992). The Act commenced operation on 1 January 1994.

The Privacy Act 1988 is an Australian law dealing with privacy. Section 14 of the Act stipulates a number of privacy rights known as the Australian Privacy Principles (APPs). These principles apply to Australian Government and Australian Capital Territory agencies or private sector organizations contracted to these governments, organizations and small businesses who provide a health service, as well as to private organisations with an annual turnover exceeding AUD$3M. The principles govern when and how personal information can be collected by these entities. Information can only be collected if it is relevant to the agencies' functions. Upon this collection, that law mandates that Australians have the right to know why information about them is being acquired and who will see the information. Those in charge of storing the information have obligations to ensure such information is neither lost nor exploited. An Australian will also have the right to access the information unless this is specifically prohibited by law.

Privacy law is the body of law that deals with the regulating, storing, and using of personally identifiable information, personal healthcare information, and financial information of individuals, which can be collected by governments, public or private organisations, or other individuals. It also applies in the commercial sector to things like trade secrets and the liability that directors, officers, and employees have when handling sensitive information.

Telephone call recording laws are legislation enacted in many jurisdictions, such as countries, states, provinces, that regulate the practice of telephone call recording. Call recording or monitoring is permitted or restricted with various levels of privacy protection, law enforcement requirements, anti-fraud measures, or individual party consent.

Source protection, sometimes also referred to as source confidentiality or in the U.S. as the reporter's privilege, is a right accorded to journalists under the laws of many countries, as well as under international law. It prohibits authorities, including the courts, from compelling a journalist to reveal the identity of an anonymous source for a story. The right is based on a recognition that without a strong guarantee of anonymity, many would be deterred from coming forward and sharing information of public interests with journalists.

The Freedom of Information Act 1982(Cth) is an Act of the Parliament of Australia which guarantees freedom of information (FOI) and the rights of access to official documents of the Commonwealth Government and of its agencies to members of the public. It was passed by the Australian Parliament on 9 March 1982, and commenced on 1 December 1982.

<span class="mw-page-title-main">Mass surveillance in the United Kingdom</span> Overview of mass surveillance in the United Kingdom

The use of electronic surveillance by the United Kingdom grew from the development of signal intelligence and pioneering code breaking during World War II. In the post-war period, the Government Communications Headquarters (GCHQ) was formed and participated in programmes such as the Five Eyes collaboration of English-speaking nations. This focused on intercepting electronic communications, with substantial increases in surveillance capabilities over time. A series of media reports in 2013 revealed bulk collection and surveillance capabilities, including collection and sharing collaborations between GCHQ and the United States' National Security Agency. These were commonly described by the media and civil liberties groups as mass surveillance. Similar capabilities exist in other countries, including western European countries.

The USA Freedom Act is a U.S. law enacted on June 2, 2015, that restored and modified several provisions of the Patriot Act, which had expired the day before. The act imposes some new limits on the bulk collection of telecommunication metadata on U.S. citizens by American intelligence agencies, including the National Security Agency. It also restores authorization for roving wiretaps and tracking lone wolf terrorists. The title of the act is a ten-letter backronym that stands for Uniting and Strengthening America by Fulfilling Rights and Ensuring Effective Discipline Over Monitoring Act of 2015.

Mass surveillance in Australia takes place in several network media, including telephone, internet, and other communications networks, financial systems, vehicle and transit networks, international travel, utilities, and government schemes and services including those asking citizens to report on themselves or other citizens.

The Telecommunications Act 1979 is an Act of the Parliament of Australia which prohibits the unauthorised interception of communications or access to stored communications, with certain exceptions. The Act was amended by the Telecommunications Amendment Act 2015.

The Telecommunications Act 1997 is an act of law in the Commonwealth of Australia.

The Surveillance Devices Act 2007 (NSW) (“the Act”) is a piece of privacy legislation enacted by the Parliament of New South Wales the most populous state in Australia. It replaced the Listening Devices Act 1984 (NSW). The Act makes it an offence to record private conversations apart from in specific and defined circumstances. It makes provision for law enforcement officers to apply for warrants authorising the use of such devices and the circumstances in which judges of the Supreme Court of New South Wales might issue such warrants.

The Telecommunications (Interception and Access) Amendment (Data Retention) Act 2015(Cth) is an Act of the Parliament of Australia that amends the Telecommunications (Interception and Access) Act 1979 (original Act) and the Telecommunications Act 1997 to introduce a statutory obligation for Australian telecommunication service providers (TSPs) to retain, for a period of two years, particular types of telecommunications data (metadata) and introduces certain reforms to the regimes applying to the access of stored communications and telecommunications data under the original Act.

The Investigatory Powers Act 2016 is an Act of the Parliament of the United Kingdom which received royal assent on 29 November 2016. Its different parts came into force on various dates from 30 December 2016. The Act comprehensively sets out and in limited respects expands the electronic surveillance powers of the British intelligence agencies and police. It also claims to improve the safeguards on the exercise of those powers.

References

1 2 "privacy" in Trischa Mann (ed.), Australian Law Dictionary, ISBN 9780199691449 via Oxford Reference Online, Oxford University Press, accessed 29 August 2011.
1 2 3 4 "Review of Australian Privacy Law". [2007] Australian Law Reform Commission Discussion paper 72. ISBN 978-0-9758213-9-8
↑ Seven Network (Operations) Limited v Media Entertainment and Arts Alliance [2004] FCA 637 , Federal Court (Australia).
↑ Hosking v Runting [2004] NZCA 34 , Court of Appeal (New Zealand).
↑ Australian Broadcasting Corporation v Lenah Game Meats Pty Ltd [2001] HCA 63 , 208 CLR 199(15 November 2001)(Australia)
↑ Victoria Park Racing & Recreation Grounds Co Ltd v Taylor [1937] HCA 45 , (1937) 58 CLR 479 (26 August 1937), High Court (Australia).
↑ Giller v Procopets [2008] VSCA 236 , Court of Appeal (Vic,Australia).
↑ Grosse v Purvis [2003] QDC 151 , District Court (Qld,Australia).
↑ Jane Doe v Australian Broadcasting Corporation [2007] VCC 281 (3 April 2007) County Court of Victoria.
↑ Telecommunications and Postal Services (Transitional Provisions and Consequential Amendments) Act 1989 (Cth) s 5.
↑ Attorney-General’s Department, Equipping Australia against emerging and evolving threats, Discussion Paper, July 2012, p. 12.
↑ Telecommunications (Interception and Access) Amendment (Data Retention) Bill 2015
↑ "FREEDOM of INFORMATION ACT 1989 - as at 1 July 2010 - Act 5 of 1989".

External links

Government agencies administering privacy laws

Australian Government:
- Office of the Australian Information Commissioner
New South Wales:
- Office of the Privacy Commissioner
Victoria:
Queensland:
- Office of the Information Commissioner
- Health Quality and Complaints Commission
South Australia:
- Privacy Committee of South Australia
- Department of Health
Western Australia:
- Office of the Information Commissioner
- Ombudsman Western Australia
Tasmania:
- Ombudsman Tasmania
- Office of egovernment
Australian Capital Territory:
- Human Rights Commissioner
Northern Territory:
- Office of the Northern Territory Information Commissioner

Other Government websites and publications

Telecommunications (Interception and Access) Amendment (Data Retention) Bill 2015 Australian Parliamentary Library
Civil and Human Rights: Privacy, Australian Parliamentary Library
The Australian Law Reform Commission has had two references concerning privacy law in Australia:

2006 –2008

"For Your Information: Australian Privacy Law and Practice". [2008] Australian Law Reform Commission Report 108 (12 August 2008);

"Review of Privacy Reviewing Australia's Privacy Laws, Is Privacy passé? ... have your say" (PDF). [2006] Australian Law Reform Commission Issues Paper 31.
"Review of Privacy-Credit Reporting Provisions" (PDF). [2006] Australian Law Reform Commission Issues Paper 32.

1976 –1983

"Privacy" (PDF). [1983] Australian Law Reform Commission Report 22

NSW Law Reform Commission landing page for the 2006 privacy reference (amended 2009).

World Legal Information Institute & Australasian Legal Information Institute

WorldLII - Australia - Privacy

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[ALD-1] 1 2 "privacy" in Trischa Mann (ed.), Australian Law Dictionary, ISBN 9780199691449 via Oxford Reference Online, Oxford University Press, accessed 29 August 2011.

[ALRC2007DP72-2] 1 2 3 4 "Review of Australian Privacy Law". [2007] Australian Law Reform Commission Discussion paper 72. ISBN 978-0-9758213-9-8

[3] Seven Network (Operations) Limited v Media Entertainment and Arts Alliance [2004] FCA 637 , Federal Court (Australia).

[2004_NZCA_34-4] Hosking v Runting [2004] NZCA 34 , Court of Appeal (New Zealand).

[5] Australian Broadcasting Corporation v Lenah Game Meats Pty Ltd [2001] HCA 63 , 208 CLR 199(15 November 2001)(Australia)

[6] Victoria Park Racing & Recreation Grounds Co Ltd v Taylor [1937] HCA 45 , (1937) 58 CLR 479 (26 August 1937), High Court (Australia).

[7] Giller v Procopets [2008] VSCA 236 , Court of Appeal (Vic,Australia).

[8] Grosse v Purvis [2003] QDC 151 , District Court (Qld,Australia).

[9] Jane Doe v Australian Broadcasting Corporation [2007] VCC 281 (3 April 2007) County Court of Victoria.

[10] Telecommunications and Postal Services (Transitional Provisions and Consequential Amendments) Act 1989 (Cth) s 5.

[11] Attorney-General’s Department, Equipping Australia against emerging and evolving threats, Discussion Paper, July 2012, p. 12.

[telecombill-12] Telecommunications (Interception and Access) Amendment (Data Retention) Bill 2015

[13] "FREEDOM of INFORMATION ACT 1989 - as at 1 July 2010 - Act 5 of 1989".

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]

[13]

v t e Privacy
Principles	Right of access to personal data Expectation of privacy Right to privacy Right to be forgotten Post-mortem privacy
Privacy laws	Australia Brazil Canada China Denmark England European Union Germany Ghana New Zealand Russia Singapore Switzerland United Kingdom United States California, amended in 2020
Data protection authorities	Australia Denmark European Union France Germany India Indonesia Ireland Isle of Man Netherlands Norway Philippines Poland South Korea Spain Sweden Switzerland Thailand Turkey United Kingdom
Areas	Consumer Digital Education Medical Workplace
Information privacy	Law Financial Internet Facebook Google Twitter Email Personal data Personal identifier Social networking services Privacy-enhancing technologies Privacy engineering Privacy-invasive software Privacy policy Secret ballot Virtual assistant privacy
Advocacy organizations	American Civil Liberties Union Center for Democracy and Technology Computer Professionals for Social Responsibility Data Privacy Lab Electronic Frontier Foundation Electronic Privacy Information Center European Digital Rights Future of Privacy Forum Global Network Initiative International Association of Privacy Professionals NOYB Privacy International
See also	Anonymity Cellphone surveillance Data security Eavesdropping Global surveillance Identity theft Mass surveillance Panopticon PRISM Search warrant Wiretapping Human rights Personality rights
Category