The item you have requested is not currently available in English and you have been redirected to the next available page. You may use your browser's back button to return to the item you were viewing.
Country desks feature Dentons lawyers in one jurisdiction with a particular focus or experience in another jurisdiction.
Learn more about our Canada capabilities
Learn more about our United States capabilities
Learn more about our Latin America and the Caribbean capabilities
Learn more about our Europe capabilities
Learn more about our United Kingdom capabilities
Learn more about our Central and Eastern Europe capabilities
Learn more about our Russia, CIS and the Caucasus capabilities
Learn more about our Africa capabilities
Learn more about our Middle East capabilities
Learn more about our Central Asia capabilities
Learn more about our China capabilities
Learn more about our ASEAN capabilities
Learn more about our Asia Pacific capabilities
Learn more about our Australia capabilities
At Dentons, we bring together top tier talent found at the intersection of geography, industry knowledge and substantive legal expertise. Start by clicking here
More than 225 Dentons lawyers recognised across 99 categories of The Legal 500 UK 2018
Dentons is pleased to announce that the Firm has been ranked in 99 categories in the 2018 edition of The Legal 500 UK, and a total of 226 Dentons lawyers have been recognised across their respective practice areas.
When a cancellation isn’t a cancellation: Cancelling an insurance policy under the Alberta Insurance Act
When it comes to cancelling an insurance policy, both insurers and insureds need to complete the mandated steps.
"Gay marriage" cake: refusal to supply was not discriminatory
In Lee v. Ashers Baking Company Limited and Others, the Supreme Court considered whether a bakery's refusal to supply a cake with a slogan supporting gay marriage was discriminatory on the grounds of sexual orientation or political opinion
Federal autonomous vehicle legislation could get a lame-duck boost
Should Democrats take control of the US House of Representatives, the effort to pass federal autonomous vehicle legislation may be kicked into overdrive.
IRS issues cost of living adjustments to retirement plan limits
The IRS has issued its 2019 cost of living adjustments to retirement plan limits.
Starting your career as a student at Dentons exposes you to a world of experience and opportunities
With 176 locations in 78 countries, Dentons is home to top-tier talent that is found at the intersection of geography, industry knowledge and substantive legal experience. Working with Dentons, you will have the opportunity to learn from the best lawyers in the industry at the largest law firm in the world.
Dentons ranked across 66 practice areas in Chambers UK 2019 with leading individuals recognised in 110 categories
Dentons is pleased to announce that it has been recommended across 66 different practice areas by Chambers & Partners in the Chambers UK 2019 guide.
Dentons launches Market Insights publication: “Digital Transformation and the Digital Consumer”
Dentons, the world’s largest law firm, has launched a new Market Insights publication entitled “Digital Transformation and the Digital Consumer”, which examines the legal implications of the online economy.
Dentons celebrates successful first year following merger with Maclay Murray & Spens
Dentons is pleased to celebrate the first anniversary of the Firm's combination with Maclay Murray & Spens, creating a UK footprint of six offices: three in England (London, Milton Keynes and Watford) and three in Scotland (Glasgow, Edinburgh and Aberdeen).
Until now, Australia did not have a mandatory data breach notification requirement. The Office of the Australian Information Commissioner (OAIC) simply encouraged entities to notify it of data breaches – the regime was entirely voluntary.
The Privacy Amendment Act will make it a legal requirement for entities regulated by the Privacy Act 1988 (Cth) to notify the OAIC and affected individuals of ‘eligible data breaches’ as soon as they become aware that there are reasonable grounds to believe such a breach has occurred (unless an exception applies). All APP entities (including credit providers and credit reporting bodies) are required to comply with the new regime.
An ‘eligible data breach’ warranting notification occurs if:
(i) there is unauthorised access to, or unauthorised disclosure of, information held by an organisation; or
(ii) information is lost in circumstances where there is likely to be unauthorised access to or unauthorised disclosure of information; and
The Privacy Amendment Act stipulates several factors relevant in determining whether access to, or disclosure, of information is likely to result in ‘serious harm’, including: the kind of information; the sensitivity of the information; the person/s who have obtained the information; and the nature of the potential harm to affected person/s.
Entities that have reasonable grounds to suspect that an eligible data breach has occurred have an obligation to carry out a ‘reasonable and expeditious’ assessment of the suspected data breach. This assessment must be undertaken within 30 days of first becoming aware of the suspected data breach.
As soon as becoming aware that there are reasonable grounds to believe that the relevant circumstances amount to an eligible data breach by the organisation, the organisation must, at a minimum, take the following steps:
Not all data breaches will require a mandatory notification obligation. There are a number of exceptions to the mandatory notification regime. These include:
Under the new regime, where an organisation breaches a mandatory notification requirement, that contravention may amount to an ‘interference’ with the privacy of an individual. As such, this may result in the imposition of a civil penalty under the Privacy Act.
Currently the maximum civil penalty is AU$360,000 for individuals and AU$1.8 million for corporate entities.
The OAIC expects all entities to have a data breach response plan as part of their ongoing privacy obligations and as part of the new regime. A data breach response plan, forms part of having robust and effective privacy practices, and provides the ability to respond quickly.
A data breach response plan should include:
There are a number of things that you should be doing right now to prepare for the new reporting obligations and also minimise the harm that can arise from a cyber-attack. These include: