Data breach notification law in the EU and Australia - Where to now?

Mark Burdon, Bill Lane, Paul Von Nessen

Research output: Contribution to journalArticleResearchpeer-review

14 Citations (Scopus)


Mandatory data breach notification laws have been a significant legislative reform in response to unauthorized disclosures of personal information by public and private sector organizations. These laws originated in the state-based legislatures of the United States during the last decade and have subsequently garnered worldwide legislative interest. We contend that there are conceptual and practical concerns regarding mandatory data breach notification laws which limit the scope of their applicability, particularly in relation to existing information privacy law regimes. We outline these concerns here, in the light of recent European Union and Australian legal developments in this area.
Original languageEnglish
Pages (from-to)296 - 307
Number of pages12
JournalComputer Law and Security Review
Issue number3
Publication statusPublished - 2012

Cite this