Charles Darwin University: Data Breach Notification Policy Report

This report provides a detailed overview of the Data Breach Notification Policy at Charles Darwin University (CDU). It outlines the policy statement, reason for its development, and its applicability to all users of Protected Personal Data (PPD), including students, staff, and contractors. The report defines key terms such as Security Breach, Personal Protected Data (PPD), Personally Identifiable Information (PII), Protected Student Information (PSI), and Protected Health Information (PHI). It elaborates on the procedures for identifying and assessing breaches, including the roles of the Privacy Officer and the requirements for notifying affected individuals and relevant agencies. The report also covers documentation requirements and provides contact information for further inquiries, referencing relevant Australian government guidelines and university policies. The policy emphasizes the importance of timely notification and the steps CDU takes to contain, evaluate, and prevent future data breaches.