MNDB Scheme resources
| Resources for agencies |
|---|
The IPC has published resources and guidance to support agencies with their responsibilities under the Scheme.
- Fact Sheet for agencies: Exemptions from notification to affected individuals
- Fact Sheet - Data breaches and contracted service providers
- Fact Sheet for agencies: Estimated cost of a data breach
- Guide to preparing a data breach policy
- Guide to managing data breaches in accordance with the PPIP Act
- Guide to Regulatory Action under the MNDB Scheme
- Guideline - Guidelines on the assessment of data breaches under Part 6A of the PPIP Act
- Guideline - Guidelines on the exemption for risk of serious harm to health or safety under section 59W
- Guideline - Guidelines on the exemption for compromised cyber security under section 59X
- Data Breach Self-assessment Tool for MNDB
- Form: Data Breach Notification to the Privacy Commissioner
- e-Learning module: Understanding the MNDB Scheme - for privacy practitioners
- Glossary - Defining the causes of a data breach
See all privacy resources for agencies.
| Resources for citizens |
|---|
The IPC has prepared guidance for NSW citizens to improve their understanding of the Scheme, their rights and what they can expect under the Scheme.
- Fact Sheet for citizens: What is the MNDB Scheme
- Fact Sheet - MNDB Scheme Frequently Asked Questions
- Fact Sheet - Notification to affected individuals of a Data Breach
See all privacy resources for citizens.
| IPC MNDB Bi-monthly e-Newsletter |
|---|
The IPC provided bi-monthly e-Newsletters to agencies in the lead up to the commencement of the Scheme that included important information and updates. Past editions are available below:
For agencies:
For citizens:
| IPC Webinar: Introduction to the Mandatory Notification of Data Breach Scheme - Ensuring your agency is prepared |
|---|
During the preparation for implementation of the MNDB Scheme, the Privacy Commissioner released a webinar for local councils, universities and agencies.
The webinar, focused on the basics of the MNDB Scheme, public sector agency obligations under the Scheme and what public sector agencies needed to do to prepare for the implementation of the Scheme.
- Watch the webinar via the IPC's YouTube channel
- Access the accompanying slides, including responses to additional questions that were raised in the webinar.
| Other useful guidance |
|---|
The IPC also has a range of other guidance available to assist agencies in understanding their obligations under the PPIP Act. See all privacy resources for agencies here.
- Data Breach Prevention Checklist
- Fact sheet – NSW public sector agencies and data breaches involving tax file numbers
- Fact sheet – Tips for reducing data breaches when sending emails
- IPC Privacy Governance Framework
- Transition to the Cloud: managing your agency’s privacy risks
- Essential Eight Guide to managing cyber security incidents
