InfoGovANZ

Information Governance Think Tank

InfoGovANZ

RIMPA and InfoGovANZ announce continued alliance

by

InfoGovANZ and RIMPA Global Signature

RIMPA and InfoGovANZ are delighted to announce their continued alliance.

RIMPA has been aligned with InfoGovANZ for some years enabling members to embrace and learn from InfoGovANZ leaders in information governance.

The term ‘information governance’ brings together a broad range of professionals from information and records management, legal, privacy, eDiscovery, cybersecurity and information security, AI, data analytics and infonomics.  InfoGovANZ continues to lead the region on information governance thought leadership, innovations and global best practices through its international community.  RIMPA brings a rich history and expertise in records and information management to the InfoGovANZ community.   Our organisations provide important forums for the latest  learning, education and collaboration for our respective members.

Working towards a global framework, RIMPA embrace what InfoGovANZ represent as the leaders in our region bringing together information governance thought leaders globally to promote best practices.

We look forward to the continued alliance and a range of learning opportunities for our respective members in 2023.

Susan Bennett, Executive Director, InfoGovANZ and Anne Cornish, CEO, RIMPA 

7 December 2022

InfoGovANZ is delighted to announce a new platinum sponsorship with Ansarada

by

Ansarada is a global information governance platform that companies, advisors and governments rely on for securely managing their critical information in high-stakes processes like deals, risk, compliance, board governance and infrastructure procurement. Ansarada is the software relied upon by business professionals in over 180 countries worldwide.

As businesses grow and get more complex, processes are often the first thing to slip. Ansarada puts an end to inefficient, chaotic, outdated and risky systems by providing a comprehensive toolkit for all things governance. Run everything from risk and compliance to ESG programs to audits in one centralised hub. A little more order, a lot less risk.

Ansarada believes when information and processes are structured correctly, organisations gain the insight and confidence required to achieve better outcomes.  Ansarda’s mission is to protect and raise every company’s potential and we are delighted that Ansarada are committed to working the members of InfoGovANZ and to support the community in achieving global best practices in information governance and innovation. Together we can seek to ensure that the professional discipline of information governance is recognised as a key component of governance strategies to effectively govern, align and manage the risks and opportunities arising from the exponential growth of data in the information age.

We look forward to Ansarada becoming a valued member of the InfoGovANZ community.

Questions for boards to ask about cybersecurity

by

The Australian Cyber Security Centre  (ACSC) has released a guide for boards and executives that discusses high-level topics to know about cyber security within organisations.  Boards need to proactively build an understanding of their organisation’s specific cyber threat and risk environment.

The Guide sets out how the board can understand as much as possible about cyber security risks, how they can stay informed and the questions they should be asking to mitigate cyber risks.

Read the ACSC Guide here.

Shaping a Layered Approach to Cybersecurity in Australia

by

“We shape our buildings; thereafter they shape us,” – Winston Churchill.

At Relativity, we believe in shaping our security posture in layers so it will continue to grow and better adapt to the needs of the market, the threat landscape, and our customers around the world.

In the APAC market specifically, our Calder7 threat intel team believes the region will continue to be a hotbed for attacks from a variety of Ransomware-as-a-Service and nation state threat actors, not to mention recent customer-facing breaches. One other persistent threat facing organizations across the globe, and particularly in APAC, is Zero-Day Vulnerabilities like the Log4Shell Vulnerability. These types of threats are concerning due to their growing scope and usage by threat actors. In April 2022, Google’s Project Zero reported that last year, the number of zero-day vulnerabilities detected and disclosed had more than doubled to 58 “in-the-wild 0-days”; 2022 is closely tracking a similar trajectory.

The constant influx of current and future threats makes the need to use secure, public cloud software much more important for businesses looking to do their work with the peace of mind that their most confidential data is secure.

One new validation of our security posture that we’re particularly proud of at Relativity is the announcement that Relativity has achieved the Infosec Registered Assessors Program (IRAP) assessment against ‘PROTECTED’ controls for our Australian cloud offering, RelativityOne. This means that RelativityOne now meets the high standard needed for security postures in technology systems used by a variety of Australian governmental agencies. For us, taking on this assessment was about building a high standard of assurances throughout our part in the legal supply chain so Australia’s public sector and anyone else dealing with high value and protected data can feel confident in where their data resides, despite an evolving threat landscape.

 

Building a skyscraper, or even a single-family home, requires a strong foundation. There are many paths to creating strong security foundations. Certifications are one of the most visible foundations for our customers. Our certification foundation at Relativity and its security posture includes many pillars: Relativity is ISO/IEC 27001:2013 certified and SOC 2, Type II; IRAP assessed, and many more. Achieving these pillars and keeping them up to date can be taxing, but it means that our foundation is strong and resilient against bad actors; additionally, it means that we can be adaptable and able to meet the needs of a variety of global customers and industries.

To achieve a new certification or assessment – in IRAP’s case – you need close collaboration between a variety of teams along with a significant commitment of time and resources. For IRAP, this meant close collaboration with over 12 teams across a variety of time zones over a period of several months, along with numerous evidence submissions, documentation updates, and walkthrough assistance with our 3rd party auditors.

The goal of all of this is to show that RelativityOne adheres to IRAP’s more than 700 security controls through an extensive review conducted by a 3rd party auditor. During the formal assessment, the auditors looked to find any security weaknesses in our SaaS product as listed by the controls and ensured that we adhere to their specific list of rules and regulations that allow us to handle sensitive data in the region.

 

In many ways, the assessment was like a house inspection. The inspector looked to ensure all of the doors in RelativityOne were properly locked, windows were working, furnace was functional, piping and electrical ran correctly, and everything in between. Basically, they assessed – is your product a fortress that is highly protected from even the greatest threats or is it a standard house with a few security gaps that could allow a bad actor unwanted access. The gap in controls between the standard house and a fortress is large and hard to achieve, but that’s what it takes to meet the standards of the IRAP assessment.

After the assessment, we can confidently say that RelativityOne securely supports Australian government data in a cloud environment classified up to the PROTECTED threshold, which is a vital security threshold for many of these agencies.

Providing best-in-class security is an ongoing process that requires a particular combination of the right people, processes, and technology to be successful. While IRAP shows RelativityOne has now completed its latest ‘home inspection,’ there’s always more to be done to establish resilience against cyber threats. Having people on the ground locally can be critical for intimately understanding the environments you’re operating in. This led us to add our first cybersecurity analyst in Australia to further bolster our home’s protective forcefield, adding to the highly skilled Calder7 global security crew of over 50 engineers, analysts, and subject matter experts tasked with protecting customer data from getting into the hands of bad actors.

Another important element is having partners you can rely on to add to your layers. Perhaps the most important partner for us is Microsoft. Relativity built RelativityOne on the shoulders of Microsoft’s Azure infrastructure and security experience and continue to work in close partnership with the tech leader. Relativity has also been a member of Microsoft’s Intelligent Security Association (MISA) since 2020, an ecosystem of independent software vendors and services that have integrated their security products and services with Microsoft’s, and recently received the award for Security Independent Software Vendor of the Year at Microsoft’s 2022 Security Excellence Awards. Once we’ve established deep relationships with our security partners, we can exponentially increase the layers of protection of both our company and our product, and in turn provide the benefit of an increased level of security and intelligence for anyone who chooses to partner with us.

 

Finally, and not to be overlooked, are the innovations we can create in the product itself to help our customers keep their teams more secure. One additional way we’ve expanding our global approach to security is through the rollout of the RelativityOne Security Center, which is a homegrown, free to use application, built by Calder7, aimed at increasing the security posture of our customers by giving them the direct ability to drive security actions and monitor alerts directly from the app. Alongside the enablement of mass force two factor authentication, one of the other cool features of the tool is the automated log-in map of sign-geographies it provides, giving customers direct lines of sight into who is accessing their application, where they’re coming from, when they accessed it, and the ability to disable or delete inactive users when needed. Security Center is just another tool that empowers our customers to get the most out of their security in RelativityOne.

Moving forward, we will continue to look for new ways and opportunities to ensure Relativity’s security fortress remains secure, no matter the region or circumstance. Successful security postures need maintenance – you need to do annual assessments, home improvements, and daily maintenance to ensure your windows are locked, your doors aren’t broken, and there are no gaps for intruders to infiltrate and exploit. Much like Churchill’s famous quote, the building that we’ve created in RelativityOne’s security posture shapes our path as a company at large moving forward.

Author:

Amanda Fennell, Chief Security Officer and Chief Information Officer – Relativity

LawFest 22: Re-connecting & challenging your thinking

by

On 28 September, 365 legal professionals from across Aotearoa and abroad gathered in person in Auckland for the premier legal innovation and technology event on the New Zealand calendar.

LawFest is the only opportunity in New Zealand for the legal and technology community to come together to network, collaborate and learn about how to innovate and adapt to change – and to do so in-person ! After the disruption we have collectively faced over the past couple of years, there was even greater appreciation of the value of face-to-face connection!

The event was once again a must for anyone interested in driving efficiency in their organisation.

 

The key highlights

The one-day event was a great opportunity to hear from leaders and change makers in the innovation space. The programme provided something for everyone, from those new to technology, to those currently at the forefront of legal innovation.

Over 25 amazing speakers, delivered practical insights of how to innovate and leverage technology to help you deliver legal services for today and the future. From Developing an Innovative Mindset, Client Centred Innovation, NewLaw, Digital Transformation, Wellbeing, Māori Transformational Leadership, Privacy, Trust & Technology, AI, eDiscovery, Responding to Data Breaches, Attracting new Clients through to Legal Design, LawFest had something for everyone.

Frances Valintine CNZM, founder at Tech Futures Lab was the opening keynote as she inspired and challenged thinking with her expertise in creating a mindset that is adaptable and embraces change. Frances delivered practical tips to help you with your innovation initiatives and prepare you for now and the future. She reinforced the importance to be inspired and empowered to take risks, step off the conveyor belt, think originally, and lead with possibility – to create greater value for your clients.

The day was wrapped up by a fantastic final keynote by Mark A. Cohen – one of the world’s leading legal industry thought leaders. Mark examined the key elements of New Law and how legal professionals can prepare for it and be ready to embrace it, whilst challenging the thinking of all in attendance.

PwC NewLaw Directors, Marlo Osborne-Smith and Eric Chin provided powerful frameworks, strategies and solutions to help shape and accelerate the digital transformation journey of legal teams.

 

InfoGovANZ founder & Executive Director Susan Bennett, moderated a session on Privacy, Trust & Technology: Innovation with Accountability, joined by Sarah Auva’a, Lead Digital Trust Partner, Spark and Emma Maconick, Head of Data and Technology, EY Law. This wide-ranging discussion answered critical questions including what is privacy-by-design and security-by-design, why trust and ethics matter, how good governance can help mitigate risk and how to make the business case for investment in privacy and governance projects – as well as the highly topical Optus data breach.

One of the fantastic additions this year was the highly popular breakout streams for those from law firms, in-house and exciting Tech Talks. Sara Rayment of Inkling Legal, led fantastic legal design sessions to both the law firm and in-house streams, providing ideas they could take back and implement.

Bringing everything together superbly was the MC, Helen Mackay of Juno Legal.

 

LawFest is the only event in New Zealand providing the opportunity to meet and see leading legal technology in the large exhibition hall, together with live legal tech demonstrations. This year LawFest featured the largest Expo of tech providers ever assembled at a New Zealand legal event. From start-ups, through to global household names – if you provide legal tech in New Zealand (or simply want to start) you were at LawFest.

The great content was complimented by fantastic networking opportunities, as the legal community were able to re-connect and network in-person – something we have all missed the value of over the past few years.

With LawFest 22 behind us, the focus now shifts to LawFest 23 on 1 June, where we will look to explore further how to adapt and thrive in an ever-changing legal market.

 

Author:

Andrew King, Founder and Strategic Advisor – E-Discovery Consulting

OAIC Notifiable Data Breaches Scheme – The first 4 years

by

The Notifiable Data Breaches (NDB) scheme commenced in February 2018, introducing new obligations for Australian government agencies and private sector organisations with an annual turnover of $3 million AUD or more. Notably, under the NDB scheme organisations are required undertake an assessment should they suspect:  Unauthorised access to or disclosure of personal information, or loss of personal information where access by unauthorised persons is likely to occur,  Serious harm to the individuals to whom the information relates is likely to occur, and  The risk of serious harm cannot be addressed through remedial action.  If the assessment indicates that serious harm is likely to result from a data breach, they must notify the Office of the Australian Information Commissioner (OAIC) as well as all affected individuals so they can take action to address possible consequences and also. As data breaches and subsequent investigations are often significantly complex, an organisation or agency […]
Member only content (join now)

Five Common Misconceptions about Structured and Unstructured Data

by

Key Takeaways: Structured data is quantitative (anything you can easily store in rows and columns) and relatively easier to keep compliant. Unstructured data is qualitative (think your emails and Teams chats) and much harder to manage. Nearly all organizations are operating under one or more misconceptions about their data (and compliance or lack thereof with new privacy laws!). The Two Types of Data Your Organization is Accumulating (and Why You Should Care) We’ll start with why you should care. If you’re familiar with the data compliance space, you already know that new laws require your organization to take specific steps to protect the rights of anyone whose data they hold. (If you’re not familiar with data compliance – surprise!) The first step to maintaining compliance with these laws is understanding what data your organization actually has. Not having this understanding is dangerous for three reasons: The less you know about your data holdings, the […]
Member only content (join now)

Retention and deletion of PI collected during COVID-19

by

OAIC has published a new guidance on retention and deletion of personal information (PI) collected during the COVID-19 pandemic. As restrictions continue to ease, entities should take stock of personal information they hold and assess whether it is necessary to continue to collect and retain PI. Australian Privacy Principles 11.1 and 11.2 require that reasonable steps be taken to protect personal information and personal information be destroyed or deidentified once it is no longer needed. If information is stored electronically, such as in cloud-based storage, servers, USBs or with a third-party provider, you should ensure that the digital records are permanently destroyed, including in any back-up system or offsite storage. It is also important to consider whether employees require any training to ensure that personal information is securely destroyed. Access the Guidance here.
Member only content (join now)

New Data Availability and Transparency Act 2022 in force

by

The Data Availability and Transparency Act 2022 commenced in April.   The Act establishes a new, best practice DATA scheme for sharing Australian Government data, underpinned by strong safeguards and simplified, efficient.  For an introduction to how the Scheme works, read more at A Scheme for sharing Australian Government data. Commonwealth, state and territory government agencies can now apply to be accredited users under the DATA Scheme.  And from 1 August, Australian universities will be able to apply for accreditation as data users and as data service providers. Follow these links to learn more about participating in the DATA Scheme or to access the scheme-on-a-page overview.
Member only content (join now)

UK proposals for new AI Rule Book

by

The UK Government has put forward proposals on the future regulation of Artificial Intelligence, to help develop consistent rules to promote innovation and protect the public. It comes as the Data Protection and Digital Information Bill is introduced to Parliament which will transform the UK’s data laws to boost innovation in technologies such as AI. The Bill will seize the benefits of Brexit to keep a high standard of protection for people’s privacy and personal data while delivering around £1 billion in savings for businesses. The new AI paper outlines the government’s approach to regulating the technology in the UK, with proposed rules addressing future risks and opportunities so businesses are clear how they can develop and use AI systems and consumers are confident they are safe and robust. This approach will create proportionate and adaptable regulation so that  AI continues to be rapidly adopted in the UK to boost […]
Member only content (join now)

Doug Laney author of ‘Infonomics’ announces release of new book ‘Data Juice’

by

Data Juice is the latest book just released by Doug Laney,  author of Infonomics: How to Monetize, Manage, and Measure Information as an Asset for Competitive Advantage. Containing more than 100 real-world examples and expert commentaries on how organizations around the world and in every industry are monetizing their own (and others’) data in diverse ways, Data Juice is a resource for data, business, and IT leaders looking to inspire their teams or executives with ways to thrive in the Digital Age.  Further below is an excerpt from Data Juice, available to purchase now on Amazon About the author Doug Laney is the data & analytics strategy innovation fellow with the consultancy, West Monroe. Formerly he was a vice president and distinguished analyst with Gartner’s Chief Data Officer (CDO) research and advisory practice. He is an accomplished practitioner and recognized authority on data and analytics strategy, and is a three-time […]
Member only content (join now)

2022 Information Awareness Month One Day Seminar

by

This year’s Information Awareness Month One Day Seminar took place at the iconic Institute Building (1861), the first public cultural building in South Australia and was also livestreamed. The theme was “Building Trust in Information” and discussions revolved around facets that we need to trust in order to have trust in information. These included trust in people, process, technology and government. The seminar opened with remarks from Geoff Strempel, Director, State Library of South Australia. As a society we are “drowning in data” and in a knowledge economy IM practitioners are the trustees of information. A huge challenge is the massive data sets that need computers and machine learning to extract patterns and interpretations, but human intellect is still required to assess the outcomes and ultimately arrive at wisdom. ML and AI also raise ethical and privacy dilemmas as technology enable computers to essentially have free reign across the data. […]
Member only content (join now)

NSW AI Assurance Framework

by

All NSW government agencies are required from March 2022 to use the AI Assurance Framework.  The Framework assists project teams using AI to comprehensively analyse and document their projects’ AI specific risks. It also assists teams to implement risk mitigation strategies and establish clear governance and accountability measures. Under the AI Policy and AI Assurance Framework, agencies are required to abide by the following ethical principles: Community benefit – AI should deliver the best outcome for the citizen, and key insights into decision-making. Fairness – use of AI will include safeguards to manage data bias or data quality risks. Privacy and security – AI will include the highest levels of assurance. Transparency – review mechanisms will ensure citizens can question and challenge AI-based outcomes. Accountability – decision-making remains the responsibility of organisations and individuals. View the NSW AI Assurance Framework here.
Member only content (join now)

Consumer Data Right System: New Guides

by

The OAIC has released 8 new guides designed to help businesses understand and comply with their obligations under the Consumer Data Right (CDR) system. The guides outline key privacy obligations concerning: Sponsors and affiliates under a sponsored accreditation model, which allows a person to provide goods or services directly to a consumer The disclosure of insights based on a consumer’s CDR data   Outsourced service providers (OSPs) and principals of OSPs under CDR outsourcing arrangements CDR representatives and principals under the CDR representative model. The CDR Privacy Safeguard Guidelines will be updated to reflect the content of the new guides.
Member only content (join now)

OAIC’s updated guidance on vaccination status and protecting privacy

by

OAIC has updated its guidance on COVID-19: Vaccinations and privacy rights as an employee and Vaccinations: Understanding your privacy obligations to your staff. Key points include: Vaccination status information can only be collected without consent in circumstances where the collection is required or authorised by law (including a state or territory public health order or direction). Only the minimum amount of personal information reasonably necessary to maintain a safe workplace should be collected, used or disclosed. Vaccination status information should only be used or disclosed on a ‘need-to-know’ basis. You must inform employees about how their vaccination status information will be handled. Ensure you take reasonable steps to keep employee vaccination status and related health information secure.
Member only content (join now)

New Zealand’s Privacy Commissioner releases a paper on biometric regulation

by

New Zealand’s Office of the Privacy Commissioner (OPC) has released a position paper setting out how the Privacy Act regulates biometrics.  The increasing role of biometric technologies in the lives of New Zealanders has led to calls for greater regulation of biometrics. In a statement releasing the paper, the OPC said, ‘[it] believes that the privacy principles and the regulatory tools in the Privacy Act are currently sufficient to regulate the use of biometrics from a privacy perspective.’  The paper is intended to inform decision-making about biometrics by all agencies covered by the Privacy Act, in both the public and private sectors. This position paper will be reviewed six months after publication, in consultation with key stakeholders, to assess its impact and whether any further steps are required. Read the OPC’s summary of key issues or the full position paper.
Member only content (join now)

Dr Pietro Brambilla

by

Pietro Brambilla

Dr. Pietro Brambilla heads the Digital Transformation team for Integrity & Legal Affairs within Daimler AG. A lawyer by training, he is a tech enthusiast and digital evangelist. Together with his highly diverse team he drives the development and implementation of the Digitalization and Innovation strategy for Daimler’s Legal, Compliance and Integrity functions since 2018. Pietro also serves as the Business Information Security Officer and the Data Officer for the Integrity & Legal Division within Daimler.

Pietro started his career as a litigator with Daimler in Germany. From 2012 to 2017 he worked in the U.S. where he spearheaded an Information Governance initiative for the region.

Pietro holds a Ph.D. from the University of Konstanz in the area of climate change law.
He has published different articles on innovation and the transformation of the legal sector and its impact on corporate legal departments and is a frequent speaker at industry events.

 

Tell us about yourself?

I was born and raised in Germany to Italian parents, laying the basis of my identity in these two different cultures. I’m a lover of learning and studying. I enjoyed roaming the bookshelves at the library during my years at university. Then came the Internet with its greatest gift - the democratization of information. I feel truly blessed to live in an era where thanks to modern technologies we now have the worlds’ knowledge at our fingertips.

I‘m a father of six with two sets of twins - so there is always a lot of action around the house. In my spare time, you will usually find me playing with my kids, working in the garden or spending time in nature with my family.

 

What led you into the world of Information Governance (IG)?

My early years as a litigator led me into the world of Information Governance especially when I took over more and more of our US litigation docket. You have to know that until the advent of the GDPR in the European Union, Information Governance was not very common in Germany. It was a small group of people that was interested in IG, mainly from companies that had a lot of exposure to Common Law countries. The rest kept hoarding information. I assume it’s my affinity for processes, structure and organization supported by technology that attracted me to this domain and led me to introduce it in my own field of work.

 

Tell us about your current role in IG?

My current role as Head of Digital Transformation is probably not a typical IG role but it touches many aspects of Information Governance, such as knowledge management, data analytics and ediscovery. As Business Information Security Officer I lead the information security strategy for the Integrity & Legal division and provide a bridge between the centralized security function and the business on information security aspects. The Data Officer role involves defining and driving the data strategy for the Legal and Compliance function.

 

What pressures are organizations facing to ensure IG best practices?

I see the pressure coming from three areas in particular:

  • Technology and the speed and rate of change we are experiencing and have to keep up with. We live in an area of exponential technological change that heavily affects the speed at which business has to operate. I like to refer to this as the transition from working at the speed of paper to operating at the speed of (structured) data. And IG has to adapt and support this transition.
  • Dealing with the ever-increasing complexity of the regulatory framework. In addition, technological change often runs ahead of legislation.
  • We are also seeing challenges in the workforce area. Change is a fundamental element of our new reality. The transformation is constant and therefore the need for adoption is permanent. We need to continuously learn new skills and gain new knowledge but we also need to be able to unlearn what is no longer helpful.

 

What are the biggest developments you have seen in the IG?

The traditional records and information management area has evolved to a more multidisciplinary information governance domain that is integrating and merging more and more with the growing area of data governance. This convergence of the area of information with data has led to new ways of working and the emergence of new roles that will continue to develop as technology advances.

 

How have you adapted since COVID-19?

When COVID-19 struck, we basically had to transition overnight to a “remote only” working arrangement and we have been working this way for nearly 20 months. It has required a lot of reflection and change but I’m actually getting used to it and I wouldn’t want to go back to the way it was before. I used to commute at least 90 minutes per day. Apart from the time I’m saving there is also a significant ecological benefit reducing my commutes. As the pandemic begins to ease I’m looking forward to getting back together with my entire team in person but I’m also excited that we now have the opportunity to design a hybrid model that works well for the entire team.

 

Do you have any tips for someone starting out in IG?

I have already mentioned the convergence of information and data as one of the major developments I see in this domain. What I would recommend for somebody starting in IG is to gain what I call “data literacy”. With this, I don’t mean being able to code, but you need to have a general understanding of how information is being processed today and the potential that new technologies offer. I can recommend the HarvardX “Introduction to Digital Humanities” course on the MOOC Platform edX as a good source to increase what I call “data literacy”.
But most importantly, follow your passion and never stop learning.

 

With the rapidly evolving technologies and digital disruption, where do you see IG heading in the next few years?

We live in a time of radical transformation, be it the colossal undertaking of decarbonizing our economy or the digital revolution. The IG industry will not be immune to these dramatic changes. Just picture the increase of digital information across the globe. It has grown nearly 50 fold in 10 years to over 50ZB (zettabytes = 1021 byte) in 2020 and will continue to grow exponentially. We will need new approaches in managing the information lifecycle. Artificial Intelligence will certainly be a key component in this but we will need to be able to understand it and maintain control.

 

Why is it essential to be a member of InfoGovANZ?

I’m a big believer in community building. For me the value of being a member of InfoGovANZ lies in being part of a community of like minded people that are focused on sharing knowledge and creating valuable exchanges. InfoGovANZ is not just a network but a strong community of IG experts and enthusiasts, willing to invest their time and contributing in shaping the future of Information Governance.

Culture of FOI in Victoria

by

The Office of the Victorian Information Commissioner (OVIC) published new research on freedom of information (FOI) culture in Victoria and the importance of proactive and informal release of information. “The release of documents under the FOI Act is not the only way that governments can share information with the public” said Information Commissioner Sven Bluemmel. “Governments can also get on the front foot and proactively release information, without the need for individuals to first make an FOI request.” OVIC strongly encourages all agencies to adopt policies and systems that facilitate the release of information proactively and informally. Proactive transparency will help to build public trust, which will assist governments to address complex policy issues and improve service delivery. Read the key findings here.
Member only content (join now)

Information Access Study

by

Information Access Commissioners and Commonwealth Ombudsman have released the findings of their second cross jurisdictional study of community attitudes on access to government information. The 2021 Information Access Study measures citizens’ awareness of the right to access government information, and their experiences and outcomes in exercising that right. Key findings include: The importance of the right to access information is consistently recognised by respondents in each jurisdiction. The majority of respondents in each jurisdiction were aware that they had the right to access information from government departments/agencies. In general, citizens were able to obtain information successfully in each jurisdiction. Read the statement from the Commissioners or view the research findings here.
Member only content (join now)

2021 Solomon Lecture

by

This year’s Solomon Lecture presented by the Queensland Office of the Information Commissioner featured Professor Beth Simone Noveck on ‘Solving Public Problems with Data’. Professor Noveck’s lecture explores how traditionally, the right to know is rooted in the belief that members of the public should know what their government does in order to hold the government to account, lessen the risk of corruption and shine a light on wasteful and inefficient operations. Beth Simone Noveck discusses how a focus on public problem solving and improving people’s lives changes how we think about data. She discusses specific policy prescriptions for creating a right to know that fosters better government, stronger citizenship and more agile solutions to contemporary challenges. Watch the Solomon Lecture here.
Member only content (join now)