Helpious LogoHelpious

What rights do consumers have under Australian privacy laws?

Answer

Under Australian privacy laws, consumers have rights including accessing and correcting their personal information, knowing why it's collected, and making complaints about misuse. The Privacy Act 1988 and Australian Privacy Principles (APPs) protect these rights across most organisations.

Office of the Australian Information Commissioner (OAIC)
R
Robert JasonContent Researcher
Verified
Last UpdatedMay 3, 2026

Was this helpful?

13 readers found this helpful

How it works in practice

Key Protections

Australian privacy laws, primarily the Privacy Act 1988, regulate how most Australian Government agencies and many private sector organisations handle personal information. This legislation is designed to protect your privacy by setting out standards for collecting, using, disclosing, storing, and destroying personal data. The Act includes the 13 Australian Privacy Principles (APPs), which are the cornerstone of privacy protection in Australia. These principles cover various aspects, from how data is managed to your right to access and correct it.

Your Rights

As a consumer, you have several fundamental rights under these laws. You have the right to be informed about how your personal information is collected and used. You can request access to the information an organisation holds about you and ask for it to be corrected if it is inaccurate or incomplete. You also have the right to remain anonymous or use a pseudonym when dealing with organisations where practicable. Importantly, you can make a complaint to an organisation or the Office of the Australian Information Commissioner (OAIC) if you believe your privacy has been breached.

Important exceptions

Not all organisations are covered by the Privacy Act 1988. Small businesses with an annual turnover of $3 million or less are generally exempt, unless they are health service providers, collect sensitive information, or are related to larger entities. Additionally, employee records are often exempt under federal legislation. Acts by media organisations in the course of journalism are also excluded, provided they adhere to recognised privacy standards. State and territory privacy laws may also apply, offering different protections.

What you should do now

  1. Understand your rights as outlined in the Australian Privacy Principles (APPs).

  2. Request a copy of an organisation's privacy policy to understand their data handling practices.

  3. Contact the organisation to request access to or correction of your personal information.

  4. If you believe your privacy has been breached, make a formal complaint directly to the organisation first.

  5. If unsatisfied with the organisation's response, lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

Expert Notes

No expert notes have been added to this question yet.

People also asked

Explore highly relevant questions and get instant verified short answers.

Can't find an answer?
Submit your question below. If we publish an answer, it will appear in the "People also asked" section on this page.

We'll notify you if your question is answered. We won't use your email for anything else.