Privacy law – The Privacy Act

The Privacy Act (The Act) regulates how most personal information is managed. It includes all 13 APPs.

The Act applies to private sector organisations, as well as most government agencies unless an exception applies. General practice is subject to stringent privacy obligations by virtue of handling health information.

Currently, the maximum civil penalty for serious or repeated interferences with privacy’ is $2.22 million and is set to increase.5

Australian Privacy Principles

The APPs provide a universal framework and focus on transparency in the following five areas:

  • APPs 1, 2: management of personal information
  • APPs 3–5: collection of personal information
  • APPs 6–9: use of personal information
  • APPs 10, 11: integrity and security of personal information
  • APPs 12, 13: access to and correction of personal information.1


Access the full list here: Australian-Privacy-Principles

Other Toolkits

The Royal Australian College of General Practitioners acknowledges Aboriginal and Torres Strait Islander peoples as the Traditional Custodians of the land and sea in which we live and work, we recognise their continuing connection to land, sea and culture and pay our respects to Elders past, present and future.