EssentialScore (Essential Eight)·CISScore (CIS Controls)·PrivacyScore (Privacy Act)·CyberInsureReady (Cyber Insurance)
Australian Privacy Act reforms — what's changed and what's coming

Australia's Privacy Act Compliance Assessment

The Privacy Act is changing. Penalties have increased significantly, and further reforms are being introduced. Take our free 3-minute assessment and discover your compliance gaps — before regulators do.

Start Free Assessment See How It Works

Used by Australian accountants, medical practices, and professional services firms preparing for Privacy Act compliance.

🔒 No account required. Your answers stay in your browser.

How the Privacy Act Assessment Works

Three steps from zero to compliant

Free Assessment

15 questions across 5 compliance domains. No sign-up required. Takes 3 minutes.

Instant Score

See your compliance score across 5 domains and your top 3 risks — immediately, for free.

Your Privacy Policy

Tailored to your assessment answers. Download in PDF or Word in minutes.

The Privacy Act is getting teeth

Sweeping reforms to the Privacy Act 1988 (Cth) are coming. Here's what's changing for Australian businesses.

Small Business Exemption Under Review

The blanket removal of the small business exemption is a proposed reform — not yet legislated. AML/CTF-regulated businesses (lawyers, accountants, real estate agents) lose the exemption from July 2026. Further changes are pending.

Individual Rights — Existing and Proposed

Rights to access (APP 12) and correct (APP 13) personal data already exist under current law. A right to deletion is proposed under upcoming reforms. Build processes for all three now.

Stronger Consent Rules Proposed

The current Privacy Act already requires meaningful consent. Proposed reforms would explicitly prohibit pre-ticked boxes and require express consent for most data collection — getting this right now puts you ahead.

Bigger Penalties

Civil penalties for serious or repeated breaches have been significantly increased. The OAIC now has greater enforcement powers.

Privacy Act Assessment Pricing

The assessment is always free. Pay only when you need the policy.

Free Assessment

$0

free forever
  • 15-question compliance assessment
  • Score across 5 compliance domains
  • Top 3 risks identified
  • No sign-up required
  • Results stored in your browser only
Start Free Assessment
Most Popular

Privacy Policy Generator

$49

one-time
  • Everything in Free
  • Custom Privacy Policy tailored to your answers
  • Australian Privacy Principles compliant
  • Plain English, ready to publish
  • Download in PDF + Word format
  • Covers upcoming Privacy Act reforms

🔒 Payment processed by CyberPosture · Secured by Stripe

Get My Privacy Policy →

Preview

Sample Privacy Policy Output

Collection and use of personal information
Disclosure to third parties
Data breach notification procedure
Individual access and correction rights

Plain English. Australian Privacy Principles compliant. Ready to publish on your website.

Generate your policy — $49

Privacy Act Compliance FAQs

Does my business actually need to comply?

It depends on your size and sector. Businesses with over $3M annual turnover are already covered by the Privacy Act now. Health service providers, credit reporting bodies, and several other categories are covered regardless of size. The small business exemption is proposed to be removed for general SMBs — but this has not yet been legislated. Either way, building good privacy practices now protects you ahead of any change.

Is the assessment really free?

Yes, completely. 15 questions, instant score, top risks — all free, no account required. We only charge if you want the tailored Privacy Policy document.

How is the Privacy Policy tailored to my business?

We use your assessment answers to understand what data you collect, how you store it, and what processes you have in place. It generates a policy that reflects your actual situation, not a generic template.

Is the generated policy legally compliant?

The policy is designed to align with the Australian Privacy Principles and references the Privacy Act 1988 (Cth). However, it is a tailored starting point — we recommend having a lawyer review it before publishing, especially if you collect sensitive information.

What if I'm not sure whether the Privacy Act applies to my business?

Complete the free assessment anyway. It takes 3 minutes and the results will tell you exactly where you stand — including whether the small business exemption currently applies to you and what the proposed reforms would mean for your situation.

Australian SMB Cybersecurity Suite

Free assessments covering every compliance framework Australian businesses need.

EssentialScoreACSC Essential Eight — 71 questions across all 8 controls. The leading Australian cybersecurity framework for SMBs.Free assessment →CISScoreCIS Controls v8.1 IG1 — 44 questions across all 16 controls. The international best-practice framework referenced by cyber insurers and enterprise vendors.Free assessment →CyberInsureReadyCyber Insurance Readiness — 20 questions across 5 underwriting domains. Know if your business is insurable before your insurer does.Free assessment →

Ready to check your compliance score?

3 minutes. Free. No account required.

Start Free Assessment