The Privacy and Data Protection area of OVIC functions under the Privacy and Data Protection Act 2014 (amended). The Act is designed to protect all information held by the Victorian public sector. Our mission is to safeguard Victorians’ information and support information innovation.
Release of VPDSF V1.1 – March 2018
Family violence information sharing scheme and privacy law in Victoria - February 2018
Removal of 'imminent' from the IPPs and HPPs - February 2018
Notifiable Data Breaches scheme: Guidance for the Victorian public sector - February 2018
Public Forum: Encryption and Privacy - February 2018
New Data Protection Events for VPS staff and Industry - February 2018
Deputy Commissioner Appointments to Support Victoria's New Information Laws - November 2017
Update to VPDSF reporting requirements – November 2017
Privacy Forum: The EU General Data Protection Regulation
Victorian Information Security Network (VISN) forums - September 2017
VPDSF Assurance Collection - Jul 2017
VPDSS Self Assessment Template - Jul 2017
VPDSF Protective Data Security Plan (PDSP) Template - Jul 2017
VPDSF Information Security Management Collection now published - May 2017
VPDSF - Sample Information Asset Register (IAR) template now available - May 2017
OVIC/Privacy and Data Protection interacts with a number of privacy and data protection organisations. We are also a key member of privacy and data protection communities. Interacting with other Australian and international privacy and data protection organisations enables information sharing. Please click here for more information about these groups and communities.
On 1 September 2017, the Office of the Commissioner for Privacy and Data Protection (CPDP) and the Office of the Freedom of Information Commissioner were combined, creating the new Office of the Victorian Information Commissioner (OVIC).
Under OVIC, the functions and powers of the former CPDP remain largely the same and the Act makes no amendments to the Information Privacy Principles (IPPs) or the Victorian Protective Data Security Standards (VPDSS) under the Privacy and Data Protection Act 2014 (PDPA). As a result, organisations that are bound by the PDPA should be aware that their obligations under the IPPs and the VPDSS remain unchanged.
All published guidance materials remain current, though some references may now be out of date. For further information, you can contact us on 1300 666 444, or at This email address is being protected from spambots. You need JavaScript enabled to view it..