Privacy compliance

For information relating to the cyber incident notifications, please visit our Cyber Incident website.

Our Commitment

Western Sydney University is committed to protecting the privacy of staff, students and the broader community.

We manage personal information in accordance with applicable New South Wales and Commonwealth privacy laws, and take reasonable steps to safeguard the information we hold.

The Privacy Framework applies across the University and its controlled entities.

Helpful documents to download:

• Privacy in a Nutshell Handbook to learn more about what we do and how you can put privacy in practice.
• Guidance for Creating IPC-align Privacy Collection Notices
• Types of Personal Information including sensitive and health information

Our legal obligations
The University’s privacy obligations arise under:

• Privacy and Personal Information Protection Act 1998 (NSW) (PPIPA)
• Health Records and Information Privacy Act 2002 (NSW) (HRIPA)
• Privacy Act 1988 (Cth)
• Relevant international privacy regimes (e.g. GDPR), where applicable

These obligations govern how the University collects, uses, stores, discloses and destroys personal information.

Personal information includes any information or opinion about an individual whose identity is apparent or can reasonably be ascertained.

Key Privacy Framework Documents

Privacy Officer

The Privacy Officer provides guidance and oversight in relation to:

• Privacy Breaches and Complaints (including Notifiable Data Breaches, and Internal Review Requests)
• Privacy Impacts Assessments (PIAs)
• Privacy training

Contact: privacy@westernsydney.edu.au.

Privacy Policy

Privacy Management Plan

Privacy Data Breach Response Plan