Draft Data Breach Policy

Consultation has concluded

Consultation period: 28 November 2023 – 15 January 2024

Council holds and is trusted with confidential and sensitive data. We take this responsibility seriously to protect our people, customers and community. The Draft Data Breach Policy outlines Council’s principles and commitment in responding to a data breach. The Mandatory Notification of Data Breach Scheme (‘MNDB Scheme’) is a mandatory notification requirement under the Privacy and Personal Information Protection Act 1998 for NSW public sector agencies (‘agencies’) in the event of an eligible data breach.

This policy applies to all Council employees, Councillors, contractors and volunteers of Sutherland Shire Council who provide or handle Council data.


Have your say

We are seeking feedback from our community on the Draft Data Breach Policy. You can share your feedback until 15 January 2024.

  • Online by taking the survey below
  • Email to gipaofficers@ssc.nsw.gov.au
  • In Writing to Sutherland Shire Council, Privacy and Information Access, Locked Bag 17, Sutherland 1499


Next steps

Following community consultation, Council will review and consider all feedback. Some changes may be made to the policy. It will then be finalised and reported to Council for adoption. We will keep interested members of the community updated.



Consultation period: 28 November 2023 – 15 January 2024

Council holds and is trusted with confidential and sensitive data. We take this responsibility seriously to protect our people, customers and community. The Draft Data Breach Policy outlines Council’s principles and commitment in responding to a data breach. The Mandatory Notification of Data Breach Scheme (‘MNDB Scheme’) is a mandatory notification requirement under the Privacy and Personal Information Protection Act 1998 for NSW public sector agencies (‘agencies’) in the event of an eligible data breach.

This policy applies to all Council employees, Councillors, contractors and volunteers of Sutherland Shire Council who provide or handle Council data.


Have your say

We are seeking feedback from our community on the Draft Data Breach Policy. You can share your feedback until 15 January 2024.

  • Online by taking the survey below
  • Email to gipaofficers@ssc.nsw.gov.au
  • In Writing to Sutherland Shire Council, Privacy and Information Access, Locked Bag 17, Sutherland 1499


Next steps

Following community consultation, Council will review and consider all feedback. Some changes may be made to the policy. It will then be finalised and reported to Council for adoption. We will keep interested members of the community updated.



Consultation has concluded
  • Policy Update

    The Draft Data Breach Notification Policy was reviewed and adopted by Council on 18 March 2024.

    The final policy is available on the Council website here.

    For any further questions please contact Council via engagement@ssc.nsw.gov.au