Privacy Impact Assessment Register


The Privacy (Australian Government Agencies – Governance) APP Code 2017 (Cth) (the APP Code) requires that all agencies, including the Court, must conduct a Privacy Impact Assessment (PIA) for all high privacy risk projects.

A project may be a high privacy risk project if the Court considers that the project involves any new or changed ways of handling personal information that are likely to have a significant impact on the privacy of individuals.

The Court is also required to conduct a PIA if directed to do so by the Office of the Australian Information Commissioner (OAIC).

These requirements apply to the Court insofar as the Privacy Act 1988 (Cth) applies to the Court. The Privacy Act only applies to the Court in relation to acts done or practices engaged by the Court in respect of matters of an administrative nature (see paragraphs 7(1)(a) and (b) of the Privacy Act). All acts done or practices engaged in by the Court in respect of court proceedings are exempt from the Privacy Act.

The Court is required to maintain a register of all PIAs it conducts and publish that register, or a version of that register, on its website.  Further, the Court may publish a PIA, including the Court’s response to PIA recommendations, a summary version or an edited copy of a PIA, on its website.

This Privacy Impact Assessment Register is published in full compliance with those requirements.

Privacy Impact Assessments undertaken

The Court has undertaken the following PIAs:


Title of PIA

Project Summary

PIA Team

Outcome of PIA/Project