As we go through this, there are lots of things that have to be established through regulation. We're quite conscious of the fact that these data breach provisions apply, from the local dry cleaner down the street all the way up to a big bank or a telecommunications provider. We're looking for the most simplistic ways we can have in terms of reporting, in giving out clear guidance. We'll work with the Privacy Commissioner's office once the provisions are in place to come up with really clear, straightforward guidance for small companies. We are conscious of the fact that this does apply all the way from the mom-and-pop shop up to the major multinational corporations that are better prepared for these kinds of things.
On February 5th, 2015. See this statement in context.