Commissioner: University Could Have Avoided Breach
PRIVACY LAW—NEW SOUTH WALESJuly 1, 2011
An inquiry into a University of Sydney data breach has determined that the incident was avoidable, ZDNet reports. Acting New South Wales Privacy Commissioner John McAteer said that "with appropriate testing, the flaw was avoidable, and the university had not taken reasonably available steps to avoid the risk that the leaks would eventuate." He concluded that the university had not met its obligations under the Privacy Act. The university has since improved its security practices. As a result, McAteer said, no further action is necessary.