Skip to content
State Government of Victoria logo
Service Agreement Information Kit for Funded Organisations

3.17.6 Staff awareness and training in privacy, data protection and health information security

Funded organisations are to ensure that staff who handle personal and health information receive training on their privacy and data protection responsibilities, in particular how the Information Privacy Principles and the Health Privacy Principles apply to their day-to-day work. Organisations are also to make staff aware of the information security processes used by the organisation. 

The department has developed guidelines on Information Security to support organisations to provide their staff with data security training and help protect information kept by organisations from misuse, loss and unauthorised access, modification or disclosure.

The guidelines covers all aspects of information security including handling, sharing, storing, transporting and disposing of client information as well as incident response and contact details if organisations require further information.

A range of other resources are also available to support organisations in increasing their staff awareness of privacy and data protection requirements. These include: