The 13 principles

Australian Privacy Principles (APPs) Compliance Checklist

The Australian Privacy Principles are the cornerstone of the Privacy Act 1988. Work through all 13 and check your readiness for the Notifiable Data Breaches scheme.

The Australian Privacy Principles (APPs) are the cornerstone of the privacy protection framework in the Privacy Act 1988, regulated by the OAIC. There are 13, covering how personal information is handled across its whole lifecycle.

The 13 APPs, grouped

Notifiable Data Breaches readiness

Alongside the APPs, the Notifiable Data Breaches (NDB) scheme requires organisations covered by the Act to notify the OAIC and affected individuals about an eligible data breach that is likely to result in serious harm. Being ready means having a way to assess a breach quickly and a plan to notify - the checklist helps you confirm you have both.

Turn the checklist into a review

Cyber Compliance turns this into a working self-review: step through each APP, record your position and evidence, flag the gaps, and export a report for your privacy officer or board. It sits alongside your Essential Eight and ISO 27001 work so your whole compliance picture is in one place.

Note: Cyber Compliance is a self-assessment and reporting aid, not a certification, audit or legal advice. Outputs help you prepare and track gaps; confirm your position with a qualified auditor, certification body or legal adviser before relying on it.

Frequently asked questions

How many Australian Privacy Principles are there?

There are 13 Australian Privacy Principles under the Privacy Act 1988, covering governance, collection, use and disclosure, integrity, and access and correction of personal information.

Is this legal advice?

No. The checklist is a structured self-review aid to help you prepare. It does not replace legal advice on your specific Privacy Act obligations.

Start your free trial