Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Align data quality NFR with Privacy Safeguard 11 #407

Closed
CDR-API-Stream opened this issue Sep 21, 2021 · 3 comments
Closed

Align data quality NFR with Privacy Safeguard 11 #407

CDR-API-Stream opened this issue Sep 21, 2021 · 3 comments
Labels
Non-functional reqs

Comments

@CDR-API-Stream
Copy link
Collaborator

CDR-API-Stream commented Sep 21, 2021
edited
Loading

Description

The OAIC has provided feedback that the data quality section of the non-functional requirements in the standards is not fully aligned with Privacy Safeguard 11, which covers the same ground

Area Affected

The are impacted is the non-functional requirements section of the standards. Specifically, the section relating to data quallity.

Change Proposed

Modify the text of the data quality section of the standards to align with, and refer to, Privacy Safeguard 11 and the related regulatory requirements stipulated by the OAIC.
@CDR-API-Stream CDR-API-Stream mentioned this issue Sep 22, 2021
Closed
@CDR-API-Stream
Copy link
Collaborator Author

This issue was discussed in the Maintenance Iteration call held on 06/10/2021. In line with feedback from the OAIC regarding data quality requirements in relation to Privacy Safeguard 11, it is proposed to change the Data Quality section of the standards from:

Data holders are required to take reasonable steps to ensure that CDR data, having regard to the purpose for which it is held, is accurate and up to date.

A data holder is required to be able to demonstrate that reasonable steps to maintain data quality are being undertaken.

To instead be worded as:

If a Data Holder of CDR data is required or authorised under the Consumer Data Rules to disclose product data, the Data Holder must take reasonable steps to ensure that the product data is, having regard to the purpose for which it is held, accurate, up to date and complete.

Data Holders are required to be able to demonstrate that reasonable steps to maintain data quality of product data are being undertaken.

Note: For the data quality requirements that apply to CDR data for which there are one or more CDR consumers, see Privacy Safeguard 11 (section 56EN of the Competition and Consumer Act 2010). There are requirements in Privacy Safeguard 11 for both Data Holders and Data Recipients. See Chapter 11 (Privacy Safeguard 11) of the OAIC’s CDR Privacy Safeguard Guidelines for further information.

This makes it clearer the requirements for data quality of product reference data, and consumer data, which is already governed by the Privacy Safeguards.

Please note: the proposed wording is slightly different to what was discussed last week on the iteration call after further feedback from the OAIC.

@CDR-API-Stream CDR-API-Stream mentioned this issue Nov 15, 2021
Closed
@CDR-API-Stream
Copy link
Collaborator Author

These changes have been staged for review: ConsumerDataStandardsAustralia/standards-staging@release/1.15.0...maintenance/407

@CDR-API-Stream
Copy link
Collaborator Author

CDR-API-Stream commented Dec 23, 2021
edited
Loading

This change was incorporated into release v1.15.0. Refer to Decision 212 for further details.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Non-functional reqs
Projects
Data Standards Maintenance
Archived in project
Milestone
No milestone
Development

No branches or pull requests
1 participant
@CDR-API-Stream