Privacy Requirements

The AAF recommends reviewing relevant legislation before connecting to eduGAIN.

Australian Privacy Principles (APPs)

The Privacy Act 1988 includes 13 Australian Privacy Principles (APPs) defined at: www.oaic.gov.au/privacy-law/privacy-act/australian-privacy-principles

The APPs set out standards, rights and obligations for handling, holding, using, accessing and correcting personal information (including sensitive information).

Service Providers can only use personal information for the purpose of delivering their service and may only disclose this information to other parties in specific situations.

Key privacy principles subscribers should consider:

• APP 2 — Anonymity and pseudonymity
• APP 4 — Dealing with unsolicited personal information
• APP 6 — Use or disclosure of personal information

AAF Subscribers should review their obligations as they prepare to connect to eduGAIN. AAF Subscribers should consider other privacy principles that may apply to them.

State and Territory Privacy Legislation

Identity Providers and Service Providers may be subject to other state-based requirements. The AAF recommends reviewing relevant legislation for applicability before connecting to eduGAIN.