Please note: This version of the Framework (V1.1) contains the former Victorian Protective Data Security Standards (V1.1). This document will be updated early 2020.
To access a current copy of the Standards (V2.0), refer to the VPDSF Resources page.
Established under Part 4 of the Privacy and Data Protection Act 2014, the Victorian Protective Data Security Framework (VPDSF) provides direction to Victorian public sector agencies or bodies on their data security obligations. Reflecting the sector’s unique operating requirements, it will build security risk management capability and maturity through the use of existing risk management principles and guidelines.
The VPDSF took effect from 1 July 2016.
This is the current version of the Victorian Protective Data Security Framework, referred to as Version 1.1 – March 2018.
The Victorian Government has committed to effectively manage protective data security risks within the Victorian public sector. This commitment will benefit the Victorian community by ensuring that government agencies observe a transparent set of security principles and are held accountable for the protection of public sector information. The secure management of information is critical to government service delivery, public trust and confidence.
The VPDSF is the overall scheme for managing protective data security risks in Victoria’s public sector.