Established under Part 4 of the Privacy and Data Protection Act 2014, the Victorian Protective Data Security Framework (VPDSF) provides direction to Victorian public sector agencies or bodies on their data security obligations. Reflecting the sector’s unique operating requirements, it will build security risk management capability and maturity through the use of existing risk management principles and guidelines.
The VPDSF took effect from 1 July 2016.
We have published an updated version of the Victorian Protective Data Security Framework. This updated document is referred to as Version 1.1 – March 2018.
The updated VPDSF reflects current messaging from our Office, as well as minor amendments to content to ensure consistency across VPDSF products. A brief amendment table is included on page 5.
The Victorian Government has committed to effectively manage protective data security risks within the Victorian public sector. This commitment will benefit the Victorian community by ensuring that government agencies observe a transparent set of security principles and are held accountable for the protection of public sector information. The secure management of information is critical to government service delivery, public trust and confidence.
The VPDSF is the overall scheme for managing protective data security risks in Victoria’s public sector.
The VPDSF consists of the:
- Victorian Protective Data Security Standards
- Assurance Model
- Supplementary security guides and supporting resources