Skip to Content
From Monday 12 September 2020, OVIC's website will no longer be supported in Internet Explorer (IE).
We recommend installing Microsoft Edge, Google Chrome, Safari, Firefox, or Opera to visit the site.

Drafting a privacy policy

Victorian public sector organisations covered by Part 3 of the Privacy and Data Protection Act 2014 (PDP Act) are required to adhere to 10 Information Privacy Principles (IPPs). The IPPs set out the minimum standards for the handling of personal information in the Victorian public sector.

IPP 5 requires an organisation to have a document that clearly sets out its policies on the management of personal information, and to make it available to anyone that asks for it. This document is commonly referred to as a privacy policy.

This information sheet provides general guidance about privacy policies. It is aimed at Victorian public sector organisations that are bound by the PDP Act. This includes local councils and contracted service providers.

Back to top