Free Cookie Policy Generator for Newsletter / Email Publication — Australian Privacy Act Compliant

🇦🇺 Key Australian Privacy Act Requirements

Australia's Privacy Act 1988 and its 13 Australian Privacy Principles (APPs) regulate how organizations with annual turnover over AUD $3 million collect, use, and disclose personal information. The OAIC (Office of the Australian Information Commissioner) enforces the law and can issue fines up to AUD $50 million for serious and repeated breaches.

• Notify individuals about data collection at or before the time of collection
• Only collect personal information that is reasonably necessary
• Provide individuals with access to their personal information
• Take reasonable steps to protect personal information from misuse or unauthorized access
• Notify the OAIC and affected individuals of eligible data breaches (Notifiable Data Breaches scheme)
• Cross-border disclosure requires that overseas recipients comply with the APPs

Newsletter / Email Publication — Specific Considerations

Email newsletters collect subscriber personal data — at minimum, email addresses — and often additional data like name, location, and engagement metrics (opens, clicks, link tracking). Email marketing platforms like Mailchimp, ConvertKit, and Substack process subscriber data as data processors and must be disclosed. CAN-SPAM (US) and GDPR impose specific opt-in and opt-out requirements for commercial email.

Data typically collected by Newsletter / Email Publication businesses: subscriber email address, name, location (via IP at signup), email engagement data (opens, clicks), subscription preferences, payment data for paid newsletters

• Email marketing platform data processing disclosure (Mailchimp, ConvertKit, Substack)
• CAN-SPAM and GDPR double opt-in requirements
• Unsubscribe mechanism and data deletion
• Open and click tracking pixel disclosure
• Paid subscriber payment data handling