Free Cookie Policy Generator for Online Course / LMS — Australian Privacy Act Compliant

🇦🇺 Key Australian Privacy Act Requirements

Australia's Privacy Act 1988 and its 13 Australian Privacy Principles (APPs) regulate how organizations with annual turnover over AUD $3 million collect, use, and disclose personal information. The OAIC (Office of the Australian Information Commissioner) enforces the law and can issue fines up to AUD $50 million for serious and repeated breaches.

• Notify individuals about data collection at or before the time of collection
• Only collect personal information that is reasonably necessary
• Provide individuals with access to their personal information
• Take reasonable steps to protect personal information from misuse or unauthorized access
• Notify the OAIC and affected individuals of eligible data breaches (Notifiable Data Breaches scheme)
• Cross-border disclosure requires that overseas recipients comply with the APPs

Online Course / LMS — Specific Considerations

Online learning platforms collect student progress data, assessment results, and payment information — all of which carry specific legal obligations. If your courses issue certificates, you may hold personally identifiable data for extended periods. Students also have rights to access and delete their learning records under GDPR and CCPA.

Data typically collected by Online Course / LMS businesses: student name and email, course progress, assessment scores, certificate data, payment information, video viewing behavior

• Student data rights under FERPA/GDPR
• Certificate and credential data retention
• Video and content DRM terms
• Course access terms on refund
• Instructor data sharing (if marketplace model)