As data breaches rise and public trust flickers, Australia has taken a bold step in reforming its Privacy Act, marking one of the significant regulatory shifts in the region’s digital history. To decode what this means for businesses, The Cyber Express sat down with Madhuri Nandi, Head of Security at Till Payments, Australia.
With nearly 20 years in cybersecurity leadership, Nandi brings a sharp perspective on how these changes impact legal, IT, and security teams alike.
Madhuri Nandi Explains the Expanded Definition of Personal Data
In the interview, Nandi highlights that the sheer scale of recent breaches in Australia triggered the Privacy Act overhaul, pointing to the outdated nature of the previous regulations. She explains that the definition of personal data has now broadened to include behavioral and inferred data, increasing accountability for companies collecting and processing user information.
“You’re not playing the small game anymore. If you don’t handle data properly, you’re looking at penalties as high as $50 million or 30% of your turnover,” she warns.
Nandi also notes a cultural shift: where once privacy was a checkbox exercise, now legal and cybersecurity teams are collaborating from the start of the product lifecycle.
On the broader opportunity, she adds, “Businesses that respect data today are the ones who will win customer trust and competitive edge tomorrow.”
The conversation also touches on the role of AI and personal data risks, as well as the strengthened powers of the Office of the Australian Information Commissioner (OAIC) to audit organizations without formal complaints.
Watch the Full Interview:
To dive deeper into Madhuri Nandi’s expert insights on regulatory trends, privacy-first leadership, and cybersecurity best practices in Australia,
Click here to watch the full interview on YouTube
Source: Read More
