Across
- 5. The formal way a MyState customer raises concerns about their personal information (9)
- 8. Providing customers access to their personal information — APP 12 (6)
- 9. Ensuring personal information is correct and up to date — APP 10
- 10. The outcome customers expect after a privacy complaint is handled fairly (10)
- 11. Restricting use or disclosure of personal data to its original reason — APP 6 (7, 7)
- 13. The requirement for MyState to be open about how personal information is managed — APP 1 (11)
- 14. The confidence customers place in MyState to do the right thing with their data (5)
- 15. What MyState must obtain before collectingpersonal information, unless an exception applies (7)
Down
- 1. Australian law MyState must follow when handling personal information (7, 3)
- 2. Document explaining how MyState manages personal information — required under APP 1 (7, 6)
- 3. The MyState role responsible for overseeing compliance with privacy obligations (7, 7)
- 4. An assessment completed to identify andreduce privacy risks in a new banking product6, 10)
- 6. A requirement to notify customers and regulators if data is compromised (6)
- 7. The principle requiring MyState to protect customer data from misuse and loss — APP 11(8)
- 12. Right for customers to request their personal details be amended (10)