Publications

Recent

​

• 2024 What makes a great Privacy Impact Assessment?​, IAPP Knowledgenet, Perth April 2024

• 2023 Data an asset and a liability? Getting financial buy-in for privacy controls iappANZ Summit, Sydney November 2023

• 2023 Privacy Engineering Consent Workshop, European Data Protection Congress, Brussels November 2023

• 2023 AI Policy Summit, closed sessions to discuss the challenges arising from the proposed developer-deployer distinction in AI regulation, Zurich November 2023

• 2023 Submission: Safe and Responsible AI, submitted to the Department of Industry, Science and Resources, Australian Government July 2023

• 2023 The data trap, ANZ IIF Journal, Vol 46, Issue 2, pp.46-49

• 2023 ChatGPT and generative AI for business and cyber - Embrace or displace?, plenary panel at AISA's SydneySEC June 2023

• 2023 A journey to a career that didn't exist when I was at school, keynote presentation at It takes a spark STEM conference Gold Coast June 2023

• 2023 Australian privacy legislation is undergoing major legislative reform and directors need to know how to govern privacy risks within their organisations,​Australian Institute of Company Directors Magazine, May pp.44-46

• 2023 GPS 2023: AI opportunities for privacy professionals, International Association of Privacy Professionals April 2023

• 2023 Submission: Privacy Act Review Report 2022 submitted to the Attorney-General's Department, Australian Government March 2023

• 2023 Data as nuclear fuel: Both an asset and potential liability for organisations, presented at CyberCon Canberra March 2023

• 2023 Australian privacy reform moves forward with new government report, IAPP's Jedidiah Bracy quotes Privcore, February 2023

 

Artificial intelligence, technology and change

​

• 2023 AI Policy Summit, closed sessions to discuss the challenges arising from the proposed developer-deployer distinction in AI regulation, Zurich November 2023

• 2023 ChatGPT and generative AI for business and cyber - Embrace or displace?, plenary panel at AISA's SydneySEC June 2023

• 2023 A journey to a career that didn't exist when I was at school, keynote presentation at It takes a spark STEM conference Gold Coast June 2023

• 2023 GPS 2023: AI opportunities for privacy professionals, International Association of Privacy Professionals April 2023

• 2022 What's her story?, Women in Security Magazine, Issue 11 Nov-Dec 2022 pp16-17

• 2021 Privacy by Design in AI

• 2020 Startup Daily's Eliot Hastie on Ausbiz interviews Annelies Moens on the Superstars of STEM program and privacy - 23 December 2020 at 10:25min into final episode for 2020

• 2020 Stranger times: When TikTok became a geopolitical football Australian Institute of International Affairs

• 2020 Privacy beyond data at the 11th iappANZ Summit TrustArc News and Insights

• 2020 NSW GIPA Access Request to PIA and related documents on mobile phone detection cameras

• 2019 Privacy as a public good at the 41st International Conference of Data Protection and Privacy Commissioners TrustArc News and Insights

• 2019 AI - What's the Drama? Applying Accountability to New Tech (Presentation at the iappANZ Annual Summit, Sydney)

• 2019 Submission: Consultation on Artificial Intelligence, Australia's Ethics Framework - A Discussion Paper submitted to the Australian Department of Industry, Innovation and Science

• 2019 AI and Accountability: What's the Drama? (Presentation at the Telstra Enterprise Brilliant Connected Women Network, Sydney) 

• 2019 Creating a Climate for Change: The Privacy Conundrum Institute of Managers and Leaders, Australia | New Zealand

• 2019 Artificial Intelligence and Women Institute of Managers and Leaders, Australia | New Zealand International Women's Day (Keynote address and video, Sydney)

• 2018 Social Climate Change at the 40th Data Protection Commissioners’ Conference Privacy Unbound Issue 87, p.32-34

• 2018 Algorithmic Bias (Presentation at NSW Society for Computers & the Law, Sydney)

• 2017 Book Review – Weapons of Math Destruction 2016 – Cathy O’Neil Data Scientist Privacy Unbound Issue 76

• 2016 Unravelling the Mystery of Blockchain – Do Privacy Professionals Need to be Concerned? Privacy Unbound Issue 72, p.10-12

• 2010 Privacy in the Cloud: Points to Consider Privacy Laws & Business International Newsletter June p.20

​

Cross border data flows, CBPR and trade

​

• 2020 Serious Privacy Podcast: My life got flipped-turned upside down (What's fresh in Australia and the Asia Pacific region)

• 2020 A primer on privacy in Asia Pacific, Privacy Advisor, IAPP

• 2020 Buying and selling personal data directly from consumers (Sanna Toropainen of Muna.io interviews Annelies Moens)

• 2019 CBPR/PRP Basics - How the System Works and Benefits of the CBPR and PRP Certifications (Panel sessions for the Centre for Information Policy Leadership and the Personal Data Protection Commission, Singapore)

• 2017 Privacy: APEC CBPR and Mandatory Data Breach Reporting (Presentation at Legalwise In-house Counsel Conference, Sydney)

• 2017 Data Localisation Laws: Trade Barriers or Legitimate Responses to Cybersecurity Risks, or Both? 25(3) International Journal of Law and Information Technology p.213-232

• 2016 APEC Privacy Framework and CBPRs: Ready for the Spotlight (Presentation at IAPP’s Privacy Security Risk Conference, San Jose)

• 2016 Potential Benefits for APEC Economies and Businesses joining the CBPR System (Presentation at APEC SOM 1 Meeting, Lima, at CIPL and APPA workshop, Singapore)

• 2016 Report for APEC: Preliminary Assessment: Potential Benefits of APEC Economies and Businesses Joining the CBPR System

• 2015 Best Practice Cross-border Data Flows (Presentation at APEC Harmonisation of Standards Project Workshop, Sydney)

• 2015 Cross Border Privacy Rules (Presentation at ALB Data Protection Conference, Kuala Lumpur)

• 2014 Report for APEC: Australia – Phase 1 – CBPR – Impediment Analysis

​

Cybersecurity and online privacy

​

• 2022 Cyber-insurance: The existential battle for its future - update, Presentation at CyberCon Melbourne 2022

• 2022 Cyber Insurance: The Existential Battle for its Future, Australian Cyber Conference, Canberra

• 2021 Trust and privacy, Peru Trade and Tech Online Conference, Online presentation

• 2021 Online browser privacy, Superstars of STEM, Online presentation

• 2021 Cyber Insurance: The Existential Battle for its Future, Australian Cyber Conference, Canberra (Video introduction)

• 2020 Three ways to kickstart your cybersecurity and privacy health check,  Institute of Managers and Leaders | Australia New Zealand

• 2020 COVID-19 and the Downsides of a Cashless Society, The Lighthouse

• 2020 COVIDSafe App and Bluetooth Vulnerabilities (video) Channel Seven Weekend Sunrise

• 2019 Australian Government Missed the Point with New Encryption Bill Australian Institute of International Affairs

• 2019 Online Browser Privacy Optus Macquarie University Cybersecurity Hub

• 2018 Cybersecurity (Presentation to the constituents of the federal electorate of Mackellar) (video)

• 2017 Not Just an IT Issue – Why Cybersecurity Should be on the Board Agenda, OpenForum

• 2016 How can Company Boards Build Trust in the Face of Cybersecurity Risks?, Optus Macquarie University Cybersecurity Hub

• 2013 Current Issues in Cybersecurity, United Nations Internet Governance Forum, Denpasar, Indonesia

​

Data breaches

 

• 2023 Data an asset and a liability? Getting financial buy-in for privacy controls iappANZ Summit, Sydney November 2023

• 2021 Supply chain privacy risk management

• 2019 Mandatory data breach reporting: outcomes since reporting began, Governance Risk Compliance Professional, Conference edition, p.55

• 2019 Your core business is data, Governance Risk Compliance Professional, Winter edition, pp.36-40

• 2019 How Schools can Mitigate Cyber and Privacy Risks, Legalwise School News

• 2019 Why Your Student Data is Hot Property to Cyber Crims. Legalwise School News

• 2019 About 1000 Data Breaches Reported in First Year of Mandatory Reporting, Legalwise News

• 2019 Your Organisation's Core Business is Data, Legalwise News

• 2019 Privacy and Mandatory Data Breach Notification Regime - Data Your Clients' Core Business, (Presentation at the 6th Annual 10 Points in One Day Legalwise seminar, Parramatta)

• 2019 Data - Your Organisation's Core Business and Your Obligations(Presentation at the Inaugural employment taxes and financial obligations conference, Sydney)

• 2018 Lower your Risk of Data Breaches, Legalwise News

• 2017 Privacy: APEC CBPR and Mandatory Data Breach Reporting (Presentation at Legalwise In-house Counsel Conference, Sydney)

• 2015 Privacy Disputes and Data Breaches: Lessons for Dispute Resolvers (Presentation at ACICA Conference, Perth)

• 2013 Privacy, the Cloud and Data Breaches (Presentation at Legalwise seminar, Sydney)

​

Governance of data

​

• 2024 What makes a great Privacy Impact Assessment?​, IAPP Knowledgenet, Perth April 2024

• 2023 Privacy Engineering Consent Workshop, European Data Protection Congress, Brussels November 2023

• 2023 Australian privacy legislation is undergoing major legislative reform and directors need to know how to govern privacy risks within their  organisations, Australian Institute of Company Directors Magazine, May pp.44-46

• 2023 Data as nuclear fuel: Both an asset and potential liability for organisations, presented at CyberCon Canberra March 2023

• 2022 Opinion Piece - Privacy Act Review, Australian Institute of Company Directors Magazine, May pp.26-27

• 2021 Navigating the Minefield of Children's Personal Information​

• 2021 What makes a great Privacy Impact Assessment?​, NSW Privacy and Right to Know Information Practitioners Network and Sydney Water, Privacy Awareness Week, 6 May

• 2021 Privacy risk assessments critical for handling sensitive data​, The Mandarin, 8 April

• 2021 The "Essential Eight" for a great Privacy Impact Assessment, Australian Cyber Conference, Canberra, 

• 2021 What makes a great Privacy Impact Assessment?, Australian Cyber Conference, Canberra, (Video introduction)

• 2020 It's Personal, Australian Institute of Company Directors Magazine, March p.15

• 2020 Trading data - the risks of the 'trust society', Global Governance Initiative 

• 2019 Directors' defence of reliance on recommendations made by artificial intelligence systems: Comparing the approaches in Delaware, New Zealand and Australia, 34 Australian Journal of Corporate Law, pp.141-159

• 2019 The Digital Platform Inquiry is Catalysing Major Enforcement Changes to the Privacy Act, Australian Institute of Company Directors Magazine, June p.14 

• 2018 What do you know about your data?, Global Governance Initiative

• 2018 Data is Your Organisation’s Core Business: Are You Prepared to Govern It?, Journal of Data Protection & Privacy Vol 2.1 p.16-21 and extract in Legalwise News

• 2018 Innovation and the Law – Exploring the Grey Area (Presentation at the AICD’s Australian Governance Summit, Melbourne (video available to AICD members)

• 2018 Data is an Organisation’s Core Business, Australian Governance Summit 2018 Reader p.89-92

• 2017 Not Just an IT Issue: Why Governance of Data Should be on the Agenda of Every Board Director, Governance Institute of Australia p.104-106

​

Influencing government policy

​

• 2023 Submission: Safe and Responsible AI, submitted to the Department of Industry, Science and Resources, Australian Government July 2023

• 2023 Submission: Privacy Act Review Report 2022 submitted to the Attorney-General's Department, Australian Government March 2023

• 2023 Australian privacy reform moves forward with new government report, IAPP's Jedidiah Bracy quotes Privcore, February 2023

• 2022 Review of the Australian Privacy Act: Key areas of business interest

• 2022 What's at stake? Review of the Australian Privacy Act

• 2022 Submission: Privacy Act Review - Discussion Paper submitted to the Attorney-General's Department, Australian Government

• 2021 The efficacy, equity and externalities of Australia's COVIDSafe app as a policy intervention during the COVID-19 pandemic: Was it sunscreen or tanning lotion? UNSW Law Journal, Volume 44 (4) pp.1584 - 1618, published 26 November 2021

• 2021 Privacy Certification Research commissioned by the OAIC to support the review of the Australian Privacy Act, published 28 April 2021 and written in June 2020

• 2020 Submission: Consultation on the Privacy Act Review submitted to the Attorney-General's Department, Australian Government

• 2020 Independent review of ABS PIA - Using linked data to investigate the role of sociodemographic factors in people with cancer in NSW published by ABS

• 2020 COVIDSafe app - Are you sitting on the fence?

• 2019 Submission: Consultation on the ACCC's Digital Platforms Inquiry Final Report submitted to The Treasury, Australian Government

• 2019 Submission: Consultation on Artificial Intelligence, Australia's Ethics Framework - A Discussion Paper submitted to the Australian Department of Industry, Innovation and Science

• 2017 Response to the Attorney-General’s Department and Department of Communication and the Arts Inquiry into Civil Litigant Access to Retained Metadata

• 2014 Response to Joint Parliamentary Inquiry on Intelligence and Security Inquiry into the Telecommunications (Interception and Access) Amendment (Data Retention) Bill

​

Law and regulation

​

• 2023 The data trap, ANZ IIF Journal, Vol 46, Issue 2, pp.46-49

• 2022 The shape of things to come - Review of the Australian Privacy Act, status at 22 November 2022, presented at iappANZ Summit Sydney 2022 (slides available​)

• 2022 Managing privacy risk - Current challenges and what the future may hold​, Presentation for AISA, RMIA and the Fair Institute Sydney chapters, hosted by IBM

• 2022 A precursor to the Australian Privacy Act's anticipated increased penalty regime

• 2022 Privacy and cyber security at the forefront of corporate responsibility (pdf), Antcliffe:Scott (html)

• 2022 The privacy landscape in Australia (Presentation for TrustArc)

• 2020 The new convergence between privacy, competition and consumer regulation (virtual iappANZ Summit with the OAIC, ACCC and the Law Council of Australia)

• 2019 The merger of competition and privacy regulation: Implications of the ACCC's Digital Platforms Inquiry on privacy reform (presentation at AISA, Hobart)

• 2015 White Collar Crime and Metadata: Beware of Building a New Honeypot,The Conversation

• 2013 Does the Internet Need a Delete Button? (Presentation and video at the Australian Internet Governance Forum, Melbourne)

• 2013 Recent Proposals to Reform Data Protection Laws in the EU and Australia – A Comparative Analysis, Computer Law Review International Issue 3 p.65-70

• 2013 The Latest David and Goliath Story: Does the ‘Right to be Forgotten’ Defy the Tsunami of Online Information Collection and Distribution?, iappANZ Member Bulletin Issue 44

• 2011 Spam, Privacy and WHOIS, iappANZ Member Bulletin Issue 20

• 2004 Australian Privacy Commissioner Launches Online Interactive System: ComplaintChecker, Internet Law Bulletin p.75

​

Lessons learned

​

• 2012 Privacy Case Study: Accident Compensation Corporation, New Zealand, iappANZ Member Bulletin Issue 37

• 2007 Enhancing Trust in Online Auctions: eBay’s Australian Experience with Code and Law, 8(6) Computer Law Review International p.172-176

• 2006 How Boeing Turned Theft of Personal Information into a Privacy Awareness Campaign, Privacy Laws & Business International Newsletter p.12-13

• 2006 The 10 Commandments of Data Privacy in Outsourcing Contracts, Privacy Laws & Business International Newsletter p.17-18