With the introduction of the Privacy and Responsible Information Sharing Act 2024 in Western Australia and the evolving federal privacy reforms, public and private sector professionals face a rapidly shifting compliance environment. Focus on the key provisions of the PRIS Act, explore the intersection of privacy and artificial intelligence and develop practical strategies for embedding privacy by design into your systems and governance frameworks. Gain the insights you need to navigate new obligations, mitigate risk and ensure your clients and organisation is prepared for the future of privacy regulation.
Friday, 6 March 2026
Early Bird Discount ends 19 Dec 2025
Chair:
Elizabeth Tylich, Chairperson and Partner, Jackson McDonald
4.00pm to 4.15pm Afternoon Break
4.15pm to 5.15pm How to be Compliant – Privacy in Practice
- Integrating Privacy by Design in AI Systems: Practical guidance on embedding privacy principles into the development and deployment of AI technologies, including data minimisation, transparency, and accountability measures to ensure compliance with the Privacy Act and PRIS Act
- Risk Management and Data Governance: Strategies for identifying and mitigating privacy risks, such as implementing robust data governance frameworks, conducting privacy impact assessments and ensuring secure data handling and sharing practices
- Balancing Innovation and Compliance: Insights into leveraging AI responsibly while adhering to the Act, including the use of ethical AI frameworks, staff training on privacy obligations, and maintaining transparency with individuals about how their data is used in AI-driven processes
Presented by Sam Fiddian, Partner, Clayton Utz, Clare Mould, Special Counsel, Corrs Chambers & Peta Demidenko, Founder, Privacy Mayhem
Description
Attend and earn 3 CPD units Substantive Law
This program is based on WA legislation
2.00pm to 3.00pm Legislative Update – An Introduction to PRIS
- Overview of the Act: An introduction to the purpose and scope of the Privacy and Responsible Information Sharing Act 2024, including its objectives to enhance privacy protections and facilitate responsible information sharing across public sector agencies in Western Australia
- Key Privacy Provisions and Obligations: Examination of the PRIS Act's core privacy principles, including the establishment of privacy safeguards, the roles and responsibilities of public sector entities and the rights of individuals regarding their personal information
- Challenges for Contracted Service Providers: A look at which private sector organisations need to take note, and how compliance with the PRIS Act might differ from compliance with the Privacy Act 1988 (Cth)
- Role of the Regulator: discuss the role of the WA Information Commissioner in oversight and enforcement
Presented by Sam Fiddian, Partner, Clayton Utz; Leading Intellectual Property and Technology Lawyers WA, Doyle's Guide
3.00pm to 4.00pm Privacy and AI
- Mandatory ADM Transparency Requirements: Analysis of the new transparency and accountability obligations for Automated Decision-Making (ADM) under the reformed Privacy Act, focusing on the requirement to disclose ADM types and data inputs in privacy policies (scheduled to commence December 2026)
- Data Collection & Inference Challenges: Examination of how AI models' use of personal information—including the inference of new personal information—triggers compliance with the Australian Privacy Principles (APPs), particularly concerning lawful collection (APP 3) and notice requirements (APP 5)
- The Regulatory Gap in Accountability: Factual discussion of the legal and technical obstacles in meeting transparency (APP 1) and access/correction rights (APP 12) due to the "black box" nature of AI, and strategies for identifying legal liability across the complex AI supply chain
- Risk Mitigation via Governance: Practical guidance on establishing and implementing dedicated AI Governance Frameworks and internal AI Policies to manage data risks, ensure adherence to the APPs, and mitigate exposures from AI-supercharged cyber threats (e.g., deepfake social engineering)
Presented by Clare Mould, Special Counsel, Corrs Chambers Westgarth
Presenters
Clare Mould, Special Counsel, Corrs ChambersA commercial lawyer with over 16 years’ experience in both Australia and the UK, Clare specialises in transactions and advice related to ownership, procurement, commercialisation of technology and intellectual property. Clare acts for large private sector users and suppliers of technology, including those operating in the energy, resources and financial services industries. She also acts for major government trading entities advising on technology procurement and data privacy matters. Clare is a member and former chair of the Law Society Intellectual Property and Technology Committee and is a committee member of Intellectual Property Society of Australia and New Zealand.
Peta Demidenko, Founder, Privacy Mayhem
Bridging the policy and technology divide with superheroes, mottos and a little mayhem! Starting her adventure as a motorbike riding librarian, she has built her pyramid of skills in information governance, records management and technology over the course of 20 years. She now includes Privacy into the mix making her a total data square! Her experience is varied from being the creator of a local council Records Management and Data Governance Framework to weaving data protection into the fabric of an online gaming company. Not forgetting a tangent in developing the gateway to mountain biking adventures in Western Australia. Peta brings a multi-faceted approach to data management.
Sam Fiddian, Partner, Clayton Utz
Sam is a Partner in the Perth office of Clayton Utz. Specialising in data protection, privacy, cybersecurity, and a broad range of IP and ICT matters, Sam provides strategic advice to Australian and international clients across various industries, including the public sector, health, automotive, mining, and energy and resources. Sam provides deep expertise in both contentious and non-contentious matters, including advising on data protection and privacy compliance, developing privacy and cybersecurity policies and practices, and responding to cyber incidents. Sam also assists clients with the preparation and negotiation of complex technology agreements, licensing arrangements, and joint ventures, as well as addressing issues such as IP infringement, misappropriation of confidential information, and other cyber-related risks. With a focus on helping clients navigate high-risk compliance challenges and manage cyber threats, Sam delivers tailored solutions to protect data and digital assets.
Elizabeth Tylich, Chairperson & Partner, Jackson McDonald
She is experienced in drafting and negotiating a broad range of commercial arrangements, including bespoke contractual arrangements, managing transactions, conducting due diligence exercises, and advising on IT contracting and software solutions. She has considerable experience advising both government and non-government organisations on matters of statutory interpretation. Elizabeth has acted on numerous public and private transactions, and is extensively experienced in advising on mergers and acquisitions, business sales, joint ventures, partnerships, and corporate matters, including constitutions, shareholders’ agreements, directors’ duties and corporate governance. She often advises boards and undertakes board governance training. Elizabeth advises charities and not-for-profit organisations on their corporate structure, charitable status, governing documentation and has successfully implemented NFP mergers. She is also experienced in the areas of competition and consumer law.
