The NBD scheme applies to eligible data breaches where personal information is lost, accessed or disclosed, without authorisation and is likely to result in serious harm. The scheme applies to organisations who have obligations under the Privacy Act 1988 (Cth) to secure personal information. Entities covered by the NBD scheme include: Australian Government agencies, private sector and not-for-profit organisations with an annual turnover exceeding AU$3m, private health service providers (regardless of turnover) credit reporting bodies and credit providers, entities that trade in personal information and Tax File Number Recipients.

The NBD scheme applies to eligible data breaches where personal information is lost, accessed or disclosed, without authorisation and is likely to result in serious harm. The scheme applies to organisations who have obligations under the Privacy Act 1988 (Cth) to secure personal information. Entities covered by the NBD scheme include: Australian Government agencies, private sector and not-for-profit organisations with an annual turnover exceeding AU$3m, private health service providers (regardless of turnover) credit reporting bodies and credit providers, entities that trade in personal information and Tax File Number Recipients.