Document Chunk

(1) An entity contravenes this subsection if:

• (a) the entity does an act, or engages in a practice; and
• (b) the act or practice breaches any of the following Australian Privacy Principles:
• (i) Australian Privacy Principle 1.3 (requirement to have APP privacy policy);
• (ii) Australian Privacy Principle 1.4 (contents of APP privacy policy); (iii) (iv) Australian Privacy Principle 2.1 (individuals may choose not to identify themselves in dealing with entities); Australian Privacy Principle 6.5 (written notice of certain uses or disclosures);
• (v) Australian Privacy Principle 7.2(c) or 7.3(c) (simple means for individuals to opt out of direct marketing communications); (vi) (vii) (viii) (ix) (x) Australian Privacy Principle 7.3(d) (requirement to draw attention to ability to opt out of direct marketing communications); Australian Privacy Principle 7.7(a) (giving effect to request in reasonable period); Australian Privacy Principle 7.7(b) (notification of source of information);