Monash University controls various entities (eg companies) via:
- Ownership of more than 50% of the entity.
- More than 50% of the directors on the board are Monash representatives.
These are referred to as Monash Controlled Entities.
Monash Controlled Entities are required to comply with two pieces of privacy legislation which are:
- Privacy Act 1988 (Cth); and
- Health Records Act 2001 (Vic)
It is important to note that Monash University is not required to comply with the Privacy Act 1988. It is also important to note that the Privacy Act 1988 and the Privacy and Data Protection Act 2014 (Vic) are different pieces of legislation and whilst there are similarities, there are also differences.