Privacy impact assessment register

The NDIS Quality and Safeguards Commission (NDIS Commission) promotes a culture that values privacy and is committing to protecting personal information shared with us. The NDIS Commission completes privacy impact assessments (PIA) for high-risk privacy projects to ensure privacy considerations are taken into account from the outset of a project and through its lifecycle. PIAs provide a systematic assessment of compliance with the Australian Privacy Principles contained in the Privacy Act 1988 to identify potential privacy risks and provide mitigation strategies for managing, minimising or eliminating risks.

The NDIS Commission is required by section 15.1 of the Privacy (Australian Government Agencies – Governance) APP Code 2017 to maintain a register of the privacy impact assessments (PIAs) it conducts, and to publish that register on its website.

PIAs that have been completed by the NDIS Commission are listed below:

Privacy Impact Assessment (PIA) TitleDate of PIA
Functions of the NDIS Quality and Safeguards Commission10 July 2019
Proposed amendments to the National Disability Insurance Scheme (Protection and Disclosure of Information – Commissioner) Rules 20189 March 2021
NDIS Quality and Safeguards Commission’s Consultative Committee15 March 2024
NDIS Quality and Safeguards Commission -Suitability Project28 March 2024
NDIS Quality and Safeguards Commission - Stakeholder Sentiment project22 April 2024
NDIS Quality and Safeguards Commission - Comtrac system project13 June 2024
NDIS Quality and Safeguards Commission - Human Centred Design project17 June 2024
NDIS Quality and Safeguards Commission - Regulatory Reform Project6 November 2024
NDIS Quality and Safeguards Commission – Standards for Publication project22 November 2024
NDIS Quality and Safeguards Commission - Stakeholder Sentiment Survey 202513 May 2025