The State Solicitor's Office (SSO) is committed to protecting the privacy and personal information of individuals in a lawful, transparent and responsible manner.
The SSO's information handling processes are governed under the Privacy and Responsible Information Sharing Act 2024 (WA) (PRIS Act). As a public entity, the SSO complies with the Information Privacy Principles set out in Schedule 1 of the PRIS Act, which establishes the minimum standards for the collection, use, disclosure and storage of personal information. We endeavour to comply with our obligations under the PRIS Act and take the appropriate measures to ensure that personal information is managed securely and responsibly.
Further information about our obligations and your rights surrounding information handling can be found in our:
• Privacy Policy
• Information Breach Policy
• Collection Notices
For more information about privacy and responsible information sharing in Western Australia, please visit the Office of the Information Commissioner.
Privacy Policy
Show moreOur Privacy Policy explains how the SSO manages personal information, including:
• what personal information and sensitive personal information is
• why we collect, use and disclose personal information
• how we store and protect personal information
• who to contact for queries or complaints about how your personal information is managed.
The SSO may collect personal information necessary to carry out our functions or where required by law. Most information held by the SSO is subject to legal professional privilege and will only be used and disclosed where necessary for the SSO to lawfully perform its function.
Information Breach Policy
Show moreThe Information Breach Policy establishes the SSO framework for managing information breaches in accordance with notifiable information breach requirements under the PRIS Act. From 1 January 2027, IPP entities must report notifiable information breaches to the Office of the Information Commissioner and individuals affected by the breach.
An information breach occurs when there is;
• unauthorised access
• unauthorised disclosure
• loss of personal information.
A breach becomes notifiable when it is likely to result in serious harm to individuals the information relates to.
The SSO maintains an Information Breach Register to record details of all reported information breaches and responses. Assessments of information breaches will be conducted and submitted within 30 days of notification to determine the severity of the breach. Our commitment to the swift identification, containment, notification and mitigation of harm of an information breach supports our wider duty to strong privacy arrangements and effective legislative compliance.
Collection Notices
Show moreOur Collection Notices complement the SSO Privacy Policy by providing more detailed information on how the SSO collects, uses, discloses and stores your personal information. Collection Notices are available in relation to;
- Employees
- Contractors
- Legal Services
Contacts
Show moreUnder the Freedom of Information Act 1992, you have a right to request access or amendment to the personal information the State Solicitor's Office holds about you. To request access or a correction to your personal information, submit a written application to foi@sso.wa.gov.au.
If you have concerns about the management of your personal information, you may lodge a privacy complaint through our Privacy Officer at privacy@sso.wa.gov.au. All complaints will be investigated. If the complaint is not resolved to your satisfaction, you may escalate your privacy complaint to the Office of the Information Commissioner Western Australia.
For further questions about privacy at SSO or the handling of your personal information, contact our Privacy Officer at privacy@sso.wa.gov.au.