USQ Logo
The current and official versions of the course specifications are available on the web at
Please consult the web for updates that may occur during the year.

LAW3476 Privacy and Data Protection Law

Semester 3, 2022 Online
Units : 1
Faculty or Section : Faculty of Business, Education, Law and Arts
School or Department : School of Law and Justice
Student contribution band : Band 4
Grading basis : Graded
Version produced : 27 June 2022


Pre-req: ((Students enrolled in: BEDU (Legal Studies) or BLAW or LLBP or BALW or BBLA or BCLA or BCLW) & (LAW1201 or (LAW1111 & LAW1112)) or ((Students enrolled in: DJUR & (LAW5501 or (LAW5111 & LAW5112)). Alternatively, students may be enrolled in MCYS.


This course provides knowledge of the regulatory environment that governs privacy and data protection law. Increasingly, privacy and data protection are having a major effect on law, business development and internet use, and knowledge of the regulatory laws applicable to data protection is important for legal advisors, businesses, information technology professionals and public institutions.

This course introduces students to the law as it relates to privacy and data protection law. It examines key legal areas that are relevant to information privacy. The areas covered have a statutory focus and includes an overview of the philosophy of privacy and the common law right to privacy, data protection and breaches, hacking and issues of cyber security and the General Data Protection Regulation. In each area the application of existing legal principles to privacy as well as regulation will be examined. This course is particularly useful to students who are involved in data collection either from a legal, marketing, or information technology point of view.

Course learning outcomes

On successful completion of this course, students should have:

  1. demonstrate an understanding [explain and apply] of a coherent body of knowledge [relevant to privacy and data protection law], and underlying principles and concepts; and the broader contexts within which legal issues arise [in this area] (PO1/TLO1)
  2. identify and articulate legal, [policy and technical] issues [relevant to privacy and data protection law]; [comprehend legal and other materials]; apply legal reasoning and research to generate appropriate responses to legal [policy and technical] issues; engage in critical analysis and make a reasoned choice amongst alternatives; and think creatively in approaching legal [policy and technical] issues and generating appropriate responses (PO3/TLO3)
  3. demonstrate the intellectual and practical skills needed to identify, research in an ethical manner, evaluate and synthesise relevant factual, legal and policy issues [relevant to privacy and data protection law] (PO4/TLO4)
  4. communicate in ways that are effective, appropriate and persuasive for legal and non-legal audiences (PO5/TLO5)
  5. identify applicable legislation and delegated legislation, explain general principles of statutory interpretation, understand [explain and apply] and make appropriate use of authorised aids to statutory interpretation, and deploy appropriate techniques in the course of solving interpretative problems [including problems raising special interpretative issues; and give a reasoned opinion as to the appropriate meaning of a legislative provision, and as to the correct application of the provision to a given set of facts] (PO7).


Description Weighting(%)
1. Fundamental privacy principles 10.00
2. Statutory protection of privacy law 30.00
3. Personal information 10.00
4. Managing data and data handling 20.00
5. General Data Protection Regulation 10.00
6. Types of data breaches 10.00
7. Notifiable data breaches 10.00
Date printed 27 June 2022