Privacy Impact Assessments

From one of the first organisations in Australia to achieve ISO 27001:2022

Our cyber security specialists conduct privacy impact assessments (PIA) for business projects, initiatives, or software, that involve handling personal information.

ISO 27001 Certification
cyber essentials certification
IASME cyber assurance certification

The MyEmpire Group difference

"We’re big enough to support all manner of businesses, from ma and pa’s to enterprise, but small enough to still obsess over detail."

We don’t obsess over detail to the point of paralysis, but we do take great pride in delivering exceptional work. And it’s not just because we get a thrill receiving elated client feedback, although that’s something we all share in common. Primarily it’s because we genuinely care about building cyber security systems that protect businesses. That means really learning your business and your people so we can develop a cyber security strategy suited to you, not a close-enough template pulled from a file. That’s what makes us different; we only feel satisfied when we know a job’s been done right. 

"The biggest benefit to working with MyEmpire Group is having access to cyber expertise on an as-needed basis. We're able to access skills and knowledge across a broad range of [cyber security] areas, and without having to hire in-house."
Jenelle Schultz
Chief Operating Officer, Business Fitness
"The MyEmpire Group team’s technical understanding of Essential 8 and ability to cut through all the techno-speak and explain things to us in layman's terms made the process so much more streamlined."
Lisa Saunders
Group Executive – Governance Risk & Compliance, REI Superannuation
MyEmpire Group have been outstanding in helping us prepare for and obtain our ISO 27001 certification. Their personalised and considered approach to truly understanding our business needs really sets them apart.
Peter Bell - Co-Founder, Techno Global Team
Peter Bell
Co-Founder, Techno Global Team

Our People

Our cyber security specialists are a mixture of seasoned veterans, many with 30+ years’ experience in IT, management and security. We also have young faces on the team, our rising stars–those whose talents we recognised early and chose to invest in. 

Beyond being experts in their fields, our people share a few things in common, a result of how we hire. Prior to any skills being tested in an interview, we look for personable people. Authentic, honest people who are passionate about their field and good communicators. In other words, we look for people who light up when they talk about their line of work. People whose passion is contagious. Only candidates who meet this criteria are taken through the typical interview steps where we probe skills and work history.

ISO 27001

Leadership Team

Alex Woerndle, MyEmpire Group

Alex Woerndle

HEAD OF OPERATIONS
(CO-FOUNDER & DIRECTOR)

Alex is an experienced director, IT consultant and infosec professional. He provides security management and leadership to a range of organisations from start-ups through to governments and ASX50 listed enterprises. He has also served over 10 years in voluntary roles as a Non-Executive Director of the Australian Information Security Association,.au Domain Administration Ltd and the Australian Conservation Foundation’s Finance, Audit and Risk Committee.

Carl Woerndle

HEAD OF SALES AND MARKETING
(CO-FOUNDER & DIRECTOR)

Carl has more than three decades’ experience in IT, security and business leadership. Prior to MyEmpire Group, he and Alex built DistributeIT which held approx. 10% market share of .com.au domains. As well as a business owner and manager, Carl has worked as a Cyber Security Advisor consultant for Deloitte. He is a regular keynote speaker on cyber security.

Chris Self

HEAD OF SERVICE DELIVERY

Chris is a highly experienced information security principal. He has worked as a senior cyber security consultant for KPMG, CQR Consulting (now part of CyberCX) and Deloitte. Prior to starting with MyEmpire Group, he was the Information Security Manager at Adelaide Airport where he led a full rebuild of the airport’s cyber security processes and infrastructure. Chris holds a master’s in information systems security and a number of information security certifications, including CISSP and CRISC.

Talk to a Cyber Security Specialist

What is a Privacy Impact Assessment?

A privacy impact assessment (PIA) aims to identify impacts on the privacy of individuals that may occur from the implementation of a new project, software, initiative etc. Any project involving the collection, use or disclosure of personal information should undertake a PIA. 

A privacy impact assessment is conducted in the project planning stage to help guide the direction and execution of the project. A PIA should be completed prior to most other project tasks commencing because the findings of the assessment should be fed back into the design process. No data should be handled until the privacy impact assessment is completed.

"The biggest benefit to working with MyEmpire Group is having access to cyber expertise on an as-needed basis. We're able to access skills and knowledge across a broad range of [cyber security] areas, and without having to hire in-house."
Jenelle Schultz
Chief Operating Officer, Business Fitness

How we help with Privacy Impact Assessments

A more thorough, unbiased investigation

As a third party organisation, we provide unbiased assessments. Plus, our privacy experts, having completed countless PIAs, offer unmatched thoroughness and attention to detail in the delivery of privacy impact assessments.

Security of Critical Infrastructure (SOCI)
Cyber security specialists Penetration testing

Stay compliant with Australia's Privacy Act

Privacy impact assessments are a good way to ensure your organisation’s processes related to data handling are compliant with the Australian Privacy Act. 

Identify risks before they materialise

Privacy impact assessments help point out privacy risks to your organisation before they eventuate. 

Penetration testing

Talk to one of our privacy experts

When to consider a Privacy Impact Assessment

vCISOs

Starting a project that involves handling data

Implementing third-party software that involves data handling.

Collecting new categories of customer data

Implementing a new loyalty program