Australia: Information Commissioner filed civil penalty proceedings against Optus over alleged failure to protect personal information in data breach

Information Commissioner filed civil penalty proceedings against Optus over alleged failure to protect personal information in data breach

On 8 August 2025, the Australian Information Commissioner (AIC) filed civil penalty proceedings in the Federal Court against Singtel Optus Pty Limited and Optus Systems Pty Limited (together, Optus) following an investigation into the data breach di…

Scope

Policy Area

Data governance

Policy Instrument

Cybersecurity regulation

Regulated Economic Activity

infrastructure provider: internet and telecom services, streaming service provider, technological consumer goods

Implementation Level

national

Government Branch

executive

Government Body

other regulatory body

Complete timeline of this policy change

Hide details

2022-10-11

under deliberation

On 11 October 2022, the Office of the Australian Information Commissioner (AIC) in coordination wit…

2025-08-08

under deliberation

On 8 August 2025, the Australian Information Commissioner (AIC) filed civil penalty proceedings in …

Description

Information Commissioner filed civil penalty proceedings against Optus over alleged failure to protect personal information in data breach

Scope

Complete timeline of this policy change