Australia: Information Commissioner found Kmart Australia Limited’s use of facial recognition technology non-compliant with Privacy Act

Information Commissioner found Kmart Australia Limited’s use of facial recognition technology non-compliant with Privacy Act

On 18 September 2025, the Australian Information Commissioner issued a ruling in its investigation into Kmart Australia Limited, confirming that the company had breached the Privacy Act through its use of facial recognition technology (FRT) in 28 re…

Scope

Policy Area

Data governance

Policy Instrument

Data protection regulation

Regulated Economic Activity

platform intermediary: other

Implementation Level

national

Government Branch

executive

Government Body

data protection authority

Complete timeline of this policy change

Hide details

2025-08-26

under deliberation

On 26 August 2025, the Australian Information Commissioner initiated an investigation into Kmart Au…

2025-09-18

in force

On 18 September 2025, the Australian Information Commissioner issued a ruling in its investigation …

Description

Information Commissioner found Kmart Australia Limited’s use of facial recognition technology non-compliant with Privacy Act

Scope

Complete timeline of this policy change