Audit: CBA to ‘substantially’ overhaul privacy under OAIC undertaking | iTnews

Posted by Steven Kirby | Jun 27, 2019 | Audit Report, Australia, Australian Audit Report 2019, Banking and Finance, iTnews, Privacy | 0 |

Australian Information Security Audit Report June 27 2019

CBA has 90 days to submit plans.

Reported in: iTnews

The Office of the Australian Information Commissioner (OAIC) has accepted a court-enforceable undertaking from the Commonwealth Bank of Australia (CBA) in the wake of investigations into issues with the bank’s handling of customer data.

As part of the undertaking, CBA now has 90 days to develop and submit to the OAIC a work plan and timetable of work to meet address its privacy obligations, including a review of its policies, procedures and data retention standards, while also providing staff training to ensure compliance.

“CBA must also assess its IT services and systems to make sure it takes appropriate steps to control access to customers’ personal information,” the OAIC said.

Source: CBA to ‘substantially’ overhaul privacy under OAIC undertaking

Audit Report: OAIChttps://www.oaic.gov.au/media-and-speeches/media-releases/court-enforceable-undertaking-to-drive-better-privacy-practices-at-commonwealth-banks published on the 27 June 2019

About The Author

Steven Kirby

I provide independent and practical consultancy services through raising awareness and fostering the energy for change that delivers improved business management of information security governance, risk and compliance.

Leave a Reply Cancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

More Australian News

Home Affairs experimenting with ChatGPT in refugee and cyber divisions
by Jake Evans on May 27, 2023
The Home Affairs department is experimenting with using the ChatGPT artificial intelligence tool under supervision in several of its divisions, …
Australian Medical Association calls for national regulations around AI in health care
by By Claire Moodie on May 27, 2023
Doctors in Perth have been ordered not to use AI bot technology, with authorities concerned about patient confidentiality. In an email obtained by the …
Fire Rescue Victoria's cyber-hack response a 'lesson in how not to communicate'
by By Zalika Rizmal on May 27, 2023
When Anna* received a letter from Victoria's fire service advising her personal information may have been stolen in a cyber attack, she wasn't too …
AU Info and Cyber Security News Last Week 2023-05-22
by Steven Kirby on May 27, 2023
Australian Info and Cyber Security Last Week 22nd May 2023 Very late this week, safety safe for your next meeting “Wear eye protection when prodding …
Latitude Financial counts the cost of cyber attack
by Ry Crozier on May 27, 2023
Latitude Financial is forecasting a first-half statutory loss of between $95 million and $105 million after a cyber attack “closed or severely …
Cyber criminals exploit out-of-office email to scam business
by David Adams on May 25, 2023
Source: Unsplash/Jefferson Santos. Something as simple as including holiday details in your out-of-office email could give cyber criminals an edge …
Incident: Thousands of identifiable Northern Territory patient health files sent to overseas-based software vendor in government data breach | ABC News (Australia)
by Steven Kirby on May 25, 2023
Australian Medical Data Handling Incident, 25 May 2023 Thousands of identifiable Northern Territory patient health files sent to overseas-based …
AI poses privacy risks for departments, companies - commissioner
on May 25, 2023
Warnings about keeping people's information safe when using artificial intelligence have been published by the Privacy Commissioner, directed at both …
ASIC releases and clarifies its corporate finance priorities for the coming quarter
by David Wilkie on May 25, 2023
Companies should consider their internal documentation to avoid regulatory action against greenwashing or poor cyber-risk policies and ensure their …
Op-Ed: Why settlement agents are at risk of cyber security attacks
by Reporter on May 25, 2023
Opinion: “As the world becomes more interconnected and technology-dependent, settlement agents find themselves facing a growing risk of cyber attacks …

Weekly Australian News and Monthly Incident Review Emails

No advertisements, marketing, sales, or unsolicited emails. Your email address is ONLY used to send the publications listed above.

Featured

Incident: Thousands of identifiable Northern Territory patient health files sent to overseas-based software vendor in government data breach | ABC News (Australia)

Featured

Incident: Drug and alcohol tests of graduate paramedics revealed in Ambulance Victoria data breach | The Guardian

Incident: TechnologyOne investigates 'cyber incident' on M365 system | iTnews

Incident: Crown Princess Mary Cancer Centre in Westmead Hospital in cyber attack, hackers threatening to release stolen data | ABC News (Australia)

Incident: Australian law firm HWL Ebsworth hit by Russian-linked Blackcat ransomware attack | The Guardian

Featured

Audit: Western Australia Auditor General's Local Government Information Security Audit 2021-22 reports 324 control weaknesses

Featured

Audit: Western Australia Auditor General's State Government Information Systems Audit 2021-22

Audit: Queensland Audit Office's State Entities 2022 reports deficiencies in information systems

Audit: Victoria audit warns of weak IT controls in council systems | iTnews

Audit: Western Australia Auditor General's Local Government Financial Audit 2020-21 reports 358 information system control weaknesses

Featured

Quote: Elijah Shaw "In the battle of real world vs..."

Featured

Quote: Kirsten Manthorne "You are an essential ingredient in our ongoing effort to reduce Security Risk.”

Quote: H. Stanley Judd "The ultimate security is your understanding of reality."

Quote: Gilda Radner "There is no real security except for whatever you ..."

Quote: Germaine Greer "Security is when everything is settled, when nothing ..."

Audit: CBA to ‘substantially’ overhaul privacy under OAIC undertaking | iTnews

Australian Information Security Audit Report June 27 2019

CBA has 90 days to submit plans.

Reported in: iTnews

Related

About The Author

Steven Kirby

Leave a Reply Cancel reply

More Australian News

Weekly Australian News and Monthly Incident Review Emails

Australian Cyber Aware Page

Featured

Incident: Thousands of identifiable Northern Territory patient health files sent to overseas-based software vendor in government data breach | ABC News (Australia)

Featured

Incident: Drug and alcohol tests of graduate paramedics revealed in Ambulance Victoria data breach | The Guardian

Featured

Audit: Western Australia Auditor General's Local Government Information Security Audit 2021-22 reports 324 control weaknesses

Featured

Audit: Western Australia Auditor General's State Government Information Systems Audit 2021-22

Featured

Quote: Elijah Shaw "In the battle of real world vs..."

Featured

Quote: Kirsten Manthorne "You are an essential ingredient in our ongoing effort to reduce Security Risk.”

Audit: CBA to ‘substantially’ overhaul privacy under OAIC undertaking | iTnews

Australian Information Security Audit Report June 27 2019

CBA has 90 days to submit plans.

Reported in: iTnews

Related

About The Author

Related Posts

Leave a Reply Cancel reply

More Australian News

Weekly Australian News and Monthly Incident Review Emails