LABOR CALLS FOR URGENT ACTION TO NOTIFY ALL SERVICE NSW CUSTOMERS AFFECTED BY BREACH
NSW Labor has called on the Berejiklian Government to take urgent action to ensure notifications are sent to all customers affected by last year’s Service NSW data breach, which has so far cost taxpayers up to $35 million to remediate.
Despite the breach occurring more than 12 months ago, Service NSW has confirmed that only 42,000 of the impacted 103,000 customers have been notified.
Shadow Minister for Better Public Services Sophie Cotsis said:
“It is outrageous that less than half of the people impacted by the Service NSW data breach have not been notified, more than a year since their personal information was accessed by cyber criminals.”
“It is deeply concerning the standards that apply to the private sector do not apply to the NSW Government. Imagine, if a top Australian company had still failed to notify customers that their private information had been accessed by criminals more than a year after the event,” Ms Cotsis said.
Ms Cotsis also raised concerns that the Department of Customer Service decided against notifying Service NSW customers impacted by breach who it considered to be at little risk of harm. Service NSW has failed to clarify if this decision was behind it downgrading the number of impacted customers from the original 186,000.
“It is totally unacceptable that anyone exposed to a privacy breach is not notified. It is not up to Government agencies to decide against notifying people that their personal information has been stolen justbecause they
Ms Cotsis said it was vital the NSW Government implement the recommendations of the recent NSW Parliamentary Cyber Security Inquiry, which include giving Cyber Security NSW’s powers in enforcing cyber security measures in government agencies, to move the responsibility of cyber security to the Department of Premier and Cabinet, and for a mandatory data scheme to be established.
“If the massive Service NSW data breach and attacks on NSW Health and Transport for NSW were not enough of a warning, I really hope the findings from theCyber Security Inquiry are ringing alarm bells for the NSW Government.”