The Commonwealth Bank of Australia is investigating a potential data breach that may have allowed staff to access customers’ sensitive medical information, ABC News reports. Discovered in July during preparations for the $3.8 billion sale of its insurance arm, the bank said it has been reviewing records to determine whether the data was "accessed inappropriately." While the Office of the Australian Information Commissioner was informed, the bank did not notify customers as it believed a privacy breach had not occurred. University of New South Wales Lecturer Katharine Kemp said, "Whether or not CBA can rely on its interpretation as a matter of law, the community has a reasonable expectation that it would be notified of such a failure in CBA's governance controls, especially given the sensitive nature of health information."
If you want to comment on this post, you need to login.