The Office of the Australian Information Commissioner is imposing a court-enforceable undertaking on the Commonwealth Bank of Australia that asks them to "substantially improve" privacy practices, ZDNet reports. The OAIC's order for improvements comes after CBA exposed the customer statements of 20 million people in May 2016. The OAIC also cited another incident of CBA mishandling data from last August when the bank was found to have inadequate internal access controls to customer data. "Our inquiries identified deficiencies in CBA's management of personal information, specifically its internal access controls and approach to retention and destruction," Australian Information Commissioner and Privacy Commissioner Angelene Falk said. "As a result of this work, CBA has committed through a court-enforceable undertaking to substantially improve their privacy practices."
If you want to comment on this post, you need to login.