Notifiable data breaches update - Australia

Bird & Bird has developed a resource to help assess whether a data breach is notifiable or not, which can be accessed here.  

The first quarterly report on the Notifiable Data Breaches (NDB) scheme has been issued by the Office of the Australian Information Commissioner (OAIC). 

The OAIC received 63 data breach notifications in February and March, with a majority of the breaches caused by human error. The next most common cause was malicious attacks, with a small number being caused by system faults.The majority of data breaches involved contact information (name, address, phone), while a smaller number involved health information, financial details or identity information (drivers licence, passport). Almost a third of the reported data breaches affected only 1 person. 

The top 5 sectors identified by the OAIC as suffering the highest number of data breaches are: 

  • health service providers;
  • legal, accounting and management services;
  • finance;
  • private education; and
  • charities. 

Please contact one of our data protection team members below if you need assistance in relation to a data breach.

Latest insights

More Insights
Curiosity line green background

An In-depth Analysis of China’s Network Data Security Regime Part III: Cross-Border Data Transfer and Platform Data Protection

Aug 14 2025

Read More
Curiosity line pink background

ASIC Takes Action Against Fortnum Private Wealth Over Cybersecurity Failures

Aug 11 2025

Read More
Curiosity line teal background

China Cybersecurity and Data Protection: Monthly Update - July 2025 Issue

Aug 07 2025

Read More