Privacy business resource 3: Credit reporting — what has changed


pdfPDF version1.47 MB

June 2013

As part of the reforms to the Privacy Act 1988 (Privacy Act), credit reporting in Australia is regulated by a new Part IIIA.[1] The new Part IIIA[2] allows for more comprehensive credit reporting. This means that a limited number of new types of credit-related personal information are permitted to be held in the credit reporting system. The move to more comprehensive credit reporting is accompanied by enhanced privacy protections relating to notification, data quality, access and correction, and complaints.

The new Part IIIA also aims to simplify, clarify and update the credit reporting provisions, and restructures them to reflect the information flows in the credit reporting system. The new Part IIIA is supplemented by regulations and a new written code of practice about credit reporting, the registered credit reporting code (CR code).

This business resource only outlines the major changes to Australia's credit reporting framework. More detail about the obligations contained in the new Part IIIA and how these obligations are to be applied and complied with, are contained in the regulations and the registered CR code.

This business resource is intended to be read alongside the provisions of the new Part IIIA, the regulations and registered CR code.

Changes to privacy law from 12 March

Content found in this section or on this page may not reflect the current law. The Office of the Australian Information Commissioner is updating the information found in this section

> Read more: Privacy law reform

Share this page

Protecting information rights — advancing information policy