Skip to main content
Skip to secondary navigation
Australian Government - Office of the Australian Information Commissioner - Home

Data breach affecting some Optus customers

15 December 2015

The Office of the Australian Information Commissioner (OAIC) received a voluntary notification from ARC Mercantile about a data breach it experienced in November 2015. As the data breach affected some Optus customers, Optus also notified the OAIC of this incident separately.

The OAIC has since been in contact with ARC Mercantile and Optus about this incident. We are pleased to see that Optus has notified affected individuals about this incident. Notification can be an important mitigation strategy that has the potential to benefit both the organisation and the individuals affected by a data breach. The OAIC strongly encourages notification in appropriate circumstances as part of good privacy practice.

The OAIC is currently determining whether it needs to take any additional action, in line with our Privacy regulatory action policy.

If individuals have concerns about this matter, they can contact Optus directly on 1800 103 941, or get in touch with the OAIC at, or on 1300 363 992.