Skip to main content
Skip to secondary navigation
Australian Government - Office of the Australian Information Commissioner - Home

VTech data breach

3 December 2015

Earlier this week my office received reports of a major data breach affecting the personal information of parents and children, held by VTech Learning Lodge (VTech), a Hong Kong based company. 

The Office of the Australian Information Commissioner (OAIC) has been in contact with the Office of the Privacy Commissioner for Personal Data, Hong Kong (PCPD), and will be working with them on this matter. I can confirm that the PCPD has initiated investigations to determine VTech’s compliance with privacy and security obligations under Hong Kong law, which has similar provisions to Australia’s Privacy Act 1988 (Cth). The OAIC and the PCPD are both members of the APEC Cross-border Privacy Enforcement Arrangement, which creates a framework for regional cooperation in the enforcement of privacy laws.

Is also timely that this week, the OAIC and the PCPD are both attending the 44th Asia Pacific Privacy Authorities (APPA) Forum in Macao, where we will be liaising directly with our colleagues from PCPD and other regional agencies with an interest in the VTech matter.

If individuals have concerns about how VTech has handled their personal information, they can contact VTech directly on, or get in touch with the OAIC at, or on 1300 363 992.

Timothy Pilgrim — Acting Australian Information Commissioner