Individuals affected by DIBP’s February 2014 data breach invited to provide evidence of loss or damage

24 January 2018
Tags: statement

The Office of the Australian Information Commissioner (OAIC) is seeking to contact individuals who were in immigration detention on 31 January 2014 and were affected by the Department of Immigration and Border Protection (DIBP) data breach, which occurred in February 2014.

On 30 August 2015, a representative complaint was made on behalf of those individuals. In order to assess whether affected individuals might be entitled to some form of remedy, the OAIC now requires information from those individuals.

A public notice directed to those people who may have been affected has been published. Individuals who believe they have suffered loss or damage as a result of the data breach should visit the OAIC website and read the Notice to understand the full context of this matter and the next steps available to them.

In November 2014, the Privacy Commissioner found the DIBP to be in breach of the Privacy Act 1988 and released an investigation report that contained a number of recommendations for action which have since been acted on by what is now the Department of Home Affairs.


The media release regarding DIBP’s 2014 data breach is available on the OAIC website:

Was this page helpful?

Thank you.

If you would like to provide more feedback, please email us at