Services Australia has pushed back on the Australian National Audit Office’s privacy inquiry, saying the auditor cannot compel companies to disclose which agency-issued credentials have been exposed through breaches in the corporate sector.
It’s a bit more than a small problem for major business groups seeking to blame the Albanese government for all manner of data breaches, compromises, and exfiltrations courtesy of requirements to collect sensitive personal data to identify customers, with the agency arguing it has no way to compel disclosures over what identifiers have jumped the fence.