Alinta Energy accused of customer data protection failure

Energy giant may not have sufficiently protected the personal information of its 1 million customers according to leaked documents revealed in join media investigation

protecting_data-100683751-orig.jpg
protecting_data-100683751-orig.jpg

Alinta Energy stands accused of potentially exposing the sensitive information of its 1.1 million customers because it lacks sufficient privacy protection systems. 

A joint investigation between the ABC’s current affairs show 7.30 and The Sydney Morning Herald and The Age has revealed leaked documents appearing to indicate the energy giant has not had appropriate compliance and privacy monitoring systems in place to safeguard personal information.

As a business with a retail customer base, Alinta holds a swathe of personal details on customers including names, addresses, birth dates, mobile phone numbers and financial details. Leaked documents obtained by the ABC and the two newspapers appear to show Alinta has not adequately protected this sensitive information.

The Chinese-owned energy giant's written responses to 7.30 questions were also shared with CMO and state that at the beginning of 2019, Alinta initiated an audit by an independent third-party to examine its approach to managing privacy across the organisation.

"The audit report confirmed a number of positive aspects of our approach alongside a number of opportunities to improve. Some elements, including the need for a privacy management framework, privacy officer, encryption standards and data strategy were highlighted and have been progressed," Alinta said in the statement

Alinta revealed in the statement it had one reportable data breach incident in January 2020 concerning a single individual and has met its compliance obligations in addressing the issue. "The OAIC was satisfied with the process and remediation and the matter has been closed," the statement read.

The sale of Alinta Energy, which took place in 2017, was approved by the Foreign Investment Review Board (FIRB), although it found the company's compliance and privacy monitoring systems appeared to be inadequate.

In its statement, Alinta confirmed the FIRB has approved a remediation plan and it is on track to complete the activities within the agreed timeframe.

"Alinta Energy is treated as being in compliance with the conditions imposed by FIRB, while it continues to implement remedial activities endorsed by FIRB. Remedial activities will be completed by Dec 2020, the statement said.

Alinta Energy said it undertakes annual reviews using a third party-auditor to evaluate its security and identify any areas of risk, and any significant risks which are identified are tracked through to conclusion.

"In addition, when there are any significant changes to customer facing systems we undertake web penetration testing and all significant findings are addressed prior to release to production. Alinta Energy has in place an ongoing program of investment focussed on improving our cybersecurity capabilities."

The Office of the Australian Information Commissioner, as well as the energy regulator, the Essential Services Commission are inquiring into Alinta’s processes following the story revealing it may not have adequately protected the personal information of its 1.1 million gas and electricity customers.

Follow CMO on Twitter: @CMOAustralia, take part in the CMO conversation on LinkedIn: CMO ANZ, follow our regular updates via CMO Australia's Linkedin company page, or join us on Facebook: https://www.facebook.com/CMOAustralia.

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.
Show Comments
cmo-xs-promo

Latest Videos

More Videos

Anyone can become a victim of the sophisticated schemes set up by these scam websites. It's not about being smart; I don't consider mysel...

Mathieu Lecompte

ACCC takes Meta to court over scam cryptocurrency advertising

Read more

Nice blog!Blog is really informative , valuable.keep updating us with such amazing blogs.influencer agency in Melbourne

Rajat Kumar

Why flipping Status Quo Bias is the key to B2B marketing success

Read more

good this information are very helpful for millions of peoples customer loyalty Consultant is an important part of every business.

Tom Devid

Report: 4 ways to generate customer loyalty

Read more

Great post, thanks for sharing such a informative content.

CodeWare Limited

APAC software company brings on first VP of growth

Read more

This article highlights Gartner’s latest digital experience platforms report and how they are influencing content operations ecosystems. ...

vikram Roy

Gartner 2022 Digital Experience Platforms reveals leading vendor players

Read more

Blog Posts

​Why we need to look at the whole brand puzzle, not just play with the pieces

Creating meaningful brands should be a holistic and considered process. However, all too frequently it’s one that is disparate and reactive, where one objective is prioritized at the expense of all others. So, what are the key pieces to the ‘good’ brand puzzle?

Marketing overseas? 4 ways to make your message stick

Companies encounter a variety of challenges when it comes to marketing overseas. Marketing departments often don’t know much about the business and cultural context of the international audiences they are trying to reach. Sometimes they are also unsure about what kind of marketing they should be doing.

Cynthia Dearin

Author, business strategist, advisor

From unconscious to reflective: What level of data user are you?

Using data is a hot topic right now. Leaders are realising data can no longer just be the responsibility of dedicated analysts or staff with ‘data’ in their title or role description.

Dr Selena Fisk

Data expert, author

Sign in