Governance Risk and Compliance
Sixty Australian organisations face a critical compliance test in January 2026 when the Office of the Australian Information Commissioner conducts its first privacy compliance sweep, targeting entities across six sectors that collect personal information in person. Brisbane-based EzeScan has launched its Automated PII & PCI Discovery and Redaction Suite to address the compliance gap.
Services Australia has been criticised for failing to effectively manage the privacy of client information, with an audit finding critical deficiencies in risk management, data breach notifications and transparency.
The Office of the Australian Information Commissioner (OAIC) has announced it will conduct its first privacy compliance sweep in January, targeting approximately 60 entities across six sectors that collect personal information in person.
Australia's National AI Plan has drawn sharp criticism from legal and academic experts who warn the government's decision to rely on existing legislation leaves organisations exposed to emerging risks in high-stakes automation and automated decision-making systems. The plan abandons previously proposed mandatory guardrails for high-risk AI systems, instead establishing a light-touch regulatory framework built on technology-neutral laws covering privacy, consumer protection and workplace safety.
Only 26% of Chief Data Officers are confident their organisation's data can support AI-enabled revenue streams, despite 81% prioritising investments to accelerate AI capabilities. The findings come from an IBM Institute for Business Value study of 1,700 CDOs across 27 countries and 19 industries.
Organisations face rising threat from advanced malware hiding in encrypted traffic, according to WatchGuard's latest Internet Security Report. Security experts warn that attackers are increasingly using Transport Layer Security to conceal malicious payloads from traditional defences.
Optus Mobile has paid $A826,320 in penalties after scammers exploited vulnerabilities in its identity verification systems. The Australian Communications and Media Authority (ACMA) found Optus operating as Coles Mobile breached telco anti-scam rules on 44 occasions between 23 September and 23 October 2024.
Sentra has launched an AI classification capability designed to identify sensitive information within unstructured data at enterprise scale. The vendor claims its specialised Small Language Models achieve 99% accuracy while processing petabytes of data.
Microsoft is including its Security Copilot AI platform in all Microsoft 365 E5 subscriptions at no additional cost. The rollout began on 18 November 2025 for existing Security Copilot customers with Microsoft 365 E5 licences.
Organisations now have a scalable solution to locate and secure sensitive personal data buried across sprawling digital repositories. EzeScan's Document Repository Analyser (DRA) – part of its PII & PCI Automated Discovery & Redaction suite – delivers both discovery and remediation capabilities integrated in a single platform.
Pages
