General guidance
If you have concerns about the incident (or your information more generally), below are some
precautionary steps you can take to protect your information against potential misuse:
- be aware of email, telephone and text-based scams. Do not share your personal information with anyone unless you are confident about who you are sharing it with;
- when on a webpage asking for your login credentials, take note of the web address or URL (‘Uniform Resource Locator’). The URL is located in the address bar of your web browser and typically starts with https://;
- if you are suspicious of the URL, do not provide your login details. Contact the entity through the usual channels to ensure you are logging into the correct web page. Please note that we will never contact you to ask for your username or password;
- enable multi-factor authentication for your online accounts where possible, including your email, banking, and social media accounts;
- ensure you have up-to-date anti-virus software installed on any device you use to access your online accounts;
- check the strength of your passwords on the NSW Government password checker website (which is available nationally): https://www.nsw.gov.au/id-support-nsw/passwords; and
- follow the Australian Competition and Consumer Commission’s Scamwatch guidance for protecting yourself from scams here: https://www.scamwatch.gov.au/get-help/protect-yourself-from-scams/.
For more information, you can visit the OAIC’s tips for further guidance about protecting your identity:
Identification information
If you have concerns about any identification information you may have provided to Eagers and have not received a notification statement, please contact us via privacy@eagersautomotive.com.au and we will assist by verifying if that information was involved.
Generally speaking, unauthorised access to your identification information will not affect its validity and it can still be used for its intended purpose, and as a valid form of proof of identity. However, forms of identification may provide credentials that can be used to conduct fraudulent transactions when combined with other forms of identification. As a rule of thumb, the more ID documents available, the easier it is to construct a fake profile for fraudulent purposes.
If you decide to replace your identification, you will need to contact the issuing authority for further information. Prior to taking any steps to replace identification documents, we recommend that you contact us to confirm whether your identification information was identified as potentially involved, as well as whether it was current or expired (or simply a card number as opposed to a photocopy of the identification document).
We provide below further guidance and details of relevant issuing authoriti...
General guidance
If you have concerns about the incident (or your information more generally), below are some
precautionary steps you can take to protect your information against potential misuse:
- be aware of email, telephone and text-based scams. Do not share your personal information with anyone unless you are confident about who you are sharing it with;
- when on a webpage asking for your login credentials, take note of the web address or URL (‘Uniform Resource Locator’). The URL is located in the address bar of your web browser and typically starts with https://;
- if you are suspicious of the URL, do not provide your login details. Contact the entity through the usual channels to ensure you are logging into the correct web page. Please note that we will never contact you to ask for your username or password;
- enable multi-factor authentication for your online accounts where possible, including your email, banking, and social media accounts;
- ensure you have up-to-date anti-virus software installed on any device you use to access your online accounts;
- check the strength of your passwords on the NSW Government password checker website (which is available nationally): https://www.nsw.gov.au/id-support-nsw/passwords; and
- follow the Australian Competition and Consumer Commission’s Scamwatch guidance for protecting yourself from scams here: https://www.scamwatch.gov.au/get-help/protect-yourself-from-scams/.
For more information, you can visit the OAIC’s tips for further guidance about protecting your identity:
Identification information
If you have concerns about any identification information you may have provided to Eagers and have not received a notification statement, please contact us via privacy@eagersautomotive.com.au and we will assist by verifying if that information was involved.
Generally speaking, unauthorised access to your identification information will not affect its validity and it can still be used for its intended purpose, and as a valid form of proof of identity. However, forms of identification may provide credentials that can be used to conduct fraudulent transactions when combined with other forms of identification. As a rule of thumb, the more ID documents available, the easier it is to construct a fake profile for fraudulent purposes.
If you decide to replace your identification, you will need to contact the issuing authority for further information. Prior to taking any steps to replace identification documents, we recommend that you contact us to confirm whether your identification information was identified as potentially involved, as well as whether it was current or expired (or simply a card number as opposed to a photocopy of the identification document).
We provide below further guidance and details of relevant issuing authorities for common forms of identification. Where applicable, these authorities and associated websites will provide additional guidance and more information on how to protect your identification from misuse.
Driver licence
Relevant contact information from each of the Australian issuing authorities is set out below for your reference.
Before replacing your licence, you may wish to carefully consider the impact of any replacement as it may prevent you from using it as a form of ID, obtaining credit for legitimate purposes, or may affect your travel plans in the short term while IDs are being reissued. Please consider this advice and your own circumstances before deciding to replace your ID.
Passport
We recommend that you refer to the data-breach frequently asked questions (FAQs) on the Australian Passport Office website https://www.passports.gov.au/data-breaches.
Replacing a passport may prevent you from using it as a valid form of ID, obtaining credit for legitimate purposes or affect your travel plans in the short term while a new passport is being issued. Please consider this advice and your own circumstances before deciding to replace your passport.
If you decide to replace your passport, you can do so online via a AusPassport account or at participating Australia Post outlets or via an Australian embassy if overseas.
If you have concerns about any overseas passport, please contact the issuing authority or your local embassy.
Financial information
If you have concerns about any credit card or bank account information you may have provided to Eagers and have not received a notification statement, please contact us via privacy@eagersautomotive.com.au and we will assist by verifying if that information was involved.
We otherwise set out below some precautionary steps you can take to protect your information against potential misuse.
Credit card information
If you have concerns regarding your credit card information:
- contact your bank immediately to report the potential unauthorised access to your current credit card;
- review your recent transaction history and bank card statements for any suspicious activity; and
- follow any guidance from your bank which may include cancelling and replacing your card.
BSB and account number
A BSB and account number does not present a direct misuse risk as they do not allow unauthorised access to your bank account. However, the BSB does identify who the financial institution is, which may make impersonation scam attempts appear more legitimate.
Should you have any concerns, you can do the following:
- review your transaction history and bank account statements regularly for any suspicious activity;
- contact your bank to report this event and flag any suspicious activity identified;
- where available use two-step authentication – such as SMS codes to your mobile phone;
- check your credit report yearly (this alerts you to any attempts to open a credit account in your name). Information about obtaining a credit report is provided below; and
- never respond to, open or click on links in emails purporting to be from your bank (it is always safer to call).
Tax File Number (TFN)
If you have any concerns about any TFN information that you may have provided to Eagers and have not received a notification statement, please contact us via privacy@eagersautomotive.com.au and we will assist by verifying if that information was involved.
We have notified the Australian Taxation Office (ATO) about any TFN’s identified as potentially involved. The ATO has confirmed that it has set up monitoring and applied protective measures to prevent future misuse on these accounts. You can contact the ATO on 1800 467 033 (available 8am to 6pm AEDT, Monday to Friday). More information is available on the ATO website.[1]
Medicare information
If you have concerns about any Medicare information that you may have provided to Eagers and have not received a notification statement, please contact us via privacy@eagersautomotive.com.au and we will assist by verifying if that information was involved.
We have notified Services Australia about any Medicare information potentially involved. Services Australia has confirmed that it has applied additional security measures to relevant accounts. Please note that if there are other people named on your Medicare card, Services Australia will be increasing security and protection for these records as well.
If you are concerned about the security of your Medicare, Centrelink and myGov accounts, please visit https://www.servicesaustralia.gov.au/databreach for more information on how you can protect your personal information. You can also contact the Scams and Identity Theft Helpdesk on 1800 941 126 (available 8am to 5pm AEDT Monday to Friday).
If you decide to replace your Medicare card, you can do so using your Medicare online account through myGov. The Services Australia website contains helpful information about the steps you can take to replace your card. Prior to taking any steps to replace your Medicare card, we recommend that you contact our privacy email above to confirm whether any of Medicare information was identified as potentially involved in the incident, as well as whether it is current or now expired.
Credit report or ban
If you have concerns about identity theft (not just in relation to this incident), you can apply for an annual free credit report from one of the consumer credit reporting agencies below.
You can also contact these agencies to request a temporary ban on your credit report (if applicable). This means that credit reporting agencies will not be able to share your credit report with credit providers without your consent for 21 days (unless extended).
Who can I contact for more information?
If you would like further guidance on how to protect your identity, please visit the OAIC’s website at: https://www.oaic.gov.au/privacy/data-breaches/respond-to-a-data-breach-notification/.
Should you have any questions once you have considered the above advice, you can contact us at privacy@eagersautomotive.com.au.
[1] Please see: https://www.ato.gov.au/general/online-services/identity-security-and-scams/Help-for-identity-theft/Data-breach-guidance-for-individuals.