Security

Last updated

We take the online security of your personal information very seriously. We have systems and controls in place to make sure your data and online transactions with us are secure and safe.

How we protect you

We follow the standards set out in the Australian Government Information Security Manual. These standards govern our security framework and help protect us against cyber threats.

This means:

  • there are a range of systems and controls in place to ensure your data and transactions with us are secure
  • access to your personal information is logged to help us identify any unauthorised behaviour.

We also use myID to protect your identity and help stop other people accessing your information. The myID app uses encryption and cryptographic technology, as well as the security features in your device.

If you think you have identified a vulnerability in one of our systems, services or products, report it to us as quickly as possible. For more information on our Vulnerability Discovery Program, visit report a system security vulnerability on the ATO website.

Staying safe online

There can be risks when transmitting information online.

We encourage you to stay alert, take precautions, and maintain your privacy by assessing your online practices regularly.

We recommend you:

  • install security software (including updates) and run regular virus scans
  • be cautious before downloading attachments or clicking links in emails, text messages or social media posts
  • always access our online services directly using the link www.abrs.gov.au and not an alternative link
  • keep your tax file number (TFN) and director ID secure
  • keep your myID secure and don’t share your unique digital identity with anyone else, even family members or co-workers
  • use multi-factor authentication where possible
  • disable remote access software until it’s needed.

Report suspicious activity

We will never ask you for your bank details, TFN, myID or other personal identification in an email or text message. We will never contact you through social media (for example, Facebook, Twitter, LinkedIn or WhatsApp).

It’s important to report any activity you believe is suspicious. If you’ve received a fraudulent communication, or if you’re not sure of the legitimacy of a communication that claims to be from ABRS, contact us.

 

42
Off