> Companies should only collect data that they really need.
Collecting and keeping this data is a regulatory requirement for Optus.
The problems with this breach have their roots in how identity is proven and verified in Australia. Far too much relies on possession of a physical document.
in America i usually prove identity for postpaid services with something like a utility bill which is at least not a government id document. i understand a telco wants some identity before extending credit for any postpaid plan but can y'all not do the same?
Collecting and keeping this data is a regulatory requirement for Optus.
The problems with this breach have their roots in how identity is proven and verified in Australia. Far too much relies on possession of a physical document.