We’re doing scheduled maintenance on ATO Community to bring you a bigger, better and brighter online community. You may see us go into read-only mode over the weekend while we do this. Don’t worry! You’ll still be able to search the site to find your answers.
If a team member has the MyGovID app on their personal phone and it is lost/stolen, we have been advised that this is a potential privacy breach and that we have to report this to all of our clients as a potential breach.
The reason it has been said that it is a breach is because the phone has MyGovID on it and the password is most likely stored on the phone or the personal accesses their phone using faceID.
We have an issue with this as it doesn’t look good to our clients reporting something like this and reduces their level of trust in us.
We also have the issue that legally we cannot control our team members private phones and tell them how to store information and what kind of security it should have on the phone. Therefore there is an increased risk of our tax agent portal data being accessed by organised thieves or even maliciously from disgruntled employees who haven’t left our employ yet.