ARTICLE
23 December 2022

Public reporting by ASIC – Breaches

SG
Sophie Grace Pty Ltd

Contributor

Sophie Grace is a leading Australian firm specialising in both compliance and legal services to participants within the financial services and credit industries. We have serviced Australian and international clients across the financial sector for over a decade. From obtaining the required licences to operate your business to the provision of ongoing compliance support, many businesses have benefited from Sophie Grace’s extensive knowledge in the financial and credit space. We take pride in our ability to offer tailored solutions to a broad range of businesses whilst keeping business practicalities and obligations to regulators at the forefront of our minds when delivering services and advice. Our consultancy services can equip you with assistance and clarity in your business endeavours.
Since the breach reporting regime commenced on 1 October 2021, ASIC has been monitoring its effective implementation.
Australia Finance and Banking

Since the new breach reporting regime commenced on 1 October 2021, ASIC has been monitoring its effective implementation. ASIC has developed a comprehensive plan to ensure the new regime meets the objectives for consumers, industry and ASIC. Among other things, Australian financial services licensees and Australian credit licensees (together "Licensees") should pay close attention to the annual public report that ASIC is required to publish as part of the new regime.

What Information Will ASIC Publish in The Report?

The public reports are intended to help Licensees identify where significant breaches are occurring and target their efforts to deliver best practice compliance outcomes in those areas. They will be available on ASIC's website within 4 months of the end of each financial year.

ASIC has a statutory obligation to publish information about:

  • Reports of breaches and likely breaches of core obligations lodged with ASIC and APRA for the relevant financial year;
  • information about the Licensees that have lodged these reports.

ASIC may include the following kinds of information:

  • the name of the Licensee;
  • volume of reported breaches;
  • breakdown of breach reports by corporate group; and
  • the number of breaches compared to the size, activity or volume of the Licensee's business.

1263950a.jpg

Report 740 - ASIC's First Public Report

ASIC has just released its first report into this new breach reporting regime, providing ASIC's insights from the reports lodged by Licensees from 1 October 2021 to 30 June 2022. Considering the reporting obligation is still new and likely inconsistency in reporting practices, this report does not name the Licensees nor provide detailed data. You can read further information about Report 740 at our blog here.

What Next?

ASIC will update their approach to the public reports over time. For the future reports, a list of all Licensees who have reported to ASIC and other more detailed information may be included, pending consultation with stakeholders.

Further Reading

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More