Notice Regarding Data Breach

Monday, 18 March 2019

Bank of Queensland (BOQ) advises it has identified a personal information data breach affecting a number of BOQ customers.

The breach relates to an electronic file containing a number of customer records, stored on an internal drive, that was accessible by BOQ staff as well as a number of the personnel of BOQ’s third party service providers between 16 August 2018 and 3 December 2018.

The data contained personal customer information including, name, address, employment details and financial/product information such as credit card numbers, expiry dates and credit/debit amounts. BOQ took action by removing access to the data on 3 December 2018.

BOQ takes privacy and the responsibility to safeguard customer information seriously. BOQ has conducted an internal investigation into the matter and has found no evidence this data file has been misused or accessed by unauthorised persons. BOQ has reinforced access restrictions and implemented monitoring of staff access to personal information.

If any customer believes their personal information may have been misused, please immediately contact BOQ on 1300 662 605.

BOQ recommends customers take the following steps to reduce the risk of personal information being misused: 

  • Regularly update your passwords. Best practice is to use a combination of lower case, upper case and special characters;
  • Monitor the Australian Competition and Consumer Commission (ACCC) Scamwatch website. It provides information to consumers and small businesses about how to recognise, avoid and report scams as well as guidance on how to protect yourself from identity theft 
  • Manage and protect your credit reputation by obtaining a copy of your credit history.  This can be done through Equifax and can help show you if someone has attempted to access credit in your name.
  • Periodically visit the Australian Cybercrime Online Reporting Network (ACORN). The ACORN provides information on how to recognise and avoid common forms of cybercrime (such as hacking, online scams, online fraud, identity theft and attacks on computer systems) as well as advice for those who have fallen victim. It also makes reporting cybercrime easier and more convenient for all Australians.

For any media enquiries, please call:
Tanny Mangos, General Manager, Corporate Public Affairs
P: 0434 073 890    E: