I find it more than a little disappointing that in spite of all the well-publicised data breaches, including now one related to charitable giving (I’m assuming I’ve probably been caught up in this one personally as well), the Office of the Australian Information Commissioner’s (OIAC) has apparently not prosecuted a single case or fined anyone yet. That’s just incredible. It kind of makes you wonder exactly what their mandate and job is, given the target rich environment in Australia right now. As the article says, until companies are held accountable for the way that they treat personal data, what will change? Right now, the main avenue of accountability seems to be class action law suits. It feels like a lot of the government angst over the big data breaches was just rhetoric.