Keeping your identity safe

On this page

Online

Your personal information

  • Only share your personal information with organisations you trust, particularly in relation to your name, date of birth and other contact information. 
  • Do not open unknown, suspicious or unsolicited text messages or emails. These messages if opened may compromise your device. Be vigilant if links include spelling or grammar errors, if they include unknown logos, request “urgent attention” or if they request personal information. 

Financial information

  • Do not share funds, credit card information, online account details or copies of personal documents to unknown entities. 
  • Never give a third-party access to your device, no matter where they say they are calling from. 

When reading and opening communications 

  • Always hover over, and check, links in all communications. The link should be the same as, or reflective of, the originator of the communication. If in doubt, do not click.
  • Do not open unknown, suspicious or unsolicited text messages or emails. These messages if opened may compromise your device. Be vigilant if links include spelling or grammar errors, if they include unknown logos, request “urgent attention” or if they request personal information.
  • Most entities including banks, government agencies and major corporations will not request personal information via text or email. Where credentials or personal information are requested, ensure to contact the business directly to ensure the request is valid.
  • Make sure to read privacy agreements, before signing up to online services, to ensure that your details are not being shared with other third parties. 

Your devices

  • Never give a third-party access to your device, no matter where they say they are calling from. 
  • Set devices to auto-lock and ensure they are passcode protected.
  • Regularly update devices and software (apps), setting them to auto-update where available. 
  • Use trusted and reputable antivirus software on all devices. For example, McAfee, Norton, TrendMicro, etc. to name a few.
  • Activate the ‘find your device’ services that can help lock your phone or erase information remotely, should your device be stolen or lost. 
  • Avoid connecting to public (including free) Wi-Fi networks as others can use them to intercept your device.
  • Turn off auto fill which fills out forms automatically with your personal and financial information. This prevents compromise of your details should anybody else gain access to your device.

Passwords and two-step verification, also known as multi-factor authentication 

  • Do not use the same password for multiple accounts. 
  • Create long complex passwords (at least 20 characters, including upper- and lower-case letters, numbers, and symbols). Consider using a reputable and secure password manager to store them. 
  • Use multi-factor authentication for all system and accounts where possible, i.e. have an additional code sent by SMS before you can log into your account.

Learn more about how to create a strong password

Credit reporting and protection

  • Credit reports are free and are often a good early indicator if your identity is being used for financial fraud. 
  • Check your credit report regularly via reputable and trusted credit report agencies. 
  • Check your credit card and/or bank statements regularly for transactions not made by genuine card holders.
  • Check breach notification services (such as https://haveibeenpwned.com/) to see whether your email address or phone number may have been compromised in recent data breaches.

Learn more about credit reports on the moneysmart website

Offline 

  • Secure personal documents such as birth certificates and educational qualifications at home and when travelling. Take the minimum documentation when you travel.
  • When travelling, ensure your mail is collected or redirected.
  • Lock your mailbox. 
  • Securely destroy any documents containing personal information that you no longer require. This includes any copies of documents you have made.
  • Be cautious if you are contacted and asked for personal information. 
  • Ask where your information will be stored/shared when it is collected by organisations including banks, utility companies and services – you have a right to know how it will be used. 
  • If contacted by callers representing banks, the Australian Taxation Office (ATO), utility companies or charitable organisations who want personal information, request a contact number to call them back to ensure they are legitimate.

 

Download as PDF Print this page
Top of page