Australia & its New Telco Regulation Compliance Guide for 2026 | UpGuard

**Executive summary:** The report examines the Optus data breach (affecting ~9.8 million customers, including ~2.1 million government ID numbers) and describes amendments to Australia’s Telecommunications Regulations that enable APRA-regulated financial institutions to temporarily receive approved customer identifiers to monitor and mitigate post-breach financial fraud; it also provides guidance on CPS 234 compliance, required attestations, limited data-use, prompt data destruction, and vendor risk management best practices (including a recommended VRM solution).