Telstra has completed an IT systems remediation program to comply with obligations set out by the Australian Competition and Consumer Commission (ACCC) to protect wholesale customer data from the telco’s retail business.
The telco was required to complete an overhaul of its IT systems so that information on wholesale customers would not be available to Telstra’s retail business during migration to the national broadband network (NBN).
This related to longstanding competition concerns regarding the telco’s involvement in wholesale and retail markets.
“The ACCC is now satisfied that Telstra’s SSU reporting measures can be relied on to identify any further information security issues, should they arise,” ACCC chairman, Rod Sims, said.
“The ACCC is pleased that Telstra’s long-running project to achieve compliance with its SSU has concluded.”
The process was part of a structural separation undertaking (SSU), which implements structural separation through the migration of Telstra’s fixed line voice and broadband services to the NBN.
The SSU commenced in 2012, after the consumer watchdog accepted Telstra’s migration plan in February the same year.
Telstra since had reported a series of information security issues relating to its SSU commitment to ensure that sensitive wholesale customer information is not disclosed to Telstra’s retail businesses.
According to the ACCC, these compliance issues largely arose due to Telstra’s legacy IT systems not being designed to deliver the outcomes required by the SSU.
Telstra subsequently undertook a lengthy and complex program of remediation to meet its obligations.
As part of this process, the ACCC engaged an independent expert consultant to conduct a thorough review of the remediation project.