Superannuation of South Australia

Superannuation of South Australia, operating under the alias Super SA, is a superannuation fund that provides retirement savings products to its members. As a superannuation entity, its primary service involves managing contributions and investment options designed to support members' financial security in retirement. The fund offers account access through online platforms and mobile applications, enabling members to view balances, make transactions, and manage their investment choices. These services are delivered to individuals who are enrolled in the fund, though the specific demographic or employment groups served are not detailed in the available sources.

The organisation's headquarters is located in Australia, placing it within the nation's superannuation market. In early April 2025, a series of cyber attacks targeted multiple Australian superannuation funds, including AustralianSuper, Rest, Hostplus, Insignia and Australian Retirement, although the publicly available sources do not indicate whether Super SA was directly affected by those incidents. The fund participates in an industry that is subject to regulatory oversight and collective awareness of cyber security threats. Its operational base in Australia means it is subject to the same legal and regulatory environment as other domestic superannuation providers.

In August 2023, Super SA experienced a cyber security breach involving a third‑party call centre that had retained data after its contract ended, resulting in unauthorized access to the personal information of over 14,000 members, including names, addresses and dates of birth. This incident underscores the fund's exposure to risks associated with third‑party service providers and the importance of data retention policies. As a regulated superannuation fund, Super SA remains subject to oversight by the Australian Prudential Regulation Authority (APRA) and must adhere to legislative standards governing the protection of members' information. The breach also prompted the fund to notify affected individuals and to undertake an investigation into the circumstances of the data exposure.

The sources consulted do not specify the ownership structure of Super SA, such as whether it is a government‑owned entity, a mutual fund, or a subsidiary of a larger organisation. Consequently, no details about parent companies, subsidiaries, or shareholding arrangements can be confirmed from the available material. The fund's operational governance is implied through its regulatory compliance and incident response activities, but explicit corporate hierarchy remains undescribed in the provided references. This lack of disclosed ownership information means that any description of its corporate structure would be speculative and therefore omitted.