Menu
Browse

Contact 121

Primary URL Location Industry
contact121[.]com[.]au
Country Australia
Communications Icon
Communications
Profile

Contact 121 operates as a third‑party call centre that has been contracted to provide customer‑service support for government‑related entities, most notably a superannuation provider. Its core function is to handle inbound and outbound communications on behalf of its clients, assisting members with inquiries, account updates, and general service requests. The organisation’s services are focused on the public‑sector market, particularly agencies that manage retirement and pension schemes. By acting as an outsourced contact point, Contact 121 enables its clients to scale their member‑interaction capacity without maintaining internal call‑centre infrastructure. The arrangement typically involves the transfer of member contact information and service histories to the contractor for the duration of the agreement. When the contract ends, the handling of retained data becomes a matter of contractual and regulatory compliance.

Contact 121’s distinguishing attribute lies in its role as a data‑processor for sensitive personal information held by government superannuation schemes, which necessitates adherence to strict privacy and data‑retention standards. The organisation came to public attention after a cyber security breach in August 2023, during which unauthorized actors accessed member data that had been retained after the contract with the superannuation provider concluded. The breach affected over 14,000 individuals, exposing names, addresses, dates of birth and, in some cases, additional personal details. Investigators noted that the intrusion was not discovered until several months after the initial access, leading to criticism of delayed disclosure and perceived shortcomings in data‑management practices. Authorities have confirmed that Contact 121 no longer provides services to the government client and are examining why the data was retained post‑contract. The incident has highlighted broader concerns about third‑party data‑retention policies and incident‑response protocols within the public‑sector outsourcing landscape.

Incidents
Linked incidents available to members
1 incident