Case study: Supporting an Automotive Giant Through a Cyber Breach

The Background

A global automotive manufacturer experienced a significant cyber incident which impacted its operations worldwide, including in Australia. Having taken steps to contain the incident, the company and its local subsidiaries (including in Australia) required an urgent assessment of its notification obligations under Australian privacy law, with the potential reputational and financial consequences being significant.

How We Assisted

We advised the Australian subsidiary and the company's global team in relation to its response to the incident as it pertained to Australia. Within 24 hours of instruction, we delivered initial advice on the client's data breach notification obligations in Australia, followed by comprehensive guidance as further technical investigations progressed. This included providing advice on engagement with the regulator.

The potential reputational and financial consequences associated with a notifiable data breach are severe. As such, it was critical for our client to obtain timely, accurate and practical advice.

_Disclaimer

_{Clayton Utz communications are intended to provide commentary and general information. They should not be relied upon as legal advice. Formal legal advice should be sought in particular transactions or on matters of interest arising from this communication. Persons listed may not be admitted in all States and Territories.}