Legal
Equifax Site Disclaimer
On this site you will find a description of some of our products and services. Please note that many of our products and services are highly specialised and are designed to meet very particular needs of specific customers and industry sectors. They may not be suitable for all industry sectors in all circumstances. Please consider this when looking at the particular product description and contact Equifax to discuss your particular needs. The information provided on this website is general in nature and does not constitute legal, financial or compliance advice. Equifax provides no undertakings or warranties concerning the accuracy, completeness or up-to-date nature of the information provided. We recommend you obtain your own independent advice.
Credit Reporting Annual Report
Equifax Credit Reporting Annual Report 2024-2025
Section 23(15) of the Privacy (Credit Reporting) Code 2025 (CR Code) requires Equifax to publish on its website an annual report (Annual Report) that includes the following information:
- Statistics relating to access requests, corrections, complaints, and serious credit infringements;
- Statistics relating to comprehensive credit reporting, namely the disclosure to Equifax of consumer credit liability information and repayment history information (RHI); and
- Any other information requested by the Office of the Australian Information Commissioner (OAIC) from time-to-time.
This Annual Report has been prepared in accordance with the requirements of section 23(15) of the CR Code for the period 1 July 2024 to 30 June 2025 (Reporting Period) in respect of the Equifax Australia Information Services and Solutions Pty Limited credit reporting body.
Credit Provider Audit Report
Equifax Credit Provider Audit Report 2024-2025
Section 23(14) of the Privacy (Credit Reporting) Code 2025 (CR Code) requires Equifax to publish on its website an Annual Credit Provider Audit Report (Annual CP Audit Report) that includes the following information:
-
How Equifax identifies and evaluates indicators of risk of non-compliance by credit providers with their obligations under sections 20N and 20Q of the Privacy Act 1988 (Act);
-
The types of risk indicators and information used to assess the risk posed by providers of significant non-compliance with those obligations; and
-
A description of:
- the role which the audit program plays in managing the risks mentioned above; and
- the basis on which Equifax determined the number, type and manner of audits that was conducted during the relevant financial year; and -
De-identified information about the number of audits conducted, and significant findings and measures taken in response by either Equifax or the relevant provider.
This Annual CP Audit Report has been prepared in accordance with the requirements of section 23(14) of the CR Code for the period 1 July 2024 to 30 June 2025 in respect of the Equifax Australia Information Services and Solutions Pty Limited credit reporting body.
Periodic Independent Review
Report on independent review of Equifax compliance with Part IIIA of the Privacy Act, April 2024
Paragraph 24.2 of the Privacy (Credit Reporting) Code 2014 (CR Code) requires a Credit Reporting Body, such as Equifax, to commission every 3 years (or more frequently if the Privacy Commissioner requests) an independent review of its operations and processes to assess compliance with its obligations under Part IIIA of the Privacy Act 1988, the Privacy Regulation 2013 and the CR Code. The review report and Equifax’s response to the review report must be made publicly available.
In 2024, Equifax commissioned an independent review by BDO, in accordance with its obligations under paragraph 24.2 of the CR Code. Equifax welcomes the release of BDO's report and the findings of the review. The current report can be accessed at the following link:
Download Independent Review Report, April 2024