How we use the data

The data from this program will be used to:

• identify individuals impacted by the court decision
• provide information (that the ATO does not currently hold) that will enable remediation of tax and superannuation positions.

A phase one remediation strategy (pilot) will allow impacted individuals to come forward and seek income tax remediation. This involves educational elements to ensure an understanding of potential adverse impacts of remediation. In most cases these amendments will result in a credit assessment, or no change to an individual's assessment. However, depending on each individual's circumstances there could be a debit outcome.

Phase two remediation will capture the remaining individuals who require income tax remediation but may be unaware of this process. The data from CSC will help us identify these individuals who have not come forward during phase one. We will contact them to help them understand their income tax remediation options.

A phase three may be required to ensure all impacted individuals are aware and have an opportunity to be involved. We will again contact any of these individuals who have not previously come forward and undertake the income tax remediation if they choose.

Data will also be used for remediation of superannuation for impacted individuals.

Our previous related programs

There are no previously related programs. A pilot will be conducted as phase one of remediation. Assessment processes identified from this data will support identification and remediation work. The outcomes from the phase one pilot will inform decisions around how phase two of remediation may be conducted.

Data providers

The ATO is the matching agency and sole user of the data obtained in the course of this data-matching program.

Data will be obtained from the following:

• Commonwealth Superannuation Corporation

The data will be obtained through co-operation with the Commonwealth Superannuation Corporation in accordance with section 254(2) of the Superannuation Industry (Supervision) Act (SISA) as well as under our formal information gathering powers contained in section 353-10 of Schedule 1 to the Taxation Administration Act 1953.

This is a coercive power that obligates the data providers to provide the information requested. We will use the information for tax and superannuation compliance purposes.

Privacy Act

Data will only be used within the limits prescribed by Australian Privacy Principle 6 (APP6) contained in Schedule 1 of the Privacy Act and in particular:

• APP6.2(b) – the use of the information is required or authorised by an Australian law
• APP6.2(e) – the ATO reasonably believes that the use of the information is reasonably necessary for our enforcement-related activities.

Keeping data safe

The data-matching program will be conducted on our secure systems that comply with the requirements of:

• the Australian Government Information Security ManualExternal Link produced by the Australian Signals Directorate, which governs the security of government information and communication technology (ICT) systems
• the Australian Government Protective Security Policy FrameworkExternal Link, which provides guidance on security governance, personnel security, physical security and information security.

All ATO computer systems are strictly controlled according to Australian Government security standards for government ICT systems with features including:

• system access controls and security groupings
• login identification codes and password protection
• full audit trails of data files and system accesses.

We will use our secure internet-based data transfer facility to obtain the data from source entities.

Data elements collected

Data will be collected for invalidity benefit payments.

The collected data may contain all or a selection of the fields listed below.

Client identification details - individuals

• Given and surname
• Date of birth
• Date of death
• Tax file number
• Address
• Email address
• Phone number
• Bank BSB and account number (used for identity matching purposes only)
• Member account number
• Unique superannuation identifier
• Product number
• Scheme name
• Scheme ABN

Transaction details

• Discharge date
• Pension payment dates
• Pension reclassifications
• Pension commencement date
• Pension cancellations
• Pension reason
• Preservation age
• Taxable (taxed and untaxed elements) amounts paid
• Disability superannuation benefit indicator
• Days to retirement
• Service days
• Date of determination of reclassification for entitlement to invalidity
• Date of determination of disability
• Accumulation phase value

Number of records

The number of individuals affected by this data collection is expected to be approximately 16,000 individuals each financial year.

Data quality

We anticipate data quality will be of a high standard. Super funds have sophisticated computer systems, as well as prudential and due diligence obligations to maintain the quality of their records. Super funds also report regularly to the ATO regarding their members. This involves member verification via the Member Account Attribute Service and SuperTICK. A sample of the data confirms the high data quality for 2010–11 and later financial years.

The data is sourced from providers' systems and may not be available in a format that can be readily processed by our systems. We apply extra levels of scrutiny and analytics to verify the quality of the data.

This includes but is not limited to:

• meeting with data providers to understand their data holdings, including their data use, data currency, formats, compatibility and natural systems
• sampling data to ensure it is fit for purpose before fully engaging providers on task
• verification practices at receipt of data to check against confirming documentation; we then use algorithms and other analytical methods to refine the data.

Data is transformed into a standardised format and validated to ensure it contains the required data elements prior to loading to our computer systems. We undertake program evaluations to measure effectiveness before determining whether to continue to collect future years of the data or to discontinue the program.

To assure data is fit for consumption and maintains integrity throughout the data-matching program, it is assessed against the 11 elements of the ATO data-quality framework:

• accuracy – the data correctly represents the actual value
• completeness – all expected data in a data set is present
• consistency – data values are consistent with values within the data set
• currency – how recent the time period is that the data set covers
• precision – the level of detail of a data element
• privacy – access control and usage monitoring
• reasonableness – reasonable data is within the bounds of common sense or specific operational context
• referential integrity – when all intended references within a data set is valid
• timeliness – how quickly the data is available for use from the time of collection
• uniqueness – if duplicated files or records are in the data set
• validity – data values are presented in the correct format and fall within predefined values.

Data retention

The collection of data under this program includes all financial years from 2010–11 to 2021–22. The data collection is once-off (regular annual/quarterly reporting is not required).

We destroy data that is no longer required, in accordance with the Archives Act 1983, the records authorities issued by the National Archives of Australia, both general and ATO-specific.

We will retain each financial year’s data for five years from receipt of the final instalment of verified data files from the data providers. The data is required for this period for the protection of public revenue as:

• retaining data for five years enables us to allow individuals a reasonable time to consider their personal circumstances, understand the impacts and if desired seek financial advice prior to remediation, and to then remediate complex matters.
• the data enhances our ability to identify taxpayers who may not be complying with their tax and superannuation obligations, which is integral to the protecting the integrity of the tax and superannuation systems
• retaining data for five years supports our general compliance approach of reviewing an assessment within the standard period of review, which also aligns with the requirements for taxpayers to keep their records

While increased data-retention periods may increase the risk to privacy, we have a range of safeguards to appropriately manage and minimise this. ATO systems and controls are designed to ensure the privacy and security of the data we manage.

See also:

• Our lawful role
• How we undertake data-matching
• Why we undertake data-matching