Securiti AI Recognized as a Customers’ Choice For DSPM By Gartner Peer Insights


Australia’s Identity Verification Services Act of 2023

Last Updated on July 5, 2024

Privacy Center
Fully Functional In Minutes

Elegant Consumer Frontend, Fully Automated Backend, Privacy Regulation Intelligent Everywhere.


The Federal Parliament of Australia passed the Identity Verification Services Act (IVS Act) in December 2023. The Act introduces a new statutory framework for the Commonwealth’s identity verification services.

Using these services, both public and private entities can verify individuals' personal data and information against federal and state government records, including electoral rolls, driving licenses, passports, and other personal identification information.

Identity verification verification services were already in use in Australia prior to the Act. The Document Verification Service (DVS) was being used by AUSTRAC, Australia’s Anti-Money Laundering/Counter-Terrorism Financing regulator, to verify individual information for financial service providers per the requirements of the Anti-Money Laundering and Counter-Terrorism Financing Act.

Access to the DVS was governed via contractual terms with the Attorney General’s office as well as service agreements with gateway service providers. The IVS Act introduces a more efficient legislative overlay whose primary purpose is to enhance the overall security and privacy of the overall identity verification process without hindering Australians’ ability to engage and use digital services.

The Solution

Securiti empowers organizations to ensure compliance with each provision of the Identity Verification Services Act through its plethora of products, which include, but are not limited to, AI-driven data discovery, DSR automation, universal consent management, autonomous documented accountability, data breach management, and vendor risk assessment.

The solutions mentioned above are backed up by state-of-the-art artificial intelligence and machine-learning-based algorithms, making Securiti a market leader in providing data compliance and governance solutions.

Panama’s PDPL Solutiion

Request a demo today to learn how Securiti can help you and your organization comply with Australia’s Identity Verification Services Act.

Monitor & Track Consent

Sections: 9(2)(b), 35(1)

Track consent revocation of data subjects to prevent the transfer or processing of data without their consent. Seamlessly demonstrate consent compliance to regulators and data subjects and fulfill any consent revocation requests.

Monitor & Track Consent

Automate Privacy Assessments

Section: 9(2)(a)

Automate the execution of a data protection impact assessment (DPIA) to ensure it is conducted at regular intervals, giving you ample time, data, and insights to take appropriate actions if necessary.

Implement Privacy Policies & Notices

Sections: 9(2)(c), 9(3)

Automate how you publish your privacy notices with the help of pre-built templates to make the process faster. Enable centralized management by tracking and monitoring privacy notices to maintain compliance.

Data Security Posture Management
Universal Consent Management

Implement Data Security Posture Management

Section(s): 25

Gain comprehensive visibility into potential misconfigurations in data assets across public clouds, data clouds, SaaS, and on-premises environments, in addition to contextual data insights, including people ownership, regulatory obligations, and security and privacy metadata.

Automate Vendor Assessments

Sections: 31, 32, 33, 35

Track privacy and security readiness for all your service providers and processors from a single interface. Collaborate instantly with vendors, automate data requests and deletions, and manage all vendor contracts and compliance documents.

Vendor Assessments
Data Breach Notifications

Automate Data Breach Notifications

Sections: 9(2)(e), 9(2)(f), 9(2)(g), 9(2)(h)

Automate data breach response notifications to all concerned stakeholders as soon as legally obliged by leveraging a knowledge database on security incident diagnosis and response.

Facts Related to the Australian Identity Verification Services Act

Here are some important facts related to the Identity Verification Services Act:


The IVS Act provides that a request for an identity verification service can be made only by a party to a participation agreement, and only identification information made available by a party to a participation agreement can be used in an identity verification service;


The IVS Act requires all organizations to conduct extensive privacy impact assessments to ensure appropriate protective measures are in place to protect personal data;


Individuals are required to give their express consent for their identification information to be collected, used, and disclosed per the provisions of this Act;


Each party (except the Attorney General Department) must report relevant security breaches to the Department. The Department will then inform the Information Commissioner of serious breaches and notify impacted parties. Notified parties must take reasonable steps to inform affected individuals; 


Any identification information collected for identity verification must be strictly used for this purpose, prohibiting the use of such information in profiling or other marketing-related activities;


The Attorney General’s Office is responsible for administering the Act, along with the authority to introduce rules related to its implementation;


Any rules created by the Attorney General’s Office must be published with invitations for public consultation to ensure appropriate community involvement.

IDC MarketScape

Securiti named a Leader in the IDC MarketScape for Data Privacy Compliance Software

Read the Report