Westhaven is a registered NDIS provider delivering essential support to clients living with a disability across eight regions of New South Wales.
Westhaven recently became aware that a participant who receives our services accessed a Westhaven staff member’s computer without permission and may have accessed or downloaded some information belonging to other Westhaven participants.
Westhaven is deeply committed to data security, employing advanced cyber defence technologies alongside ongoing cyber security awareness training for staff.
What happened?
Westhaven recently discovered that a participant gained access to one staff member’s account. Once aware, Westhaven immediately engaged experts to assist with an investigation and provide advice.
Westhaven also reported the matter to NSW Police who seized a number of the participant’s devices and are carrying out an investigation. Westhaven are continuing to fully cooperate with relevant regulatory agencies to ensure a comprehensive resolution.
As at the date of this website statement, Westhaven have no evidence to indicate that any Westhaven information has been published online as a result of this access.
What information was accessed?
The types of impacted information differs for impacted participants, but generally includes a combination of full name, date of birth, contact information (such as phone number, email address, address) and other sensitive information relating to the services Westhaven provides, including medical information.
What to do and what support is available?
If you have concerns, we have a number of resources available to support our community following
this incident, including:
- contacting our dedicated team who can point you in the right direction for assistance and support; and
- if you still have concerns following this, you may wish to:
- speak with your regular doctor, case manager or support person; or
- reach out to a counsellor at Beyond Blue by calling 1300 224 636 or online at https://www.beyondblue.org.au/get-support/talk-to-a-counsellor/chat.
We encourage you to practice vigilance in looking out for scams or attempts to gain access to your
information and recommend you take the below steps:
- remain alert to any suspicious emails and SMS or telephone communications that are disguised to look like they come from someone you know or trust;
- use complex passphrases and change passwords regularly on all accounts;
- enable multifactor authentication on accounts where available; and
- be alert to phishing scams.
Further information about online safety, cyber security and helpful tips is available at:
www.cyber.gov.au.
Moving forward
If you have questions about this incident, please contact our dedicated team at your-privacy@westhaven.org.au so we can provide further information.
We apologise that this has occurred and are committed to providing the support and information
you need.
