Email address and mobile phone number should not be mandatory

Emails and mobile phones are convenient communication options we all became accustomed to, but until there are email and mobile phone services that are subject to strict privacy laws, are free, reliable, accessible, secure, and don't harvest personal data from their users, every request to supply an email address or a mobile phone number when filling out any form or application or creating an online account is yet another step towards erosion of safety and privacy of Australians. Nobody is legally required to have an email or a mobile phone, so there always should be an option to say I don't have (or don't want to give) either of them.

An option not to give a phone number or an email address adds an extra security layer: if someone receives a message or a phone call from scammers claiming to be from the Department of Human Services, Taxation Office, Medicare, Centrelink, Child Support, myGov, Bureau of Statistics or any other government agency (these types of scam are very common), and the person knows they have never given this phone number or email address to this agency, they will immediately know it is a scam and will not become a victim of it. Unfortunately, as things stand, both government agencies and private enterprises often demand email and/or mobile number as mandatory, even when it is unnecessary, and then shirk any responsibility by forcing the person to agree to terms and conditions that deny the person privacy and safety, or shun the consequences by simply posting scam warning on their websites, like Department of Human Services scam page, or ATO scam alerts, or ABS “beware of scammers” page.

If phone numbers or email addresses are absolutely essential for communications between the public and the government or businesses, the following two conditions must be met first:

1. There must be a free, reliable, secure, 100% Australian owned and operated email service

You have to be a rare and lucky exception if at any point in recent years you haven't been nudged by some organisation to go online and switch to electronic bills/statements/notices/etc. myGov, myTax, myPost, AEC, Medicare, Centrelink, banks, local councils, insurers, electricity suppliers, phone companies, utility services — all want you to create online accounts or switch to eStatements, eBills, eEnrolnment and eAppointments. And while reducing paper mail may look like an eco-friendly idea, and given the increasingly slow and unreliable Australian postal service, there is a tricky step in this process: to create an account or do anything online with any of these entities you must have an email address.

The problem is that there is no free, secure, reliable, 100% Australia-hosted and Australian-operated email service that respects user privacy and is not tied to any specific Internet provider. This means that Australians are essentially forced by Australian companies and the Australian government to use foreign services like Gmail, Outlook, Hotmail or Yahoo, and thus hand their personal data and private communications over to foreign entities that have no responsibilities under Australian law and can use the collected data for their commercial benefit in any way their laws permit. Considering that documents like utility bills or bank statements can be used to confirm, or to forge, identity of any Australian, the risks are very significant.

Besides safety implications, there are serious privacy concerns. Foreign services don't care about Australian privacy laws and instead comply with mass surveillance directives of their own governments. In addition to foreign intelligence agencies, privacy can be violated by the email service providers themselves. For example, Gmail reads every message the user sends or receives, and extracts information about the person's contacts, family, work, bills, travels, hotel bookings, ticket purchases, car rentals, online shopping transactions, and any other movements. Email providers analyse every email, allegedly to create a “better user experience”, such as to remind about appointments and reservations, to suggest autoreplies, to predict the importance of each email, but does anyone still believe they would do anything for the user convenience if there was no profit for the company in it? These corporations greatly benefit from the fact that every institution now pushes for online communications: emails now contain highly sensitive information such as doctor appointments, hospital forms, bank statements, passport and visa applications, utility bills, and so on. From the contents of ordinary emails, the provider will quickly harvest your name, date of birth, address, names of your relatives, friends and colleagues, your place of work, your salary, your health status, your bank accounts, where you go, where you stay, where you shop, what you buy, what you look like, when your children were born, what they look like, what school they go to... All that data is read, analysed, compiled and stored somewhere overseas. It is used for advertising and marketing trickery. It can also be shared, sold or hacked at any time.

2. There should be no ID requirements for prepaid mobile numbers

Another growing issue is with various government departments and private enterprises demanding that the person gives them a mobile number. Most people regularly have to fill various forms where mobile number is marked as mandatory. For example, ATO keeps pestering taxpayers to use their online myTax facility, but demands a mobile phone number in it. Recently, they offered an option to use the myGov Code Generator app instead of a mobile phone number, but downloading that app from AppStore or Google Play means creating an account with Apple or Google and inevitably giving personal and contact information to those corporations. It also means disclosing and tying your device ID to those companies and to myGov.

In addition to extra costs imposed on the person by this demand, as mobile phones and services are not free, this has significant privacy ramifications. Unlike in New Zealand or the UK, it is impossible to legally obtain an Australian mobile phone number without a photo ID. This means that those government departments and businesses are essentially forcing each person to hand over their identity and money to a telco, which is often a foreign corporation, and to allow them to track the person's private life, communications, contacts and daily movements.

This also means the mobile number cannot be changed easily and without losing one's privacy even further in the event of some spammers, scammers or hackers getting hold of the person's contact details, often by stealing them from the very businesses and government institutions that demanded those details in the first place.

22 September 2022 update: the “No ID, No SIM” policy of the Australian government created identity data honeypots at every telecommunications provider, and, as a result, the latest data breach at Optus led to the personal information of millions of Australians stolen by hackers. This disaster could have been easily averted if Australian customers weren't forced to give their personal details every time they got a new SIM card.


Write a Comment

It has always amused me how whenever it comes to doing something unpopular, out govt is quick to point out a similar practice already in place in the UK. 'Look, the UK are doing that, and so we should too!' But when it comes to stopping requesting ID checks for prepaid numbers, we suddenly cannot have it the UK way.

Ros, 29 April 2017

Being forced by our own authorities to use foreign corporations like Google for our email correspondence is only one part of the problem. The other problem I've been battling with lately is Google trying to wrench incrementally more personal information out of me. When I created my Gmail account, they asked my name only. Later, they demanded to know my phone number, or risk being locked out of my own account. Now they want my home address, apparently "to serve me better". And of course closing that account with Google and opening a new one somewhere else is now a major headache, as I had to give this email address to a huge number of departments and services.

Anonymous, 3 July 2019

Good point!! It seriously pisses me off that the government requires mobile phone number for covid vaccination. In Queensland at least, you can't register on their stupid site without a mobile number. The government didn't give me the phone or paid for it to have the right to demand it. Last time I gave my number to the authorities I was inundated with unwanted messages, so I'm not going to give it this time. If they keep insisting, then they can stick their vaccine up their ***. They are worse than scammers, because if scammers are caught misusing our data, they will be punished. The government never will be.

Anonymous, Queensland, Australia, 24 June 2021

The covid surveillance and data grab is another example. You must give your phone number to covid contact tracing, you must give your phone number when entering venues and shops, you must give your phone number for covid testing, you must give your phone number for covid vaccination, you must, you must... When Australian government lets me get a phone number without being forced to give my personal data and photo ID to a telco provider, then and only then they can ask for it.

Greg, 1 July 2021

Same situation for me: I would like to get a covid-19 vaccine, and I am eligible, but it looks like I won't be able to because I can't agree with the scope of personal data the government wants to collect and with how that data will be stored and used. Email and phone number were made mandatory for booking a vaccination through the state program. Ridiculous! Basically our government is saying that unless I give my personal information and money to a phone company, I can't get a vaccine. A photo ID is another ridiculous condition. I am not going to agree to have my ID details stored with my medical records. Then they demand to know the language spoken at home and the country of birth. What is that for? For discrimination? For targeting certain population groups? For "statistics"?? No thanks, we already have the ABS with its surveys and census for the outrageous assault on privacy that is passed for statistics in this country. You would think that vaccination during a pandemic should be all about doing is quickly, safely and keeping people healthy, not about hoovering private information to the maximum. But no, not in Australia!

Anonymous, 10 July 2021

Be very careful if you are booking covid-19 vaccine online. Many clinics and medical centres dupe you into making the booking via HotDoc, HealthEngine, 1stGroup sites, etc. So you will be creating an account with a commercial entity and giving your personal and medical information to them, and then your data can be used for advertisement, marketing and financial gain of those businesses and their "partners". Just read Health Engine Privacy Policy. It is outrageous that an official government web site even links to such companies, let alone tells people to actually use those systems!

Greg, 13 July 2021

I saw an article on one of the news sites spinning a yarn that the info about the country of birth and language spoken at home is allegedly collected for covid tests and vaccinations because community leaders pushed for it. Now see, I am an overseas born Australian speaking another language with my family, and I have no idea who these community leaders are, nor does anybody else I know! I don't accept their authority, and I certainly don't want to be told to supply additional personal data just because some *** leaders want it.

Anonymous, 18 July 2021

Hear hear! It is sickening and alarming how mobile number became mandatory for almost everything in Australia. We can't even get an appointment for covid vaccination without it. Fine. In this case, we won't be booking until a phone isn't required, or until Australian government changes its spying tactics and lets people purchase sim cards without photo IDs.

Chris, 11 August 2021

It's not difficult to see why Australian government is gradually tying everything to a mobile phone number thus making it a de facto Australia card. For their purposes, it is even better than Australia card. An identity card is passive, it doesn't tell more than is written on it, while mobile phones are ideal for 24/7 spying on everyone everywhere.
First, the government made it mandatory to show a photo ID when you buy a sim or get any mobile service. Then it passed data retention and surveillance laws that allow it to watch everything you say and receive in all your communications, know all your contacts and trace your location. Now it is simply making sure that everyone is forced to have a mobile phone by making it impossible to access the most essential things without a mobile phone.
The pandemic just made this process much faster and mush easier for the government. Just wait and watch how we lose the last traces of privacy in the upcoming months with something like vaccine passports, and will never get it back even if the pandemic ends.

Anonymous, 12 August 2021

It still seems impossible to get covid vaccine without online booking, which requires that we must to provide unique email address and mobile number that have not been used to register before. My husband and I share one email account that is a paid service hosted in Australia. This means only one of us can get the vaccine. Contacting the government health department was a waste of time. Their response was that we should create another email account on Gmail, Outlook or Yahoo. Which is them basically saying, go and give your personal data and private correspondence to an overseas corporation that will spy on you. This is totally unacceptable! Email address or phone number should not be mandatory for any taxpayer-funded vaccine or service.

Anonymous, 6 September 2021

It looks like it's time to ditch mobiles in Australia. Just think, who is actually using your phone the most? You pay for it, sure, but it is mostly used by the government to track you and by corporations to advertise to you and make huge profit from your data and your use of "your" phone.

Anonymous, 15 November 2021

Mandatory mobile phone numbers would be tolerable if we could get them anonymously here in Australia, like people can in the UK. Otherwise our phones are like police GPS monitors that we carry with us almost voluntarily and make the government privy to our every move and contact.

P., 14 July 2022

It is actually even worse than it looks on the surface. When you buy a new SIM and go online to activate it, you will have to enter your photo ID number. Do you have any idea what happens to your data after that? It gets sent to identity verification companies like GBG, which is overseas. And it will pass many different hands along the way, will get shared with many other entities and gets stored in multiple places from which you will never be able to delete it.
And that's just one number entered by you for one purpose - to let the government attach your phone number to your identity and facilitate life-long spying on you. Because you know... terrorism\child sexual abuse\money laundering\yadda yadda yadda... all the usual bullshit pretexts. Now try to estimate what happens over your lifetime of using your mobile number. How much spying, surveillance and data accumulation that leads to. Nothing you do or say is private.
That's why the government created this system. Mobile phone number is required almost everywhere for almost everything. And identification documents are required for getting that number. So we literally micro-chipping ourselves and then carry that device\number around while the government surveillance machine is having a field day. You go anywhere with your mobile phone in your pocket - they know where and when you've been. You call anyone - they know that. You send a message to anyone - they read it. You open any website - they know that too...
The only way to privacy is to be able to purchase SIMs anonymously, which the Australian government will never agree to, for obvious reasons.

Anonymous, 22 July 2022

A few days ago AUvodafone sent a message promising "more protection for user account and personal information". To that end Vodafone wanted its users to add more personal information into MyVodafone account. The irony of it!

Basically all prepaid mobile users who haven't previously given Vodafone their email address precisely for the reason of maintaining the privacy and security of their information are now forced to do so. Why? Because Vodafone allegedly wants to bring in multi-factor login. However what happened in reality was that Vodafone removed the password protection from user accounts. Instead they now send a login link in an sms or email. So anyone who takes or steals your phone can now login into your Vodafone account as well. No password is required anymore. That's "more protection" by Vodafone standards. It's still one-factor login. Only now it is way less secure. Besides the sending of the link to the email doesn't work. Vodafone site simply shows an error. Typical Vodafail.

So it looks like Vodafone simply wanted a reason to grab everyone's email address for other purposes because it doesn't work for the purpose it was grabbed for. This also means that users cannot login into their accounts on a computer anymore. Instead they are forced to manage accounts on a phone screen. This is a disaster for the elderly and visually impaired people. So as usual under the pretext of "more security" we've got less security and more our personal information snatched from us.

And ufortunately there isn't a better alternative in Australia. All Australian telco provide mediocre quality service that is grossly overpriced. The main function of Australian communication providers is aiding the government in mass surveillance. That's why they always require identification documents when you purchase a sim. So that they can tack your movements and your contacts and your calls and your messages and your data usage. Unlike in the UK or NZ it is impossible to purchase even a prepaid sim anonymously in Australia because the Australian government doesn't want Australian people to be able to communicate privately and anonymously. And telco companies are happy to oblige.

Susan, 26 July 2022

I agree with Susan. It is a growing problem with telco and other companies. Their websites are getting ever more buggy. Instead of making sure that their websites work properly, they all want us to download their apps. Which of course means that you have to have a smartphone and you have to have an account at Google Play or Apple App Store. Which means giving your name and your contact details to those overseas corporations. Besides, apps can have additional tracking and spying features that normal websites can't have. That was the reason why I left Optus for Vodafone. The prepaid plan that I wanted with Optus could only be managed through Optus app. And I absolutely don't want to install any such app. Now sadly it looks like Vodafone is going down the same path, making their website buggy and instead peddling their app. Oh well, I have ditched one mobile provider before, I will sure do it again. Until I find a decent one, if such exists in this country.

Dino, 29 July 2022

Amazing that nobody's saying anything about this. But because we're constantly told to download this app or other by our banks, Medicare, Mygov, phone providers and so on, Google and Apple have obtained personal details of nearly the entire adult population!
Because we can't download apps without a Google or Apple account. And Google now wouldn't allow to create an account without a mobile phone number. And we can't get an Australian mobile number without identification....
Do you see where all this is going??

Anonymous, 30 July 2022

When was this article written? Years ago!? Now 9 million Optus customers, including myself, are in a shitcreek because our government didn't read this or blatantly decided to ignore this.
Here is another reason why mobile phone numbers shouldn't be mandatory: telcos will gobble a mound of your personal details because our spying government requires it, and then hackers will steal it all and scam you. Just happened to Optus. Will happen again to another telco.
Nobody can keep data 100% safe and secure. Therefore Australian government should quit its addiction with mass surveillance and allow Australians get SIM cards without giving their ID or any other personal details. People in NZ and UK can do that. But in Australia for some reason we keep getting the crime/terrorism excuse.

Angry Customer of Hacked Optus, 23 September 2022

I'm bloody sick of this!!!! Everywhere they require that you have a phone number. Every government agency and most companies demand it. So you have no choice other than to get a number. And in Australia this means you have no choice other than giving a telco a shitload of your personal data. Then they store it forever and let hackers take it.

After this catastrophe with Optus the government should change their stupid laws. Either don't require phone numbers like they are compulsory, or let people buy prepaid phones anonymously.

Anonymous, 25 September 2022

The fun continues. Now Medibank joins Optus at the cyber attack party. Another 4 million customers turned into potential hacker victims. First, our government blackmailed half of Australia's population into paying for private health insurance. Then the insurers grabbed customer money and personal data. And then they spent the money on idiotic ads instead of proper security.
I left Medibank 3 years ago and yet I received an attack warning from them. Why are they holding onto my data for so long? Especially if they are unable to keep it secure.
If the Australian government has half a brain, they should rewrite all privacy laws ASAP and mandate that all corporate dimwits delete all ex-customer data immediately after the customer had left. And by DELETE I mean wipe it out properly, without any chance or restoring it later. Not just mark it as 'hidden' or 'deleted' in their shonky apps.

Angry Customer of Hacked Optus and Super Angry Ex-Customer of Hacked Medibank, 14 October 2022

The problem with giving anyone [except trusted friends and relatives] your email or phone number is that it will inevitably be added to dozens of different marketing databases and reminder services, and you will never be able to remove your data from all of them to stop that spam. And of course any and every of them can at any moment be hacked and all your data will be stolen.

Anonymous, 2 December 2022

Write a Comment