Third-party providers a customer data ‘weak spot’, Australian privacy commissioner says

Carly Kind's comments come after major leak of customer data collected by IT provider for NSW and ACT clubs

• Get our morning and afternoon news emails, free app or daily news podcast

The Australian privacy commissioner has warned third party suppliers are a real weak spot" for protecting customer privacy after Australian user details were compromised in a leak of supplier data held by NSW and ACT clubs.

Last week more than 1 million people had their personal information including names, addresses, and driver's licence information exposed after data collected by IT provider Outabox was published online. Outabox's customers included dozens of clubs in New South Wales, including hospitality giant Merivale.

Sign up for Guardian Australia's free morning and afternoon email newsletters for your daily news roundup