No, sharing passwords in Australia violates the Privacy Act 1988 (Cth) and Crimes Act 1914 (Cth) when unauthorized access occurs. The Notifiable Data Breaches Scheme (2018) mandates reporting breaches, while the Enhancing Online Safety Act 2015 (Cth) penalizes reckless credential sharing. Courts increasingly treat password misuse as a breach of trust under Australian Consumer Law (2010), with fines up to $2.2M for corporations. The 2026 Privacy Act reforms will expand penalties, including civil penalties for individuals.
Key Regulations for Sharing Passwords in Australia
- Privacy Act 1988 (Cth): Unauthorized password sharing breaches Australian Privacy Principles (APPs), particularly APP 6 (use/ disclosure of personal information) and APP 11 (security of personal information). The OAIC enforces compliance, with mandatory breach notifications if harm is likely.
- Crimes Act 1914 (Cth): Section 76E criminalizes unauthorized access to data, punishable by up to 2 years imprisonment or fines. Password sharing enabling such access may constitute aiding and abetting under Section 11.2 of the Criminal Code Act 1995 (Cth).
- Enhancing Online Safety Act 2015 (Cth): The eSafety Commissioner may issue infringement notices (up to $110,000) for reckless password sharing that facilitates cyberbullying or harassment, particularly under Basic Online Safety Expectations (2022).