Cyber security breach notification  

3 June 2022 

At Marathon Health/headspace Dubbo, keeping your personal information safe and secure is our priority.  

We have been made aware of a data security breach on a single user account in our headspace Dubbo centre, which may have resulted in the disclosure of sensitive or confidential information. We take the privacy and the protection of client and staff information very seriously and we sincerely regret that this has happened. 

The breach occurred on Wednesday 27 April 2022, and the compromised account was contained on the same day. headspace Dubbo client management systems that hold medical histories, documentation or financial information, have not been compromised and remain secure. 

The data accessed contains identifying information that may have included: 

• Personal information, such as name, address and date of birth 
• New staff employment information 
• Commercial-in-confidence documentation, such as sub-contractor agreements 
• Contact details and reason for referral for clients enrolling in headspace Dubbo  

The impacted account was contained quickly, and we have been working hard to put measures in place to reduce the chance of this type of breach happening again.  

We have notified the Federal Office of the Australian Information Commissioner (OAIC) of this breach, and have directly reached out to individuals who we believe may have been impacted by this incident.  

The OAIC provide good advice on how to protect your personal information online here. 

If you need assistance with specific circumstances relating to sensitive and/or health information, or if you wish to seek further advice, please email us at cgu@marathonhealth.com.au and we can connect you with other agencies to ensure you have the right support.