Forum Discussion

Danos's avatar
Danos
Contributing Cover User
2 months ago

Serious Concerns About MYOB’s New Verification Requirement

a { text-decoration: none; color: #464feb; } tr th, tr td { border: 1px solid #e6e6e6; } tr th { background-color: #f5f5f5; } I am extremely concerned about MYOB’s recent policy requiring businesses...
Earl_HD's avatar
Earl_HD
MYOB Moderator
2 months ago

Hi Danos,

To continue sharing invoices, you will need to verify your business, please see our information about Secure Invoicing . Otherwise, your invoice sharing will be restricted to the downloading of PDF files. 

 

For your privacy concerns, MYOB takes privacy seriously and takes all measures to comply with the Privacy Act see 

 

MYOB Group Privacy Policy for Australia

 

We understand your concerns regarding the safety and privacy of your data when submitting documents to MYOB for secure invoicing. Here’s how we ensure that your data is kept secure and private:

  1. Data Encryption: All documents and personal information you submit through MYOB's secure invoicing system are encrypted during transmission and storage. Encryption ensures that only authorized parties can access the information.
  2. Secure Uploads: Documents can be securely uploaded through our dedicated upload portal (https://onlineinvoicepayments.fileupload.myob.com/). This ensures that your documents are sent directly to MYOB’s secure servers without passing through insecure intermediaries.
  3. Confidential Handling: MYOB treats all personal and business information with the highest confidentiality. Access to your data is restricted to authorized personnel who need it for verification purposes only.
  4. Privacy Policy: MYOB complies with all relevant privacy laws and regulations, as detailed in our privacy policy. This policy outlines how we collect, use, and protect your personal data. You can review our privacy policy to understand better how your data is handled.
  5. Purpose Limitation: The information you provide is used solely for the purpose of verifying your identity and business details to enable secure invoicing. This process helps protect your business from fraud and unauthorized access.
  6. Verification: The verification process involves checking your identification details with issuers or official record holders via third-party systems, which are also subjected to stringent privacy and security standards.

Once Secure Invoicing is enabled, you have full flexibility to choose whether you would like to offer the new payment options. If you do choose to offer these, your customers have full flexibility of how they choose to pay. With the default settings there is no cost to your business, unless you change the settings after verification. However, you do not need to accept online payments if you continue with the business verification process. You can turn online payments off in your settings, you can read more about this HERE.

 

Regards,
Earl

  • Danos's avatar
    Danos
    Contributing Cover User
    2 months ago

    Hi Earl,

    Thank you for your response. However, your reply does not address the core issue I raised.

    My concerns are not about encryption or general privacy statements. They are about why MYOB now requires highly sensitive personal identification documents—such as a photo of my driver’s licence—for a feature (invoice sharing) that previously worked without such intrusive measures. This raises serious questions about necessity, proportionality, and compliance with the Privacy Act’s principle of data minimisation.

    A few specific points:

    1. Purpose Justification
      Please explain why verifying my identity with personal documents like a driver’s licence is essential for simply sharing invoices. What risk assessment led to this requirement?
    2. Third-Party Involvement
      You mention verification via “third-party systems.” Who are these third parties? What guarantees exist that my data will not be stored, shared, or used beyond this process?
    3. Legal Basis
      Under the Privacy Act, organisations must collect only what is reasonably necessary for their functions. How does requiring a photo of my driver’s licence for invoice sharing meet this standard?
    4. Alternatives
      If online payments can be disabled, why is verification still mandatory for invoice sharing? This seems inconsistent with the stated purpose.

    Finally, I ask that any further response from MYOB be substantiated with clear facts and references, not general statements or vague links. The current reply contains generic assurances and phrases like “read more HERE,” which do not provide clarity.

    Unless MYOB provides a detailed explanation and a less intrusive alternative, I will have no choice but to escalate this matter to the OAIC and ACCC for review.

    I look forward to your prompt and transparent response.

     

Looking for something else?

Search the Community Forum for answers or find your topic and get the conversation started!

Community home

Dig into MYOB Academy for free courses, learning paths and live events to help build your business with MYOB.