KOMATSU AUSTRALIA PTY LTD | Information Security Portal
komatsu.com.au ↗
Information Security
Legal

Privacy Notice.

Last updated: 1 March 2026

Komatsu Australia Pty Ltd (ABN 60 001 590 041) ("Komatsu", "we", "us", "our") respects your privacy and is committed to handling personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles. This notice describes how the Komatsu Australia Information Security team handles personal information collected through this portal and through incident reporting channels.

1. Information we collect

When you raise an incident report or interact with the Information Security team we may collect: your name, business email, phone number, role and business unit, the location or site you work at, and the contents of your report including any details, headers, or attachments you provide. We may also collect technical information including IP addresses and browser details for visitors to this portal.

2. How we use information

We use the information you provide to investigate and respond to security incidents, manage Komatsu Australia's information security program, monitor and improve our detective and preventive controls, support regulatory and contractual obligations, and contribute to threat intelligence within the Komatsu Group where appropriate.

3. Who we share information with

Information reported to the Information Security team may be shared with authorised personnel within Komatsu Australia and the global Komatsu Group, law enforcement and regulators where legally required, professional advisors (legal, forensic, communications), and third-party security service providers where their involvement is necessary to investigate or contain an incident.

4. Cross-border disclosures

As part of the global Komatsu Group, personal information may be disclosed to Komatsu entities in Japan, the United States, and elsewhere, where doing so is necessary to investigate or coordinate response to a security matter. We take reasonable steps to ensure recipients handle personal information consistently with Australian privacy law.

5. Storage and security

Information collected through this portal is stored in systems hosted in Microsoft Azure within Australian regions, with access restricted to authorised members of the Information Security team.

6. Confidentiality of reports

We treat security reports — including the identity of the reporter — as confidential. Reports are accessible only to the Information Security team unless investigation requires wider disclosure, in which case we will inform the reporter where appropriate.

7. Your rights

You may request access to or correction of personal information we hold about you in relation to security matters by emailing privacy@komatsu-security.com. Some information may be withheld where disclosure could prejudice ongoing investigations.

8. Complaints

If you believe we have handled your personal information improperly, please raise it with the Privacy Officer at the email above. You may also complain to the Office of the Australian Information Commissioner at oaic.gov.au.

Contact

Privacy Officer
Komatsu Australia Pty Ltd
51 Joseph Street, Lidcombe NSW 2141
privacy@komatsu-security.com