Home / Compliance / AU
Compliance · AU

Telecommunications compliance obligations under the ACMA regime

In short

Australian telecommunications carriers and carriage service providers must comply with a range of obligations under the Telecommunications Act 1997, administered by the Australian Communications and Media Authority (ACMA). These cover consumer protection, network security, numbering, and spam prevention. This guide covers 10 core obligations.

Build compliance into your firm — free trial
Who must comply

Coverage

Telecommunications carriers (network infrastructure owners), carriage service providers (CSPs) providing voice, data, or internet services to end users, and content service providers where specified. Obligations vary by carrier/CSP classification.

Legal basis

Telecommunications Act 1997 (Cth), Telecommunications (Consumer Protection and Service Standards) Act 1999 (Cth), Spam Act 2003 (Cth), Do Not Call Register Act 2006 (Cth), and Telecommunications (Interception and Access) Act 1979 (Cth). ACMA is the primary regulator.

10 obligations

The obligations

1

Comply with the Telecommunications Consumer Protections Code

Adhere to the TCP Code (C628:2019) covering advertising, sales practices, credit and debt management, complaint handling, and financial hardship for residential and small business customers.

Telecommunications Act 1997 (Cth) Part 6; TCP Code C628:2019
2

Maintain a compliant complaint-handling process

Operate an internal complaint-handling process that meets the TCP Code standards, including acknowledgement within 2 working days, resolution targets, and escalation to the Telecommunications Industry Ombudsman (TIO).

TCP Code C628:2019 Chapter 8
3

Comply with the Do Not Call Register

Check the Do Not Call Register before making telemarketing calls or sending marketing faxes. Wash calling lists against the register at least every 30 days.

Do Not Call Register Act 2006 (Cth) s 11
4

Prevent spam communications

Do not send unsolicited commercial electronic messages without the recipient's consent. Include a functional unsubscribe mechanism in every commercial message and honour opt-out requests within 5 business days.

Spam Act 2003 (Cth) ss 16–18
5

Meet the Customer Service Guarantee

Standard telephone service providers must meet the Customer Service Guarantee (CSG) timeframes for service connections, fault repairs, and appointments, or pay compensation to affected customers.

Telecommunications (Consumer Protection and Service Standards) Act 1999 (Cth) Part 5
6

Comply with carrier licence conditions

Carriers must comply with licence conditions including network reliability, interception capability, and emergency call obligations. Licence conditions are set by the Minister and administered by ACMA.

Telecommunications Act 1997 (Cth) Part 3
7

Protect customer information

Safeguard personal information of customers in accordance with Part 13 of the Telecommunications Act, which imposes specific telecommunications privacy obligations beyond the general Privacy Act requirements.

Telecommunications Act 1997 (Cth) Part 13
8

Meet numbering plan obligations

Comply with the Telecommunications Numbering Plan 2015, including correct allocation and use of telephone numbers, porting obligations, and number portability requirements.

Telecommunications Act 1997 (Cth) Part 22; Telecommunications Numbering Plan 2015
9

Provide interception capability

Carriers and nominated CSPs must maintain interception capability to comply with lawfully issued interception warrants. This includes the ability to deliver communications to law enforcement agencies.

Telecommunications (Interception and Access) Act 1979 (Cth) Part 5-5
10

Report network incidents and outages

Report significant network outages and security incidents to ACMA. Carriers must also cooperate with the Cyber and Infrastructure Security Centre on critical infrastructure security obligations.

Telecommunications Act 1997 (Cth) Part 14; Security of Critical Infrastructure Act 2018 (Cth)
Penalties

What happens if you do not comply

ACMA can issue formal warnings, infringement notices (up to $66,600 per contravention for bodies corporate), and accept enforceable undertakings. For serious breaches, the Federal Court can impose civil penalties up to $10 million per contravention. Carrier licence breaches may result in licence suspension or cancellation.

Reporting requirements

Annual compliance reports to ACMA on TCP Code obligations. CSG performance data reported annually. Network outage and security incident reporting as required. Spam and Do Not Call Register complaints investigated by ACMA on referral.

Practical steps

What firms should do today

  • Appoint a TCP Code compliance manager and register with Communications Compliance
  • Implement Do Not Call Register washing into CRM and telemarketing systems
  • Review complaint-handling processes against TCP Code Chapter 8 requirements
  • Build a spam compliance checklist for all marketing communications
  • Document financial hardship policies for residential customers
  • Conduct annual CSG performance reviews and address systemic service issues
Use with Quillio

Compliance with Quillio

Quillio helps telecommunications providers by tracking regulatory obligations, drafting compliance documentation, and monitoring ACMA enforcement trends. See /resources/security or start a free trial.

This guide is general information about telecommunications compliance obligations — not legal or regulatory advice. Always consult specialist telecommunications lawyers for your specific compliance situation.

Build compliance into your stack.

Quillio is built around AU compliance from the ground up — SOC 2 Type II + ISO 27001 + Australian data sovereignty. The free trial requires no credit card.

Start your free trial