CTHIn ForceAct
Security of Critical Infrastructure Act 2018
45Offence for unauthorised use or disclosure of protected information
Start here
Get a plain-English read of 45
Turn the raw legal text into a practical explanation grounded in Security of Critical Infrastructure Act 2018.
#### 45 Offence for unauthorised use or disclosure of protected information
(1) An entity commits an offence if:
(a) the entity obtains, generates or adopts a document or information; and
(b) the document or information is protected information; and
(c) the entity makes a record of, discloses or otherwise uses the document or information; and
(d) the making of the record, or the disclosure or use, is not authorised under Subdivision A or required by a notification provision.
> Note 1: For exceptions to this offence, see section 46.
> Note 2: A document or information that records or is the fact that an asset is declared under section 51 to be a critical infrastructure asset may be protected information: see section 5A.
> Note 3: If the entity is not a legal person, see Division 2 of Part 7.
Penalty: Imprisonment for 2 years or 120 penalty units, or both.
(2) Section 15.1 of the Criminal Code (extended geographical jurisdiction—category A) applies to an offence against subsection (1).