Commonwealth Registers Bill 2019 [and associated Bills]

Introductory Info

Date introduced: 4 December 2019
House: House of Representatives
Portfolio: Treasury
Commencement: Various dates as set out in the body of this Bills Digest.

The Bills Digest at a glance

Purpose of the Bills

The purpose of the legislative package—the Commonwealth Registers Bill 2019, the Treasury Laws Amendment (Registries Modernisation and Other Measures) Bill 2019, Business Names Registration (Fees) Amendment (Registries Modernisation) Bill 2019, the Corporations (Fees) Amendment (Registries Modernisation) Bill 2019 and the National Consumer Credit Protection (Fees) Amendment (Registries Modernisation) Bill 2019—is to:

create a new act called the Commonwealth Registers Act 2019 and make related amendments to existing laws to create a new Commonwealth business registry scheme and
introduce a director identification number (DIN) requirement.

The Commonwealth Registers Bill 2019 commences the day after Royal Assent. The remainder of the regime commences on the earlier of two years after Royal Assent or on Proclamation, to allow for administrative arrangements (including a new information technology platform and the development of systems and processes) supporting the new regime to be in place.

Background and outline of the Bills

As part of the National Business Simplification Initiative—a Commonwealth-led agreement between federal, state and territory governments to work together to make it simpler to do business in Australia—the new business registry regime will focus initially on information contained in the 34 registers kept by the Australian Securities and Investments Commission and the Australian Business Register. The new law will allow the Minister to appoint an existing Commonwealth body to be the Registrar. The Registrar will perform its functions and powers in accordance with data standards and a disclosure framework (disallowable instruments made by the Registrar) and other Commonwealth laws.

The DIN is one of a number of initiatives designed to deter and penalise phoenix activity. All persons appointed as a director of a body corporate will be required to apply to the Registrar for a DIN; all directors will be required to confirm their identity; and the DIN will be a unique identifier, allowing traceability of a director’s relationship across companies. There are civil and criminal penalties for directors that fail to apply for a DIN within the applicable timeframe.

Issues and concerns

The Senate Standing Committee for the Scrutiny of Bills raised four main concerns:

significant matters, such as governance of the performance and exercise of the Registrar’s functions and powers, and the collection and disclosure of personal information, are left to delegated legislation
there is no requirement that the Registrar’s functions or powers be delegated only to persons with appropriate expertise
the breadth of a power for the Registrar to arrange for the use of processes to assist decision making could raise administrative law issues
it is not clear why, in making certain offence-specific defences (relating to making a record of information obtained in the course of official employment or relating to an application for a DIN), the defendant bears the evidential burden of proof.

The Parliamentary Joint Committee on Human Rights has sought the advice of the Treasurer on a number of aspects of the legislative package.

Purpose of the Bills

The purpose of the legislative package[1]—the Commonwealth Registers Bill 2019 (the Registers Bill), the Treasury Laws Amendment (Registries Modernisation and Other Measures) Bill 2019 (the Treasury Laws Amendment Bill), Business Names Registration (Fees) Amendment (Registries Modernisation) Bill 2019 (the Business Names Registration Amendment Bill), the Corporations (Fees) Amendment (Registries Modernisation) Bill 2019 (the Corporations Amendment Bill) and the National Consumer Credit Protection (Fees) Amendment (Registries Modernisation) Bill 2019 (the Credit Amendment Bill)—is to:

create a new act called the Commonwealth Registers Act 2019 (the Registers Act) and make related amendments[2] to existing laws to create a new Commonwealth business registry scheme and
introduce a director identification number (DIN) requirement.

History of the Bills

The legislative package was first introduced into the House of Representatives on 13 February 2019 but lapsed when the federal election was called.[3] The Bills were reintroduced—largely unchanged—on 4 December 2019.

Commencement

Bill	Commencement
Commonwealth Registers Bill 2019	The day after Royal Assent
Treasury Laws Amendment (Registries Modernisation and Other Measures) Bill 2019	Sections 1–3, on Royal Assent; Schedule 1, items 1 to 1258, 1262 to 1467 and Schedule 2, on a day(s) fixed by Proclamation or 24 months after Royal Assent; Schedule 1, items 1259 and 1260,^{^[4]} at the same time as items 1 to 1258 or not at all if Schedule 3 to the Treasury Laws Amendment (Strengthening Financial Regulators No. 1) Act 2019 commences before or on the same day;[5] Schedule 1, item 1261,^{^[6]} the later of (a) immediately after commencement of Schedule 1, items 1 to 1258 and (b) immediately after the commencement of Schedule 3 to the Treasury Laws Amendment (Strengthening Financial Regulators No. 1) Act 2019
Business Names Registration (Fees) Amendment (Registries Modernisation) Bill 2019	Sections 1‑3, on Royal Assent; Schedule 1, on a day(s) fixed by Proclamation or 24 months after Royal Assent
Corporations (Fees) Amendment (Registries Modernisation) Bill 2019	Sections 1‑3, on Royal Assent; Schedule 1, on a day(s) fixed by Proclamation or 24 months after Royal Assent
National Consumer Credit Protection (Fees) Amendment (Registries Modernisation) Bill 2019	Sections 1‑3, on Royal Assent; Schedule 1, on a day(s) fixed by Proclamation or 24 months after Royal Assent

Source: Relevant Bill.

Commonwealth Registry

For the Commonwealth Registry, the legislative package sets out:

what information is subject to the new regime
who may be appointed to administer the new regime as its Registrar
the functions and powers of the Registrar
how the Registrar performs its functions and exercises its powers
the framework for protecting and disclosing information held by the Registrar and
other matters that support the new regime.[7]

The Explanatory Memorandum states:

The objective of the new regime is to facilitate a modern registry regime that is flexible, technology neutral and governance neutral, and that facilitates timely and efficient access to information (including, where appropriate, on a real time basis) by regulators and other users of the information.[8]

Clause 4 of the Registers Bill provides a simplified outline of its contents:

the Registers Act (when enacted) provides for the Registrar’s role relating to a government registry regime
the Minister appoints an existing Commonwealth body to be the Registrar, with the functions and powers of the Registrar largely set out in other Commonwealth laws. The Minister can give directions to the Registrar
the Registrar performs those functions and exercises those powers in accordance with specified data standards. The data standards are a disallowable instrument made by the Registrar and may deal with how information is given to the Registrar
information that the Registrar has:
- may be disclosed to government agencies for the performance of their functions and
- is dealt with by the disclosure framework which is a disallowable instrument made by the Registrar
certain decisions made by the Registrar are reviewable by the Administrative Appeals Tribunal.

Director Identification Number

The Treasury Laws Amendment Bill amends the Corporations Act 2001 (Corporations Act) and the Corporations (Aboriginal and Torres Strait Islander) Act 2006 (CATSI Act) to introduce a DIN requirement, setting out:

the persons to which the new requirement applies
the obligations associated with the new requirement
how the new requirement is administered and
the consequences of contravening the new law.[9]

Structure of the Bill

Commonwealth Registry

The Registers Bill is divided into a number of parts:

Part 2—The Registrar: deals with appointment, functions, powers, directions by Minister, delegation, assisted decision making, liability for damages
Part 3—How the Registrar is to perform and exercise functions and powers: including data standards and giving information to the Registrar
Part 4—Disclosure of information: outlines the disclosure framework, protection of confidentiality of protected information (including penalties if an offence is committed), authorisation of recording or disclosure, preventing disclosure of particular protected information, authorisation for purposes of the Privacy Act 1988 and disclosure to a court
Part 5—Miscellaneous: includes review of decisions, extracts of information to be admissible in evidence, annual report and rules.

Schedule 1 of the Treasury Laws Amendment Bill makes amendments relating to the Registrar to the Business Names Registration Act 2011, the Business Names Registration (Transitional and Consequential Provisions) Act 2011, the Corporations Act, the National Consumer Credit Protection Act 2009, the National Consumer Credit Protection (Transitional and Consequential Provisions) Act 2009, the A New Tax System (Australian Business Number) Act 1999, A New Tax System (Goods and Services Tax) Act 1999, the Australian Prudential Regulation Authority Act 1998, the Australian Securities and Investments Commission Act 2001, the Income Tax Assessment Act 1997, the Superannuation Industry (Supervision) Act 1993 and the Taxation Administration Act 1953.

Consequential amendments are proposed to be made to three Acts to allow the Registrar to collect fees for registry services:

Schedule 1 of the Business Names Registration Amendment Bill makes amendments to the Business Names Registration (Fees) Act 2011
Schedule 1 of the Corporations Amendment Bill makes amendments to the Corporations (Fees) Act 2001
Schedule 1 of the Credit Amendment Bill makes amendments to the National Consumer Credit Protection (Fees) Act 2009.

Director Identification Number

Schedule 2 of the Treasury Laws Amendment Bill amends the Corporations Act and the CATSI Act to introduce a DIN requirement:

proposed Part 6-7A—Director identification numbers: amends the CATSI Act to require directors of Aboriginal and Torres Strait Islander corporations, and possibly other officers, to have DINs. The Commonwealth Registrar gives DINs on application from those directors or other officers. The amendments relate to:
- giving and cancelling DINs; applying for a DIN; eligible officers; requirement to apply for and have a DIN (with penalties for non-compliance); extension of application periods; infringement notices; penalties for applying for additional DINs; penalties for misrepresenting DINs; application of amendments
proposed Part 9.1A—Director identification numbers: amends the Corporations Act, in a similar way, to require directors of corporations to have DINs.

Minor amendments are also made to:

the Income Tax Assessment Act 1936 – amends the objects section of Part VA, which deals with tax file numbers, to provide that one of those objects is to facilitate the administration of proposed Part 6-7A of the CATSI Act and proposed Part 9.1A of the Corporations Act (as outlined above) and
the Taxation Administration Act 1953 – to allow the Registrar to request a person’s tax file number to facilitate the administration of the DIN requirement.

Background

Commonwealth Registry

The legislative package is part of the National Business Simplification Initiative,[10] announced in 2016, which is a Commonwealth-led agreement between federal, state and territory governments designed to ‘reduce the complexity of regulation for businesses and make dealings with government easier’.[11] There are two main approaches: removing unnecessary regulation (particularly where there is duplication across government levels); and improving access to government information and services for business by providing them in one place.[12]

The creation of the Commonwealth Registry partially implements the measure ‘Delivering Australia’s Digital Future – modernising business registers’ which was announced in the 2018–19 Budget.[13] That measure provided $19.3 million in 2018–19 to the Australian Taxation Office, the Department of Industry, Innovation and Science and ASIC to develop a detailed business case for modernising the Government’s business registers. The Black Economy Taskforce: Final Report—October 2017 recommended the creation of a single business register, integrating the Companies Register, Australian Business Register and Business Names Register into a single register maintained by a single agency.[14] The Black Economy Taskforce noted:

... the fragmentation of business registers has created opportunity for unscrupulous businesses to either register multiple entities to avoid obligations or for those who have been involved in multiple phoenixing entities, for example, to start afresh with a new business untainted by the tarnished reputation of their earlier entities.[15]

Also, the existence of separate registers

... supports neither identification nor verification, nor service delivery to businesses. It also compromises the valuable data that should be available to government and businesses to verify counterparties.[16]

According to Treasury, feedback from a 2017 discussion paper helped it to define the problem and informed the development of a potential solution.[17] Treasury released another discussion paper on modernising business registers in July 2018, in which it argued:

Modernising business registers will address registry fragmentation, improve business user experience, reduce risks of ongoing operating, foster data driven innovation and enable better use of registry data.^{^[18]}

The main problems identified with the current system are:

high compliance costs and regulatory burden as businesses are required to interact with numerous registry services, often providing the same information
data integrity issues arising from the distribution of registry accountabilities across different regulators with no harmonisation or rationalisation of data collection and authentication requirements
difficulty in meeting user demand with current ageing IT infrastructure
current legislation has not kept pace with developing digital technology and restricts ASIC’s ability to interact with clients in their preferred manner.[19]

When introducing the legislative package in February 2019, the Assistant Treasurer noted:

Currently the data is hosted in different systems across various departments and agencies, imposing inefficient cost burden on registrants in meeting their registration obligations and making it difficult and time consuming to find information.[20]

The regime initially applies to 35 business registers currently administered by ASIC and the Australian Business Register, held by the Commissioner of Taxation.[21] These registers include entity name/identifier/information registers, registers of banned or disqualified persons and professional registers (including some historical registers). The Explanatory Memorandum advises that ‘[a]dditional government registers may be brought into the regime by future legislative reforms.’[22]

Director Identification Number

According to the Explanatory Memorandum, phoenixing—when the controllers of a company deliberately avoid paying liabilities by shutting down an indebted company and transferring its assets to another company—is estimated to cost the Australian economy between $2.9 billion and $5.1 billion annually.[23]

The introduction of a DIN was recommended by the Productivity Commission in its September 2015 final report on Business Set-up, Transfer and Closure:

The Commission recommends the introduction of a director identification number, underpinned by an identification process along the lines required to establish a bank account, to enable the monitoring of director registration (including the detection of disqualified or fraudulent directors), the collection of data regarding director appointments over time (to establish patterns of director involvement in repeat business failures) and detection of possible fraudulent and phoenix activity by the Inter-agency Phoenix Forum and investors.^{^[24]}

As part of a package of reforms to deter and penalise illegal phoenix activity, the Government announced in September 2017 that it would introduce a DIN:[25]

The DIN will identify directors with a unique number, but it will be much more than just a number. The DIN will interface with other government agencies and databases to allow regulators to map the relationships between individuals and entities and individuals and other people.[26]

Under the Bill, the DIN will:

require all directors to confirm their identity
be a unique identifier for each person who consents to being a director, which they will keep, even if they cease to be a director
provide traceability of a director’s relationship across companies (enabling better tracking of directors of failed companies)
reduce time and cost for administrators and liquidators, improving the efficiency of the insolvency process
improve data integrity and security.[27]

Committee consideration

Selection of Bills Committee

Following the February 2019 introduction of the legislative package, the Selection of Bills Committee recommended that the Bills be ‘referred immediately to the Economics Legislation Committee for inquiry and report by 26 March 2019’ as they constituted ‘significant reform which should be reviewed to ensure effectiveness, ease of access and protection of privacy’.[28]

Following reintroduction in December 2019, the Selection of Bills Committee recommended that the legislative package not be referred to a committee for inquiry.[29]

Senate Economics Legislation Committee

On 14 February 2019, the Senate referred the legislative package to the Senate Economics Legislation Committee (Economics Committee) for inquiry and report by 26 March 2019. Details of the inquiry are available at the Inquiry webpage.

The Economics Committee received 14 submissions for the inquiry, with all submitters supporting the aim of the Bills.[30] Some general issues were identified:

a potential reduction in the availability of public information under the new regime[31]
concern about the imposition of ‘disproportionate’ civil and criminal penalties and strict liability offences for directors who do not have a DIN or fail to apply for a DIN, particularly for small businesses[32]
lack of detail in the legislation, with a large role left to data standards and administrative instruments
concerns about the reversal of the evidential burden in relation to criminal matters[33]
concerns regarding the security of information required to be provided by new and potential directors, including the potential for identity theft[34]
recognition that the DIN model alone will not stop illegal phoenix activity. It will be important to integrate the DIN with other registry data[35]
the potential for the DIN model to be delayed by the ‘complex and challenging’ business register project[36]
recognition that ASIC’s IT aging systems will make it ‘difficult to support in a timely and cost-effective manner the development of new types of register ... readily deliver enhancements ... and meet the needs of registry customers’.[37]

The Committee recommended that:

the Government review ASIC’s registry technology in order to assess its continued suitability and the possible need for its replacement
the operation of the DIN be reviewed two years after its introduction to ascertain its effectiveness and
the Bills be passed.[38]

As at 31 December 2019, an interim Government response had been received by the Committee, but was not publicly available.^{^[39]}

Senate Standing Committee for the Scrutiny of Bills

The Standing Committee for the Scrutiny of Bills (Scrutiny of Bills Committee) has raised a number of concerns with the Registers Bill and the Treasury Laws Amendment Bill.[40]

The first concern raised by the Scrutiny of Bills Committee is the extent to which the functions and powers of the Registrar are governed by two disallowable legislative instruments – the data standards and the disclosure framework – rather than in primary legislation. The Committee argued that the need for ‘administrative flexibility’ is not adequate justification for this approach.[41] Instead, where Parliament delegates its legislative power, specific consultation obligations (beyond those in the Legislation Act 2003) should be included, and compliance with those obligations should be a condition of validity of the relevant legislative instrument.[42] The Committee sought the Assistant Treasurer’s advice ‘as to why it is considered necessary and appropriate to leave the data standards and disclosure framework to delegated legislation’.[43]

The second concern raised by the Scrutiny of Bills Committee is that there is no requirement that the Registrar’s functions or powers be delegated only to persons with appropriate expertise. The Committee argued that a limit should be set on the scope of powers that might be delegated or on the categories of people to whom those powers might be delegated (preferring delegates to be confined to the holders of nominated offices or to members of the Senior Executive Service). It noted that the explanatory materials do not adequately address these concerns. Accordingly, the Committee requested the Assistant Treasurer’s advice on the appropriateness of the wide delegation power and whether the Bills could be amended to provide further guidance as to the acceptable categories of delegates and powers able to be delegated.[44]

The third concern raised by the Scrutiny of Bills Committee relates to the provision in the Bills for the Registrar to arrange for the use of processes to assist decision making (such as computer applications and systems) ‘for any purposes for which the Registrar may make decisions in the performance or exercise of the Registrar's functions or powers, other than decisions reviewing other decisions’.[45] The Committee was concerned that the breadth of this power could raise administrative law issues, particularly if it resulted in predetermined criteria being applied inflexibly to decisions that should consider the merits of individual cases.[46] The Committee considered that the explanatory materials did not provide a sufficient justification for the proposed approach. Accordingly, the Committee requested the Assistant Treasurer’s advice on:

why it is considered necessary and appropriate to permit the Registrar to arrange for computer assisted decision-making for any purpose for which the Registrar may make decisions in the performance or exercise of the Registrar's functions or powers, other than decisions reviewing other decisions
whether consideration has been given to how computer assisted decision-making processes will comply with administrative law requirements (for example, the requirement to consider relevant matters and the rule against fettering of discretionary power) and
whether consideration has been given to including guidance on the face of the Bill as to the types of administrative actions (for example, complex or discretionary decisions) that must be taken by a person rather than by a computer.[47]

The final concern raised by the Scrutiny of Bills Committee relates to the reversal of evidential burden of proof. The Registry regime makes it an offence for a person to make a record of information obtained by the person in the course of the person’s official employment, or to disclose information to another person. Exceptions – offence-specific defences – are provided if:

the recording or disclosure of the information is for the purposes of the Registry regime, or occurs in the performance of the person’s official employment
the disclosure of the information is to another person for use, in the course of the performance of the duties of the other person’s official employment, in relation to the performance or exercise of the functions or powers of a government entity or
the disclosure of the information is in accordance with the disclosure framework or each person to whom the information relates consents to the disclosure.

The Treasury Laws Amendment Bill makes it an offence for an eligible officer not to have a DIN or to apply for a DIN knowing that the officer already possesses a DIN. There are also offence-specific defences to these offences if:

the officer applied before a certain period and the application had not been finally determined
the Commonwealth Registrar directed the person to make the application or
the person applied for the additional DIN under another Act.

In raising these offence-specific defences, the defendant will bear the evidential burden of proof – requiring the defendant to raise evidence about the matter (not positively prove the matter). It is ordinarily the duty of the prosecution to prove all elements of an offence. The Committee noted that the Guide to Framing Commonwealth Offences provides that a matter should only be included as an offence-specific defence where:

it is peculiarly within the knowledge of the defendant and
it would be significantly more difficult and costly for the prosecution to disprove than for the defendant to establish the matter.[48]

The Explanatory Memorandum states that:

The evidential burden in those defences has been reversed because the subject matter of the defence is:

• peculiarly within the knowledge of the defendant; and,

• significantly more difficult and costly for the prosecution to disprove than for the defendant to establish.[49]

The Committee argued that it was ‘not apparent that all the circumstances identified as an exception to the offence are peculiarly within the knowledge of the defendant’ nor did the Explanatory Memorandum explain why it would be significantly more difficult and costly for the prosecution to disprove the matters than for the defendant to establish.[50] Accordingly, the Committee asked the Assistant Treasurer to provide a more detailed justification of the appropriateness of the offence-specific defences and suggested that it might be appropriate to amend the Bills to provide that certain offence-specific defences[51] were instead framed as elements of the relevant offences.[52]

At the time of writing, the Assistant Treasurer’s response had not been provided to the Scrutiny of Bills Committee.

The Committee had no comment on the other Bills in the package.[53]

Policy position of non-government parties/independents

As at March 2019, Australian Labor Party (Labor) Senators on the Economics Committee recommended that the Bills only be passed if the business case is made public and sufficient time is given to consider the details:

Labor Senators believe that this legislation should not be debated in the Parliament while key details of the modernisation project have not been made public. While the intent to modernise business registers is supported, there are three areas of concern that Labor Senators wish to raise.

... The first issue is that stakeholders have expressed concern about tying the introduction of the Director Identification Number (DIN) to the registry modernisation project, which may delay the implementation of DINs for years.

... The second issue is that the details of the modernisation project remain unclear. Basic project management details such as an estimated completion date, the estimated total cost for implementation and the anticipated tactics for execution, such as whether to migrate all registers in one attempt or to iteratively merge registers, have not been provided to the Parliament.

... Labor Senators also note the recommendation from the Business Council of Co-Operatives and Mutuals (BCCM) that the legislation be amended to allow States and Territories the option to refer functions to the Commonwealth. Labor Senators urge the Government to work with BCCM and the States and Territories to find ways to reduce red tape for co-operatives.[54]

At the time of writing of this Bills Digest, no comments on the legislative package from other parties or independents have been identified.

Position of major interest groups

The Government has undertaken numerous consultations on the proposed legislation. In its submission to the consultation on draft legislation conducted in October 2018, the Australian Bureau of Statistics noted that the restriction of data standards to the Registrar’s own functions

... would limit future opportunities to collection information to meet “whole of government” information requirements ... [which] could potentially reduce the evidence base available for policy development. It might also result in less efficient “whole of government” data collection and increased burden on businesses.[55]

The Australian Chamber of Commerce and Industry ‘strongly encourage[d]’ the government to implement the modernising business registers program and DINs as soon as possible and argued for registry fees to go towards improving the register rather than to consolidated revenue.[56]

The Australian Council of Trade Unions called for free or low cost public access to registry information, and free access to the DIN register ‘to provide maximum transparency to aid unions, the public and enforcement authorities in promoting corporate accountability and to guard against phoenixing behaviour’.^{^[57]} The Australian Institute of Credit Management also called for free or low cost access to registry data.[58]

In its submission to the Economics Committee inquiry, the Australian Small Business and Family Enterprise Ombudsman called for a fee structure appropriate to the size of the business—scaled to reflect the complexity of a specific activity—reflecting capacity to pay and the cost of running the register.[59]

The Australian Institute of Company Directors (AICD) called for further consultation on:

the privacy, security and public benefit issues relating to the collection and disclosure of director information through disallowable instruments
the proposal for defendants to carry the evidentiary burden for proving defences to offences for breaches of the requirement to apply for a DIN prior to appointment and the obligation not to apply for additional DINs
the proposal for a DIN to be applied for prior to appointment and
the proposed automatic cancellation of a prospective director’s DIN after a 12-month period of not being appointed as a director.[60]

The AICD was also ‘very concerned’ about the confidentiality and security of information held on Registrar systems.[61]

The Australian Charities and Not-for-profits Commission and the Housing Industry Association supported the introduction of the modern registry regime, but the Australian Charities and Not-for-profits Commission had some concerns over the imposition of civil penalties and strict liability offences for directors of charities who fail to apply for a DIN.[62]

ASIC was strongly supportive of the legislative package.[63]

Financial implications

The Explanatory Memorandum states that there will be no financial impact for the Government. It does, however, estimate an increase in compliance costs of approximately $21.5 million per year on average over ten years, arising from the requirement for a DIN. Most of the regulatory burden is anticipated to occur within the first 18 months as existing directors fulfil their obligation to obtain a DIN.[64]

Labor Senators on the Economics Committee considered that ‘it is clear that the project will require significant capital expenditure’ and that a number of stakeholders had indicated that the project might take three to five years.[65]

Statement of Compatibility with Human Rights

As required under Part 3 of the Human Rights (Parliamentary Scrutiny) Act 2011 (Cth), the Government has assessed the Bills’ compatibility with the human rights and freedoms recognised or declared in the international instruments listed in section 3 of that Act. The Government considers that the Bills are compatible.[66]

The legislative package engages, or may engage the right to the presumption of innocence and the right to privacy and reputation. However, to the extent that the legislative package places limitations on these rights, these limitations can be considered legitimate, rational and necessary in light of the objectives they aim to achieve, and reasonable and proportionate in their extent.[67]

Parliamentary Joint Committee on Human Rights

The Parliamentary Joint Committee on Human Rights (Human Rights Committee) has sought the advice of the Treasurer on the following aspects of the legislative package:

what is meant by the term 'public benefit' in relation to the disclosure of information by the registrar in accordance with disclosure framework, and whether it would constitute a legitimate objective for the purposes of international human rights law
the nature and scope of the personal information which is likely to be collected and disclosed under the new regime
whether the disclosure framework set out in clause 16 of the Commonwealth Registers Bill 2019 is sufficiently circumscribed and accompanied by adequate safeguards (having regard to, but not limited to, the matters set out at subclause 16(2))[68]
whether there exists a detailed outline of the proposed disclosure framework insofar as it relates to the right to privacy and
any other matters relevant to the adequacy of safeguards in relation to the collection, use, disclosure and detention of personal information pursuant to this legislative package.[69]

At the time of writing, the Treasurer’s response had not been provided to the Human Rights Committee.[70]

Key issues and provisions

Establishing the Commonwealth Registry

This section summarises the main provisions as they relate to:

information subject to the new regime
appointment of the Registrar
functions and powers of the Registrar
data standards and other relevant Commonwealth laws
protection and disclosure of information held by the Registrar and
other matters.

Information subject to the new regime

The regime initially applies to 35 business registers currently administered by ASIC and the Australian Business Register. A list of the registers, and the current legislative provision(s) that establish them, is provided in Appendix 1.

Appointment of the Registrar

Subclause 6(1) of the Registers Bill enables the Minister, by notifiable instrument, to appoint a Commonwealth Body to be the Registrar.[71]

Different Commonwealth bodies can be appointed Registrar for different functions or powers of the Registrar (subclause 6(2)).

Functions and powers of the Registrar

Clause 7 of the Registers Bill sets out the Registrar’s functions as:

such functions as are conferred on the Registrar by a law of the Commonwealth
such functions as may be prescribed by rules made by the Minister and
such functions as are incidental to the functions mentioned above.

The proposed amendments tie the powers of the Registrar to its functions. Under clause 8 of the Registers Bill, the powers of the Registrar include:

such powers as are conferred on the Registrar in relation to its functions by a law of the Commonwealth and
the power to do all things necessary or convenient to be done for, or in connection with, the performance of those functions.

The powers and functions of the Registrar are largely set out in existing Commonwealth laws, mostly relating to the registers being brought into the new regime. There are hundreds of consequential amendments to existing legislation listing all the functions and powers to be transferred to the Registrar.[72] These consequential amendments transfer existing functions and powers to the Registrar rather than creating new functions and powers. They relate to:

the subject matters for which the Registrar can collect information
how persons make applications to the Registrar
the ability of the Registrar to assess those applications and
the ability of the Registrar to hold information.

Table A1 in the Explanatory Memorandum lists those amendments transferring functions and powers to the Registrar.[73]

Ability to make data standards

The core provisions of the new regime include the Registrar’s ability to make data standards relating to the performance of its functions and powers (clause 13 of the Registers Bill); and the Registrar’s ability to make a disclosure framework relating to the disclosure of protected information (clause 16 of the Registers Bill).

The Minister may, by legislative instrument:

give written directions to the Registrar about the performance of its functions and the exercise of its powers (subclause 9(1) of the Registers Bill)
make rules prescribing matters: required or permitted by the new Act to be prescribed by the rules; or necessary or convenient to be prescribed for carrying out or giving effect to the new Act (subclause 25(1) of the Registers Bill).

Each function and power of the new law does not apply until the function or power is assigned to the Registrar (items 359, 1315, 1414, 1465 and 1466, Schedule 1 of the Treasury Laws Amendment Bill).

Data standards

About the data standards

The new law allows the Registrar to make data standards, by legislative instrument, on matters relating to the performance of the Registrar’s functions and the exercise of the Registrar’s powers (subclause 13(1) of the Registers Bill). Subclause 13(2) of the Registers Bill provides examples of what the data standards may cover:

what information may be collected for the purposes of the performance of the Registrar’s functions and the exercise of the Registrar’s powers
how such information may be collected
the manner and form in which such information is given to the Registrar
when information is to be given to the Registrar
how information held by the Registrar is to be authenticated, verified or validated
how information held by the Registrar is to be stored
correction of information held by the Registrar
the manner and form of communication between the Registrar and persons who give information to the Registrar or seek to access information held by the Registrar
integrating or linking information held by the Registrar.

Data standards may include different provisions relating to different functions or powers of the Registrar (subclause 13(3) of the Registers Bill and items 5, 10 and 18 of Schedule 1 to the Treasury Laws Amendment Bill).

Should the body appointed as Registrar for particular functions and powers change, the new law provides that any existing data standards continue to apply until the new Registrar has prepared replacement standards (subclause 13(4) of the Registers Bill).

In addition items 359, 1315 and 1414 of Schedule 1 to the Treasury Laws Amendment Bill insert applications provisions in respect of the Register.

Form of the data standards

Clause 14 of the Registers Bill provides for the information to be given to the Registrar in electronic or ‘any other specified form’.

Clause 15 of the Registers Bill requires the Registrar to perform its functions and exercise its powers in compliance with the data standards.

Protection and disclosure of information held by the Registrar

About the disclosure framework

The Registrar may, by legislative instrument, make a disclosure framework relating to disclosing protected information (subclause 16(1) of the Registers Bill).[74] Under subclause 16(2) of the Registers Bill, the disclosure framework may provide for:

circumstances in which protected information must not be disclosed without the consent of the person to whom it relates
circumstances in which de-identified protected information may be disclosed
circumstances in which protected information may be disclosed to the general public
circumstances in which confidentiality agreements are required for the disclosure of protected information and
imposing conditions on disclosure of protected information.

The disclosure framework ‘must not provide for disclosure of protected information unless the Registrar is satisfied that the benefits of the disclosure would outweigh the risks’ (subclause 16(5) of the Registers Bill).

The new law includes provisions designed to promote the smooth transition of Registry functions and powers from one Registrar to another (subclause 16(7) of the Registers Bill).

Offences and penalties

About the Criminal Code

The Criminal Code Act 1995 contains the Criminal Code (the Code). Chapter 2 of the Code entitled ‘General Principles of Criminal Responsibility’ contains a comprehensive statement of principles of criminal responsibility for Commonwealth offences.

Chapter 2 of the Code provides that offences have physical elements, for example, doing or not doing an action, and fault elements, such as intention, knowledge, recklessness or negligence. Under the Code if the legislation creating an offence does not specify a fault element for a physical element consisting of conduct, the automatic fault element is intention.[75]

The standard of proof for a criminal offence is ‘beyond reasonable doubt’.[76]

A person commits an offence if he, or she, is party to a confidentiality agreement and fails to comply with that agreement. In that case, the maximum penalty is 100 penalty units or imprisonment for two years, or both (subclause 16(4) of the Registers Bill).[77]

In addition, it is an offence for an official to record or disclose information held by the Registrar unless the recording or disclosure is authorised (clause 17 of the Registers Bill). The maximum penalty for disclosing Registry information is imprisonment for two years (subclause 17(1) of the Registers Bill).[78]

A defendant carries an evidential burden for establishing that a recording or disclosure of Registry information was authorised, requiring them to adduce or point to evidence that suggests a reasonable possibility that the recording or disclosure was authorised (subclause 17(3) of the Registers Bill).

Disclosure of information

Other Commonwealth secrecy provisions do not apply in addition to the new law’s protection and disclosure regime unless expressly designated. Subclause 18(3) of the Registers Bill lists the designated secrecy provisions.

The new law allows a person to apply to the Registrar to prevent the disclosure of ‘particular protected information’ that relates to them (clause 19 of the Registers Bill).

The new regime exempts a person from being required to provide Registry information to a court except where the disclosure is necessary for giving effect to a taxation law or an Australian business law (clause 21 of the Registers Bill).[79]

Other matters

Other matters designed to support the effectiveness and efficiency of the Registry regime include:

when the Minister can direct the Registrar (clause 9 of the Registers Bill)
the circumstances in which, and to whom, the Registrar may delegate its functions and powers (clause 10 of the Registers Bill)
the use of assisted decision making processes (such as computer applications and systems) by the Registrar (clause 11 of the Registers Bill)
the extent to which the Registrar and associated persons may be liable for damages in connection with the new regime (clause 12 of the Registers Bill).

In addition the Bills provide for:

review rights with respect to decisions made by the Registrar (clause 22 of the Registers Bill)[80]
the admissibility of Registry information in court proceedings (clause 23 of the Registers Bill)[81]
the information that must be included in the Registrar’s annual report about the operation of the new regime (clause 24 of the Registers Bill)[82] and
what rules may be made by the Minister—by legislative instrument—for the purposes of the new regime (clause 25 of the Registers Bill).[83]

Other consequential amendments

The hundreds of consequential amendments, contained in Part 2 of Schedule 1 of the Treasury Laws Amendment Bill:

make the Registrar responsible for administering the functions and powers that make up the registers (by replacing relevant references to ASIC in the current law with references to the Registrar)
replace prescription of various matters (what information has to be provided by registrants to ASIC and the Commissioner of Taxation and the manner and form in which such information has to be provided) with the requirements of the data standards and the disclosure framework
remove other aspects of the registers that are displaced (made redundant by or inconsistent with or duplicated) by the new regime.

Another category of consequential amendments allow the Registrar to collect fees relating to the registers (but do not affect how the fee regime operates or the amount payable for particular fees). These are set out in Schedule 1 of the Business Names Registration Amendment Bill, Schedule 1 of the Corporations Amendment Bill and Schedule 1 of the Credit Amendment Bill.

Director Identification Numbers

Schedule 2 of the Treasury Laws Amendment Bill amends the Corporations Act by inserting proposed Part 9.1A and the CATSI Act by inserting proposed Part 6.7A to introduce a DIN requirement. It sets out:

the persons to whom the new requirement applies
the obligations associated with the new requirement
how the new requirement is administered and
the consequences of contravening the new law.

The persons to whom the DIN requirement applies

Proposed section 308-15 of the CATSI Act (inserted by item 5 of Schedule 2 of the Treasury Laws Amendment Bill) defines an eligible officer as a person who is:

appointed to the position of director of an Aboriginal and Torres Strait Islander corporation or is appointed to the position of alternate director and is acting in that capacity or
any other officer of an Aboriginal and Torres Strait Islander corporation body who is an officer of a kind prescribed by the regulations.[84]

Proposed section 1272B of the Corporations Act (inserted by item 11 of Schedule 2 of the Treasury Laws Amendment Bill) defines an eligible officer in near equivalent terms, except that rather than referring to an Aboriginal and Torres Strait Islander corporation, the provision refers to a director or specified officer of ‘a company, or of a body corporate that is a registered Australian body or registered foreign company’.[85]

Obligations associated with the DIN requirement

The obligations:

require a director to apply for a DIN prior to being appointed as a director. Failure to comply with the requirement is an offence of strict liability punishable by a maximum penalty of 25 penalty units (equivalent to $5,250) under the CATSI Act and 60 penalty units (equivalent to $12,600) under the Corporations Act[86]
require a director to apply for a DIN within a prescribed period of being directed to do so by the Registrar.[87] If the Registrar does not specify the number of days, the prescribed period is 28 days from the date the direction is given to the director.[88] A failure do so gives rise to an offence of strict liability and the maximum penalty is 25 penalty units (equivalent to $5,250) under the CATSI Act and 60 penalty units (equivalent to $12,600) under the Corporations Act[89]
prohibit a person from knowingly applying for multiple DINs—unless the Registrar has directed the person to apply for a DIN or where the person applied for an additional DIN under another Act.[90] A failure do so gives rise to an offence, the maximum penalty for which is 100 penalty units (equivalent to $21,000) and/or imprisonment for 12 months under the CATSI Act and imprisonment for 12 months under the Corporations Act[91]
prohibit a person from misrepresenting a DIN to a government body or registered body. A person commits an offence if the person represents a number as a DIN if it is not that person’s DIN. The maximum penalty for which is 100 penalty units (equivalent to $21,000) and/or imprisonment for 12 months under the CATSI Act and imprisonment for 12 months under the Corporations Act.[92]

As set out above, an eligible officer must have a DIN. A failure do so gives rise to an offence of strict liability and the maximum penalty is 25 penalty units (equivalent to $5,250) under the CATSI Act and 60 penalty units (equivalent to $12,600) under the Corporations Act.[93]

However, if an eligible officer does not have a DIN because:

the officer applied to the Registrar for a DIN prior to being first appointed as an eligible officer and the application has not yet been dealt with or
the person was appointed as an eligible officer without their knowledge

then an offence has not been committed, but the defendant bears the evidential burden.[94] The Explanatory Memorandum provides the rationale for the reversal of the onus of proof as follows:

The evidential burden in these defences has been reversed because the subject of the defences is peculiarly within the knowledge of the defendant and is significantly more difficult and costly for the prosecution to disprove than for the defence to establish. The burden of proof on the defendant is an evidential burden. To satisfy this evidential burden the defendant must adduce or point to evidence that suggests a reasonable possibility that the defence exists. Once this is done, the prosecution bears the burden of proof.[95]

This reversal of the evidential burden of proof was one of the concerns raised by the Scrutiny of Bills Committee in the Scrutiny digest, 1, 2020.[96]

Administration of the new DIN requirement

The administration of the DIN requirement relies on the new registry regime. Proposed Part 6-7A in the CATSI Act and proposed Part 9.1A in the Corporations Act provide the Registrar with the ability to:

give a person a DIN if they have applied for a DIN and the Registrar is satisfied that the person’s identity has been established[97]
direct a director to apply for a DIN[98]
keep a record of each DIN that has been given to a person[99]
cancel a DIN that has been given to a person if the Registrar is no longer satisfied that the person’s identity has been established or if the Registrar has given the person another DIN
notify a person that they have been given a DIN or that a DIN that has previously been given to them has been cancelled.[100]

The Registrar may only give a person a DIN if that person has applied for one: either they are an eligible officer or they are not an eligible officer, but intend to become one within 12 months (if they do not become an eligible officer within 12 months the DIN is automatically cancelled).[101]

An application for a DIN must meet any requirements of the data standards.[102]

Offences and penalties

Civil penalty provisions

Schedule 2 of the Treasury Laws Amendment Bill introduces a number of strict liability offences and alternative civil penalty provisions.

A person commits an offence of strict liability if the person does something prohibited by an Act or fails to do something required by an Act. Importantly though, the offence will not criminalise honest errors and a person cannot be held liable if he, or she, had an honest and reasonable belief that they were complying with relevant obligations.

Civil penalties provide an additional or alternative enforcement option, especially where there may be difficulty in proving the necessary fault element to establish a criminal offence.

The standard of proof is lower than for criminal offences—so in a breach of a civil penalty provision a matter must be proven ‘on the balance of probability’.

Consequences of contravening the new law

As stated above, civil and criminal penalties apply to contraventions of the DIN requirement in the Corporations Act and the CATSI Act. The maximum penalties applicable to each obligation are summarised in Table 2.1 of the Explanatory Memorandum,[103] which states:

... the penalties applicable to each obligation are broadly consistent with current penalties applicable to comparable provisions in the Corporations Act and the CATSI Act respectively.[104]

Breaches of the obligations to apply for a DIN are also subject to an infringement notice under Part 5 of the Regulatory Powers (Standard Provisions) Act 2014. For the purposes of the framework under that Act:

an infringement officer (who can issue an infringement notice) is each member of the staff of the Registrar who holds or is acting in an office or position that is equivalent to an SES employee[105]
the chief executive (who can withdraw an infringement notice or extend the time to pay) is the person specified as the relevant chief executive in the Registrar’s instrument of appointment under the new law, or if there is no person specified, the Registrar (items 5 and 11 of Schedule 2 of the Treasury Laws Amendment Bill).[106]

Consequential amendments

Relevant definitions are inserted into section 9 of the Corporations Act [107]and section 700-1 of the CATSI Act.[108]

Transitional provisions

A person who is a director immediately before the day the Minister appoints a Registrar must apply for a DIN within a period specified by a legislative instrument made by the Minister (items 9 and 13 of Schedule 2 of the Treasury Laws Amendment Bill).[109] Until this period is specified there is no requirement on such directors to apply for a DIN. A person who is appointed a director within the first 12 months of the new regime’s operation is provided with an additional 28 days to apply for a DIN.

Appendix 1: registers being brought into the new regime

No.	Current provision(s)	Register
Entity name/identified/information registers
1.	Section 24 of the ABN Act	Australian Business Register
2.	Sections 118, 601DB and 1378 of the Corporations Act	ACN register
3.	Section 22 of the Business Names Act	Business Names Register
4.	Section 601CB of the Corporations Act	Australian registrable bodies register – Australian bodies
5.	Section 601CE of the Corporations Act	Australian registrable bodies register – Foreign companies
6.	Section 152 of the Corporations Act	Reserved names register
7.	Section 601EB of the Corporations Act	Managed investment scheme register
8.	Part 10.13 of the Corporations Act (preserving the operation of the repealed Chapter 2K of that Act)5	Company charges register*
9.	Section 213 of the Consumer Credit Act and subregulation 29(1) of the Credit Regulations	Credit registers – Licensees
10.	Section 213 of the Consumer Credit Act and subregulation 29(3) of the Credit Regulations	Credit registers – Credit representatives
11.	Section 213 of the Consumer Credit Act and subregulation 29(4) of the Credit Regulations	Credit registers – Registered persons
12.	Section 213 of the Consumer Credit Act and Regulation 30A of the Credit Regulations	Credit register of unlicensed carried over instrument lenders
Registers of banned or disqualified persons
13.	Section 1274AA of the Corporations Act	Register of disqualified company directors and other officers
14.	Section 92AA of the Corporations Act and subregulation 7.6.06(1) of the Corporations Regulations	Register of banning orders under Division 8 of Part 7.6 of the Corporations Act
15.	Section 92AA of the Corporations Act and subregulation 7.6.06(2) of the Corporations Regulations	Register of disqualification orders under Division 8 of Part 7.6 of the Corporations Act
16.	Regulation 10.2.96 of the Corporations Regulations6	Banned securities representatives register*
17.	Regulation 10.2.96 of the Corporations Regulations7	Banned futures representatives register*
18.	Section 213 of the Consumer Credit Act and subregulation 30(1) of the Credit Regulations	Credit register of persons against whom a banning order is made
19.	Section 213 of the Consumer Credit Act and subregulation 30(2) of the Credit Regulations	Credit register of persons against whom a disqualification order is made
20.	Section 213 of the Consumer Credit Act and subregulation 30(3) of the Credit Regulations	Credit register of persons who are banned under a law of a State or Territory
21.	Section 128K of the SIS Act	Register of Disqualified self-managed superannuation fund (SMSF) auditors
Professional registers
22.	Section 922A of the Corporations Act and subregulation 7.6.05(1) of the Corporations Regulations	Register of financial services licensees
23.	Section 922A of the Corporations Act and subregulation 7.6.05(2) of the Corporations Regulations	Register of authorised representatives of financial services licensees
24.	Section 922Q of the Corporations Act	Register of financial advisers8
25.	Section 1285 of the Corporations Act	Register of auditors
26.	Section 15-1 of Schedule 2 to the Corporations Act	Register of liquidators
27.	Section 283BCA of the Corporations Act	Register relating to trustees for debenture holders
28.	Section 128J of the SIS Act	Register of approved SMSF auditors
29.	Section 1274 of the Corporations Act and regulation 7.6.02AGA of the Corporations Regulations	Carbon registrants register
30.	Regulation 10.2.96 of the Corporations Regulations10	Register of futures licensees*
31.	Regulation 10.2.96 of the Corporations Regulations11	Register of licence holders*
32.	Regulation 10.2.96 of the Corporations Regulations12	Register of securities representatives*
33.	Regulation 10.2.96 of the Corporations Regulations13	Register of foreign insurance agents*
34.	Regulation 10.2.96 of the Corporations Regulations14	Register of general insurance brokers*
35.	Regulation 10.2.96 of the Corporations Regulations15	Register of life insurance brokers*

Source: Explanatory Memorandum, Commonwealth Registers Bill 2019 [and associated Bills], pp. 8–10.