I sent an email to DigitalIdentity@ato.gov.au , listed at: https://www.mygovid.gov.au/mygovid-terms-of-use-user and CCed relevant ministers from "both sides" of politics: - Claire O'Neil MP (Shadow Minister for Innovation, Technology and the Future of Work): clare.oneil.mp@aph.gov.au - Karen Andrews MP (Minister for Industry, Science and Technology): karen.andrews.mp@aph.gov.au Issues: - myGovID should not require a recent smartphone - myGovID should not require an Apple or Google account - myGovID should be free software Recommendations: - Make myGovID binaries available for desktop operating systems. - Make myGovID binaries available as a website download and F-Droid (and equivalents). - Make the checksum or cryptographic signature of each myGovID binary available. - Release myGovID as free software. - Make the build of myGovID reproducible: https://reproducible-builds.org/ However, there's potentially a more serious problem with myGovID. I was alerted that myGovID is a backdoor for the "Australia Card". The government has tried to introduce a national ID card system a few times in the past. I see the government has already made most (if not all) their services use myGovID, and maybe its use may become mandated just like what has happened to ATO business portal. Following that, I guess it might spread to banking and other private-sector services. https://privacy.org.au/campaigns/id-cards/ https://www.efa.org.au/Issues/Privacy/accesscard.html For this privacy concern, I was advised to CC the human rights commissioner (https://tech.humanrights.gov.au/) <https://tech.humanrights.gov.au/>. That's Edward Santow, but I can't find his email address, and CCing tech@humanrights.gov.au may suffice. Koji