New privacy protection legislation has recently been enacted in Australia. The Privacy Amendment (Private Sector) Act 2000 regulates the way private sector organisations can collect, use, keep secure and disclose personal information. As such, it has required many organisations to change the ways in which they handle personal information. The ability of organisations to respond to the requirements of this new legislation is affected by the quality of their customer data. This paper explores the issues created by poor customer data quality for organisations as they adjust their business practices to meet the provisions of the new privacy legislation. A number of key issues emerge including managing large amounts of fragmented customer data, understanding what information is required for organisational activities, controlling use and disclosure across the organisation, keeping track of pre- and post- December 2001 data, and allowing anonymity when interacting with customers.