Undefined Data Collection Without Privacy Safeguards

The provision grants the Authority discretion to record "any other information that the Authority may determine" in the ICT register without specifying limits, violating data minimization principles fundamental to privacy protection. The register contains no data protection safeguards regarding retention periods, access controls, data subject rights, or permissible uses of collected information. When combined with 46's enforcement powers, this creates a surveillance infrastructure enabling the Authority to collect extensive personal and business data and use it for enforcement action without adequate privacy protections or transparency about who can access the register.