Presentation is loading. Please wait.

Presentation is loading. Please wait.

8/25/20141 Portable/mobile devices and privacy in Local Government Dr Anthony Bendall Acting Victorian Privacy Commissioner.

Published byElisabeth Reap Modified over 9 years ago

Similar presentations

Presentation on theme: "8/25/20141 Portable/mobile devices and privacy in Local Government Dr Anthony Bendall Acting Victorian Privacy Commissioner."— Presentation transcript:

1 8/25/20141 Portable/mobile devices and privacy in Local Government Dr Anthony Bendall Acting Victorian Privacy Commissioner

2 Overview OVPC Surveys and Guide Privacy laws Recent developments : –Tablets –Smart phones –Portable hard drives –BYOD –Cloud computing Looking ahead

3 Example “A staff member was responsible for collating information about individuals from numbers sourced for the purpose of preparing reports. The staff member would often work on these reports at home and stored the work on a personal USB key. But the USB key was lost, possibly at a supermarket car-park, with over 30 reports.”

4 OVPC Surveys and Guide OVPC, Use of Portable Storage Devices: Privacy Survey, January 2009 OVPC, Portable Storage Devices: Privacy Survey 2011, December 2011 OVPC, Use of Portable Storage Devices – a guide to policy development, August 2009 All available at www.privacy.vic.gov.au www.privacy.vic.gov.au

5 8/25/20145 Privacy laws Information Privacy Act 2000 (Vic) IPP 4: Data Security –...”must take reasonable steps to protect personal information... from misuse, loss, unauthorised access, modification and disclosure.” –Personal information should be destroyed or de- identified when it is no longer needed. Similar laws at Cth level and in other States and Territories

6 2008 Survey 55 organisations “Major security risk” 17 recommendations Recommendation 1: formal policy –2009 Guide –27 point checklist

7 Surveys by others NZ 2010: –42 NZ agencies –120 devices lost in 12 months –“inadequate controls” Australian Privacy Commissioner 2009: –58% of agencies suffered loss or theft –“mixed results”

8 2011 Survey 31 of previous 55 organisations General improvement 12 organisations – no controls Lack of encryption 10 organisations – no tracking 8 – no improvement 2 – deterioration Local Councils – from “poor” to “commended”

9 Tablets and other developments Explosion in period between two surveys 2011 – 50% provide tablets to staff Portable hard drives

10 BYOD Increasing Lack of policy and technical controls

11 The cloud New challenges Loss of control Offshore storage OVPC Information Sheet: Cloud Computing, May 2011

12 2011 recommendations 6 additional recommendations: –Strict control over external hard drives –Control of all active ports –Encrypted USB keys Smart phones and tablets –Integrity –Expanded policies Privacy Impact Assessments –Collection & notice –data security –transborder flows Loss of control Accountability

13 Conclusion Accountability Costs Compliance notices Potential data breach laws

14 More information Privacy Victoria www.privacy.vic.gov.au 1300 666 444

Download ppt "8/25/20141 Portable/mobile devices and privacy in Local Government Dr Anthony Bendall Acting Victorian Privacy Commissioner."

Similar presentations

The Perception of Privacy Risk Gerald W. Gates Chief Privacy Officer U.S. Census Bureau.

The Perception of Privacy Risk Gerald W. Gates Chief Privacy Officer U.S. Census Bureau.
The Legal Foundation TRICARE Management Activity HEALTH AFFAIRS 2009 Data Protection Seminar TMA Privacy Office.

The Legal Foundation TRICARE Management Activity HEALTH AFFAIRS 2009 Data Protection Seminar TMA Privacy Office.
Privacy Impact Assessment Future Directions TRICARE Management Activity HEALTH AFFAIRS 2009 Data Protection Seminar TMA Privacy Office.

Privacy Impact Assessment Future Directions TRICARE Management Activity HEALTH AFFAIRS 2009 Data Protection Seminar TMA Privacy Office.
CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.

CS898T Mobile and Wireless Network Handheld Device Security By Yuan Chen July 25 th, 2005.
Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2.

Identify risks with mobile devices: Portable data storage Wireless connections 3 rd party applications Data integrity Data availability 2.
January 21, 2010 Integrated Project and Panel Work Plan FY 2010 Sylvia Karman, OIDAP Member & Project Director Mary Barros-Bailey, Ph.D., OIDAP Chair.

January 21, 2010 Integrated Project and Panel Work Plan FY 2010 Sylvia Karman, OIDAP Member & Project Director Mary Barros-Bailey, Ph.D., OIDAP Chair.
Red Flags Rule BAS Forum August 18, 2010. What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.

Red Flags Rule BAS Forum August 18, What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.
Innovation and the Privacy Advantage Jennifer Stoddart, Privacy Commissioner of Canada August 25, 2010 Institute of Public Administration of Canada 62.

Innovation and the Privacy Advantage Jennifer Stoddart, Privacy Commissioner of Canada August 25, 2010 Institute of Public Administration of Canada 62.
Office of the Information Commissioner www.oic.qld.gov.au.

Office of the Information Commissioner
Statewide PCP Chairs and Executive Officers Tuesday 14 August 2012 Sylvia Barry Manager Partnerships and Primary Health.

Statewide PCP Chairs and Executive Officers Tuesday 14 August 2012 Sylvia Barry Manager Partnerships and Primary Health.
Security metrics in SCADA system Master of Computer and Information Science Student: Nguyen Duc Nam Supervisor: Elena Sitnikova.

Security metrics in SCADA system Master of Computer and Information Science Student: Nguyen Duc Nam Supervisor: Elena Sitnikova.
Jisc Legal. John X Kelly - Mobile Devices - BYOD.

Jisc Legal. John X Kelly - Mobile Devices - BYOD.
International Financial Reporting Standards The views expressed in this presentation are those of the presenter, not necessarily those of the IFRS Foundation.

International Financial Reporting Standards The views expressed in this presentation are those of the presenter, not necessarily those of the IFRS Foundation.
Imation Mobile Security Research Presentation August 2013 What is happening with our data?

Imation Mobile Security Research Presentation August 2013 What is happening with our data?
CHARTERED SECRETARIES AUSTRALIA New Privacy Laws 6 June 2013.

CHARTERED SECRETARIES AUSTRALIA New Privacy Laws 6 June 2013.
Data Security for Healthcare Facilities Debbie Abbott Health Information Consultant Resolutions (Int) Pty Ltd.

Data Security for Healthcare Facilities Debbie Abbott Health Information Consultant Resolutions (Int) Pty Ltd.
Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.

Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.
Copyright © 2014 Merck Sharp & Dohme Corp., a subsidiary of Merck & Co., Inc. All rights reserved. In practice, how do we recognize a potential Privacy.

Copyright © 2014 Merck Sharp & Dohme Corp., a subsidiary of Merck & Co., Inc. All rights reserved. In practice, how do we recognize a potential Privacy.
PRIVACY COMPLIANCE An Introduction to Privacy Privacy Training.

PRIVACY COMPLIANCE An Introduction to Privacy Privacy Training.
The Australian Privacy Principles Protecting information rights –­ advancing information policy.

The Australian Privacy Principles Protecting information rights –­ advancing information policy.

Similar presentations

Ads by Google