Scoop has an Ethical Paywall
Licence needed for work use Learn More

Gordon Campbell | Parliament TV | Parliament Today | News Video | Crime | Employers | Housing | Immigration | Legal | Local Govt. | Maori | Welfare | Unions | Youth | Search

 

Hard hitting report shows MSD breached client trust

Friday, 2 November 2012, 3:42 pm
Press Release: Office of the Privacy Commissioner

Media Release: Hard hitting report shows MSD breached client trust
2 November 2012

"Government agencies must treat people's information with the highest standards of respect," says Privacy Commissioner, Marie Shroff. "But this hard-hitting report - especially since it follows hard on the heels of the ACC report - shows just how far some of our major agencies have to go before we can be confident our information is protected.

"Basic IT security safeguards to protect personal information were missing, from the time the ‘kiosk' system was built. And it's unfathomable that the Ministry did not address Dimension Data's revelations that sensitive personal information was exposed on network shares. The decision about how to handle such a serious problem should have been made at the highest levels of the business. This raises questions about the wider culture of handling information within MSD.

"Looking at IT security is only one part of the picture. Recent privacy breaches make it plain that a complete mind-shift is needed in some quarters. There's been far too little focus on the fact that there are real people behind the information that government agencies hold. Those agencies need to develop and embed strong leadership, governance structures, policies and practices to manage personal information at every level of the organisation.

"We often don't have a choice about handing our personal information over to government agencies. The least we can expect is responsible stewardship of that information.

Advertisement - scroll to continue reading

"The problems with the MSD kiosks are now evident. Whether there have been wider failures of leadership, policies and strategy about how personal information is handled within the Ministry is still to be seen. However, I expect the next stage of this review to ask some penetrating questions.

"I welcome the MSD Chief Executive's acceptance that the Ministry's performance was inadequate here, and his commitment to examine the Ministry's systems and culture in the second phase of the review."

ENDS

Deloitte's report [Scoop copy: independentreviewdeloitte.pdf]

Note to editors

The Privacy Commissioner has formally opened an own-motion investigation into the MSD incident but will wait until phase two of the Deloittes inquiry has been completed before deciding what else might need to be considered or done.

© Scoop Media

Advertisement - scroll to continue reading

Are you licensed for Scoop?

Scoop is free for personal use, but you’ll need a licence for work use. This is part of our Ethical Paywall and how we fund Scoop without a regular paywall. Join today with plans starting from just $11 per month, and start using Scoop like a Pro.

Join Pro Individual Find out more

Find more from Office of the Privacy Commissioner on InfoPages.
 
 
 
Parliament Headlines | Politics Headlines | Regional Headlines

NEW ZEALAND POLITICS


 
work Join Scoop Pro
 
Submit News
 
person_add Become a Member
 
 
 
 

LATEST HEADLINES

  • PARLIAMENT
  • POLITICS
  • REGIONAL
More RSS
 
 

Featured News Channels


 
  • Wellington Scoop
 
 
 

Join Our Free Newsletter

Subscribe to Scoop’s 'The Catch Up' our free weekly newsletter sent to your inbox every Monday with stories from across our network.