Privacy Commissioner’s Annual Report 2012 – The Year of the Data Breach

MEDIA RELEASE
28 November 2012

“This year has been marked for us by major public sector data breaches. Notable were the ACC spreadsheet breach in March and MSD kiosk breach in October. These losses of data have highlighted the urgent need for far better security and respect by government agencies for New Zealanders’ personal information,” said Privacy Commissioner Marie Shroff when she released her Annual Report today.

“The public sector can’t afford to be complacent. It’s quite clear that agencies holding large amounts of personal information need to place greater value on that information asset. They need to develop strong leadership and a culture of respect for privacy, as well as day to day policies and practices to provide trustworthy stewardship of our personal information at every level of the organisation. There has been far too little focus on the fact that there are real people behind the masses of information that government agencies hold,” said Ms Shroff.

“A recent TV One Colmar Brunton poll showed that 60% of New Zealanders don’t trust government departments to protect their personal details. The public sector runs on trust – it’s the fuel in the government engine. Recent events threaten that in a very real way,” said Ms Shroff.

“Our own 2012 UMR privacy survey showed general concern about privacy has risen sharply in the last decade. 88% of respondents said they wanted business punished if they misused personal information, and 97% said I should have the power to order a company to stop the breaching the Privacy Act.”

“Data breach notification isn’t currently required by law, but the Law Commission recently recommended that it should be made compulsory where breaches put people at risk. That would bring New Zealand law into line with practice overseas,” said Ms Shroff.

The ACC breach generated an extra inflow of complaints this year, and the Office received 173 complaints about ACC. Overall, 1,142 complaints were received, an increase on 968 complaints received in the 2010/11 year.
View the key points and introduction and the full report.

--

Other 2012 highlights

EU ticks NZ’s privacy law
New Zealand’s privacy law finally received the tick from the EU that indicates it meets international best practice. This involved a long process, involving a working party opinion as a first key step that indicated that our law ensures an adequate level of data protection consistent with European requirements. While final authorisations are to come, we expect shortly to have a formal legal determination from the European Commission that New Zealand is a safe destination for European companies to send personal data for processing. The finding will assist cross-border trade and will open doors for New Zealand businesses operating in Europe.

Credit reporting code
Amendment 7 to the Credit Reporting Code, permitting more comprehensive credit reporting, came into effect in April 2012.
The amendments represent a fundamental shift in credit reporting in New Zealand. The new system will, for the first time, allow credit reporters to collect records on the actual amounts of credit extended to individuals. Lenders will upload information, on a monthly basis, showing whether or not individuals have met their monthly credit repayments.

The new system will amass much larger collections of detailed and sensitive financial information on New Zealanders. The Code changes have introduced special measures to ensure a high level of compliance and to provide protections to individuals. Annual assurance reports to the Privacy Commissioner will be required. A new provision for ‘credit freezes’ was introduced for individuals who are at special risk of identity fraud.
http://privacy.org.nz/media-release-credit-reporting-changes-begin-for-all-new-zealanders-id-fraudsters-to-be-stopped-in-their-tracks/

Privacy Law Reforms
The Privacy (Information Sharing Bill) received its first reading in February 2012 and the select committee reported back in June 2012. The Bill proposes to allow information sharing agreements within the public sector and also between public and private sectors. We have voiced our support of the safeguards that have been placed in the bill.
http://privacy.org.nz/privacy-commissioner-supports-safeguards-in-information-sharing-bill-media-release/

The Information Sharing Bill forms only one part of the Law Commission’s recommendations for privacy law change detailed in its comprehensive Review of Privacy http://www.lawcom.govt.nz/project/review-privacy. The Commission’s final report was released in August 2011.

In March 2012, the Government provided a short response to the other privacy law recommendations made by the Law Commission. The principles-based approach of the Privacy Act will be retained, and the recommendation that there be a new Privacy Act has been accepted. A more detailed Government response is still to come that will provide details of which Law Commission recommendations have been accepted.
http://www.justice.govt.nz/publications/global-publications/g/government-response-privacy

UMR public opinion survey
We released the results of our latest UMR public opinion survey in May. General concern about privacy has risen sharply in the last decade (up to 67%, from 47% in 2001). More specifically, the public expects businesses and government agencies to be held accountable for privacy breaches. The digital environment is driving many of these concerns.
http://privacy.org.nz/privacy-survey-2/

| www.privacy.org.nz

Privacy is about protecting personal information, yours and others. To find out how, and to stay informed, subscribe to our quarterly Privacy Newsletter.

ENDS

© Scoop Media

Gordon Campbell: On The 2013 Budget

Among Thursday’s main talking points:

We are apparently on track for a margin-of-error $75 million surplus, now in sight for 2014/15. But this sickly creature is hobbling out of the lab on the basis of all kinds of facilitative conjuring: such as trimming by $200 million the amount of new spending next time around.

With this strictly nominal surplus in sight, the 1984-ish justification for eternal austerity will have a news talisman: namely, getting Crown debt down to 20% of GDP by 2020. More>>

Budget Report, Lockup Audio & Images: Budget Day 2013 As always and especially after the managerial mishaps of the past few weeks and months, (e.g. Aaron Gilmore, the Mighty River Power share float, the GCSB mishaps) Budget Day 2013 was always going to be a pageant of reassurance... More>>

Budget 2013 Comment: Plain Sailing, But It's No America's Cup Pattrick Smellie: Compared to the last four budgets, this year's reflects an economy moving out of recession and into calmer waters... Yet if the fastest annual growth rate we can expect over the next two years is 3 percent - with the Christchurch rebuild in full swing - then you'd have to say New Zealand's underlying low-growth problem is far from fixed. More>>

Auckland Discord: Govt’s Power Hungry Housing Approach A Threat - Labour

Last week the Government said this, ‘The Government commits not to use any proposed or existing powers ... to override the council's planning and consenting processes’. But its housing Bill says this; ‘If an accord cannot be reached in an area of severe housing unaffordability, the Government can intervene by establishing special housing areas and issuing consents for developers’. More>>

ALSO:

• NZ Govt - Housing accords legislation passes first reading - Legislation For Housing Accords, Land Supply - Housing package improves affordability, access
• Greens - Budget numbers show National’s failure on home affordability
• Auckland Chamber of Commerce - Budget 2013: Housing intervention needed
• Out-Link - Gareth Morgan: Response to housing problem limp-wristed
• Earlier, Pre-Budget - Auckland Accord announced

Extending Protest Ban, Relaxing Permit Rules: Govt Abuses Urgency To Extend Anadarko Amendment

The Government is trying to pass legislation under urgency which would make the Anadarko Amendment – which limits protest at sea – apply to an additional 1.7 million square kilometres, the Green Party said today. More>>

ALSO:

• Parliament Today - Parliament Resumes To Pass Budget Bills
• Labour - Government to extend protest ban
• Greenpeace NZ - Oil Companies Lacking ‘Expertise’ and ‘Financial Ability’ Set to Be Handed Drilling Permits
• 2010 image via: Pacific.Scoop - Media watcher gives NZ press nil score card for China oil spill coverage