Read More
The Social Welfare Department apologized yesterday for leaking the English names of 1,300 applicants for the special care subsidy scheme for persons with severe disabilities online. It said a contract employee misinterpreted the guidelines.
ADVERTISEMENT
SCROLL TO CONTINUE WITH CONTENT
Apart from firing the employee, the department contacted those who had been affected by the incident to explain the circumstances.
The department reminded individuals involved to take precautionary measures to avoid being scammed, although only English names without other identifiable information - such as identity card numbers, dates of birth or contact details - were leaked.
"The department attaches great importance to safeguarding personal privacy," it said.
"The department has also reminded staff to comply with departmental guidelines and exercise due care in handling personal particulars related to members of the public."
The Office of the Privacy Commissioner for Personal Data said it had received a data breach notification on Thursday and has commenced a compliance check in accordance with relevant procedures.
But no complaints or inquiries had yet been received pertaining to the incident as of yesterday, the office said.
The office called on affected persons to be vigilant against potential theft of their personal data and take measures, including staying vigilant when receiving suspicious calls, text messages or e-mails, and not to open messages with attachments or disclose personal data arbitrarily, and to be vigilant against phishing.
This is the second data leakage from a government-run organization in three months, after 7,249 e-mail addresses registered with Hongkong Post were obtained by a third party in October last year.
Centrist Third Side party lawmaker Tik Chi-yuen, a registered social worker, said information leakage from government-run organizations was unacceptable and urged authorities to form an inter-departmental working group to review the hardware, systems and workflow.
"Science and technology have been developing rapidly, while hackers are also becoming more rampant. The government should strengthen its ... responsibility to supervise other organizations."
He said he hopes the administration will enhance its staff training on protecting public personal data.
stacy.shi@singtaonewscorp.com
