Elections Ontario and Security
| Tweet |
|
Free PDF Download Challenges facing Not-for-Profit Boards of Directors - By The Osborne Group |
This week the news emerged that Elections Ontario has improperly managed the data of 2 million or so Ontario voters and has “lost” our personal data. Apparently back in April, a couple of USB drives went missing from an Elections Ontario office, and they contained information collected about voters provided during the election last fall. First, we’re going to set aside the issue of timing – that this breach occurred back in April and the news is only coming out now. This feels to me like a pretty big gap in accountability, but that’s a topic for another day
Second, we’re also going to ignore the notion that the likelihood of the data being misused is low – apparently due to the specialized software used to manage this data. While this possibly is true, I would never underestimate the capabilities of a determined hacker to be able to decode the data. Further, what data was lost and how much damage can be done with it is not really the point, particularly if you happen to be one of the people whose data was on the drives.
But more practically, what happened here?
It seems that a number of “paper procedures” had been established but were not followed by employees. And no audits appear to have been done to ensure the procedures were being followed. And finally, it seems that the significance of securing this data was not sufficiently impressed on at least a couple of Elections Ontario employees.
What does this mean for your organization?
First, have some security procedures – including but by no means limited to:
Personal data about customer or clients or citizens should not be put on a USB drive as a matter of policy, and if there are some exceptional circumstances, they should be depersonalized or encrypted at minimum.
Strong passwords should be required to get into any system containing personal data, and users should be forced to change them regularly.
Encryption software for laptops should be installed and activated.
Materials should be secured when users are not there – screen locks, laptops and USB devices stored in locked drawers, and so on.
Secondly, test the procedures and audit users behavior. If that means something as silly sounding as walking around the office and checking, just do it. If phones or blackberries are supposed to be password protected, check them to make sure.
Finally, ensure staff know the procedures, understand why they are there and the implications of them not being followed (both to the organization and to them personally) as it is at the personal level that security is most effectively implemented.
Related Articles
The Energy Debate
Ontario Mortgage Rates Are At Their Lowest Ever: Why Fixed Is Your Best Bet?
Ontario's Leadership Change is Time for Program Changes
Energy Management for small business owners in Ontario…How does one optimize it to improve profitability?
Incentives For Energy Conservation
Lowest ontario mortgage rates – Factors on the way to Inquire about the Unsurpassed Rates
Lowest ontario mortgage rates – Explanations en route for Get the Preeminent Rates
Select Your Ontario Canada Mortgage Carefully
Mortgage Canada Ontario - Why working with a Broker is better
SME's - left wing politics in the new South African government
Mass. Senate Race Alternate Ending Compares with Major Account Selling
Stewarding Energy
Auto Insurance Ontario
Democratic Rights: A Broad Charter Guarantee
Is It Time For a Change at Your Hydro Utility
How To Raise Money For Film Financing via Ontario and BC film grants and Tax Credits
Ontario private mortgage - Notable Data You Ought to Recognize
Ontario mortgage interest rates - Mistakes to Avoid When Buying a Dwelling
SECURITY CLEARANCES
Less Ontario Government Spending: Better Life for Ontarians
|
Free PDF Download Challenges facing Not-for-Profit Boards of Directors - By The Osborne Group |
|
About the Author: The Osborne Group The Osborne Group has been helping organizations succeed since 1993. Based in Toronto, Ontario, The Osborne Group provides a wide range of professional interim management, project management, and coaching and consulting services to small and medium enterprises, not-for profit organizations, and the public sector. Click here to visit The Osborne Group's website.   Meeting People Where They Are A Head Shake Connections Looking Back on the Year Is My Time More Valuable Than Yours |
Related Forum Posts
Re: Will North America make carbon taxes anytime soon?
Re: This is ilia sviatenko
Re: What's the best anti-virus/spyware software?
China - small electric appliance manufacturer
Trying to buy own building
Share this article. Fund someone's dream.
Share this post and you'll help support entrepreneurs in Africa through our partnership with Kiva.
Over $50,000 raised and counting - Please keep sharing! Learn more.
Featured Article
By Trending Articles
December 2012 Top 100 Twitter Users in Austin, Texas
Tips to Optimize Magento E-Commerce Sites for SEO
Today’s Profiles of Entrepreneurship in Africa: Aliko Dangote
Is Your Business Tough Enough to Survive Recession?
Features of Kall8 Phone Service
|
|
Like this page? PLEASE +1 it! |  |
Newsletter
Get advice & tips from famous business
owners, new articles by entrepreneur
experts, my latest website updates, &
special sneak peaks at what's to come!
Get advice & tips from famous business
owners, new articles by entrepreneur
experts, my latest website updates, &
special sneak peaks at what's to come!
Popular Articles
Select a Franchise Opportunity That Clicks!
Using Internet Marketing For Your Success
Tips for a Successful Gift with Purchase Campaign
Select a Franchise Opportunity That Clicks!
Using Internet Marketing For Your Success
Tips for a Successful Gift with Purchase Campaign
Suggestions
Email us your ideas on how to make our
website more valuable! Thank you Sharon
from Toronto Salsa Lessons / Classes for
your suggestions to make the newsletter
look like the website and profile younger
entrepreneurs like Jennifer Lopez.
Email us your ideas on how to make our
website more valuable! Thank you Sharon
from Toronto Salsa Lessons / Classes for
your suggestions to make the newsletter
look like the website and profile younger
entrepreneurs like Jennifer Lopez.