close
MENU
How to guide
How to guide
Home
The NBR List
NBR View
NBR Marketplace

Categories

General Business Investment Economics Te Ao Māori Politics Infrastructure Australia Tech & Innovation Finance Law Professional Services Primary Industries Retail Property Deals Aviation News Comings & Goings

Analysis

All Economy Matters Edwards on Politics Hunter’s Corner Last Word Margin Call On the Money Shoeshine Underarm NBR Focus

Featured

Podcasts Audio Articles Entrepreneurs Your Business Beehive Banter Morning Brew Toil & Trouble NZ Aviation News Back Issues Market Outlook Dollars & Sense Private Bin Opinion (Archive) NBR Radar (Archive) NBR Rich List (Archive)
2 mins to read

Government chief privacy officer a great move

Paul Matthews of Institute of IT Professionals
 Tue, 19 Nov 2013

Welcome news today that a Government Chief Privacy Officer (GCPO) is to be appointed, who will oversee privacy and security issues across all government agencies.

A joint press release from Ministers Chris Tremain and Jonathan Coleman explains the scope of the new role:

"The Department of Internal Affairs is being realigned to strengthen privacy and security across the public service. The creation of a Government Chief Privacy Officer gives additional support to the Government Chief Information Officer (GCIO) to set standards and provide leadership and assurance that privacy is managed appropriately."

The Institute of IT Professionals is a strong advocate for this type of senior position and we wrote to Minister Tremain in August recommending that an appointment be made in this area.

We pointed out then that the Government Chief Information Officer cannot be expected to be across all security and privacy issues, in addition to his current workload - but it is essential that there is robust oversight in this area. Security and privacy across government is not yet at an acceptable level, and it won't be until someone is given the responsibility, resources and clout to get things to done.

However, it is pleasing to see that in addition to this new position, progress is being made. Minister Tremain notes in today's press release that 90% of agencies now have accountability for privacy and security at senior executive level, compared to 21% a year ago.

It's a good start, but there is still long way to go.

IITP would like to see the creation of a one-stop central 'hotline' where breaches can be reported and guidelines established on how government should handle breaches and notifications. In addition, there should be guidelines for members of the public on how they can go about reporting breaches. There is some good work already being done on this by the Internet Taskforce.

Finally, we also recommend that a bug bounty programme be established which pays a small reward for vulnerabilities found and can provide what many hackers really want: recognition. (Outgoing Privacy Commissioner Marie Shroff has also recommended that bug bounties be considered).

As always, IITP is happy to discuss these ideas with the GCPO when he or she is appointed.

Paul Matthews is chief executive of the Institute of IT Professionals NZ.

Paul Matthews of Institute of IT Professionals
 Tue, 19 Nov 2013
© All content copyright NBR. Do not reproduce in any form without permission, even if you have a paid subscription.
Tags
Tech Privacy BusinessDesk
Government chief privacy officer a great move
33882
false