Lawmakers yesterday called for the creation of an independent agency to protect personal data in the wake of a series of large-scale data leaks.
National Development Council Deputy Minister Kao Shien-quey (高仙桂) vowed to submit a report on preparations related to the issue within a month.
The council has already drawn up a framework based on international examples, but it requires careful debate as it involves labor and budget considerations, she said.
Photo: Hsieh Chun-lin, Taipei Times
The call comes after the operator of vehicle-sharing service iRent last week announced that the data of about 140,000 customers had been jeopardized over three months.
It also follows reports in the past few months of a China Airlines data leak, as well as leaks of National Health Insurance, intelligence and household registration data.
Democratic Progressive Party legislators yesterday held another in a series of news conferences at the Legislative Yuan urging immediate action on the issue.
The greatest problem is the dispersal of responsibility under the Personal Data Protection Act (個人資料保護法), Legislator Lai Pin-yu (賴品妤) said.
With different agencies responsible for supervising different aspects of data security, they have ended up “passing the buck,” Lai said.
The government should create an independent unit responsible for protecting data security, rather than treating each case independently, she said.
Laws governing data security clearly need revision, she said, adding that the council should consult other countries’ laws and investigate the necessity of data collection by companies for research.
Legislator Liu Shih-fang (劉世芳) said data leaks were a “hotbed” for fraud.
From 2021 to last year, reports of fraud stemming from online bookstores rose four-fold from 940 to 3,773, Liu said, citing Criminal Investigation Bureau data.
Investment and installment payment fraud also rose 17.84 percent in the first 10 months of last year, she said.
As private companies are not included in the Cyber Security Management Act (資通安全管理法), most are handled using the personal data act, which designates authorities that are unable to effectively supervise cybersecurity or respond after a breach, Liu said.
The Constitutional Court last year ordered the government to improve data security within three years, saying it “might be unconstitutional” to lack an independent oversight mechanism, Legislator Hung Shen-han (洪申翰) said.
However, there have been no amendments or timelines proposed since the order was issued in August, he said.
No one has assumed responsibility, nor has anyone been notified by a government agency when their data has been leaked, he added.
Issuing fines after the fact is not enough, Legislator Chuang Ching-cheng (莊競程) said over a video call.
The personal data act instructs businesses to inform affected people directly in the event of a leak to minimize its effect, but most users have no way of knowing if their data has been compromised, he said.
UNREASONABLE SURVEILLANCE: A camera targeted on an road by a neighbor captured a man’s habitual unsignaled turn into home, netting him dozens of tickets The Taichung High Administrative Court has canceled all 45 tickets given to a man for failing to use a turn signal while driving, as it considered long-term surveillance of his privacy more problematic than the traffic violations. The man, surnamed Tseng (曾), lives in Changhua County and was reported 45 times within a month for failing to signal while driving when he turned into the alley where his residence is. The reports were filed by his neighbor, who set up security cameras that constantly monitored not only the alley but also the door and yard of Tseng’s house. The surveillance occurred from July
A Japan Self-Defense Forces vessel entered the Taiwan Strait yesterday, Japanese media reported. After passing through the Taiwan Strait, the Ikazuchi was to proceed to the South China Sea to take part in a joint military exercise with the US and the Philippines, the reports said. Japan Self-Defense Force vessels were first reported to have passed through the strait in September, 2024, with two further transits taking place in February and June last year, the Asahi Shimbun reported. Yesterday’s transit also marked the first time since Japanese Prime Minister Sanae Takaichi took office that a Japanese warship has been sent through the Taiwan
‘SAME OLD TRICK’: Even if Beijing resumes individual travel to Taiwan, it would only benefit Chinese tourism companies, the Economic Democracy Union convener said China’s 10 new “incentives” are “sugar-coated poison,” an official said yesterday, adding that Taiwanese businesses see them clearly for what they are, but that Beijing would inevitably find some local collaborators to try to drums up support. The official, speaking on condition of anonymity, made the remark ahead of a news conference the General Chamber of Commerce is to hold today. The event, titled “Industry Perspectives on China’s Recent Pro-Taiwan Policies,” is expected to include representatives from industry associations — such as those in travel, hotels, food and agriculture — to request the government cooperate with China’s new measures, people familiar with
SECURITY: Starlink owner Elon Musk has taken pro-Beijing positions, and allowing pro-China companies to control Taiwan’s critical infrastructure is risky, a legislator said Starlink was reluctant to offer services in Taiwan because of the nation’s extremely high penetration rates in 4G and 5G services, the Ministry of Digital Affairs said yesterday. The ministry made the comments at a meeting of the legislature’s Transportation Committee, which reviewed amendments to Article 36 of the Telecommunications Management Act (電信管理法). Article 36 bans foreigners from holding more than 49 percent of shares in public telecommunications networks, while shares foreigners directly and indirectly hold are also capped at 60 percent of the total, unless specified otherwise by law. The amendments, sponsored by Chinese Nationalist Party (KMT) Legislator Ko
RSS