Lawmakers yesterday called for the creation of an independent agency to protect personal data in the wake of a series of large-scale data leaks.
National Development Council Deputy Minister Kao Shien-quey (高仙桂) vowed to submit a report on preparations related to the issue within a month.
The council has already drawn up a framework based on international examples, but it requires careful debate as it involves labor and budget considerations, she said.
Photo: Hsieh Chun-lin, Taipei Times
The call comes after the operator of vehicle-sharing service iRent last week announced that the data of about 140,000 customers had been jeopardized over three months.
It also follows reports in the past few months of a China Airlines data leak, as well as leaks of National Health Insurance, intelligence and household registration data.
Democratic Progressive Party legislators yesterday held another in a series of news conferences at the Legislative Yuan urging immediate action on the issue.
The greatest problem is the dispersal of responsibility under the Personal Data Protection Act (個人資料保護法), Legislator Lai Pin-yu (賴品妤) said.
With different agencies responsible for supervising different aspects of data security, they have ended up “passing the buck,” Lai said.
The government should create an independent unit responsible for protecting data security, rather than treating each case independently, she said.
Laws governing data security clearly need revision, she said, adding that the council should consult other countries’ laws and investigate the necessity of data collection by companies for research.
Legislator Liu Shih-fang (劉世芳) said data leaks were a “hotbed” for fraud.
From 2021 to last year, reports of fraud stemming from online bookstores rose four-fold from 940 to 3,773, Liu said, citing Criminal Investigation Bureau data.
Investment and installment payment fraud also rose 17.84 percent in the first 10 months of last year, she said.
As private companies are not included in the Cyber Security Management Act (資通安全管理法), most are handled using the personal data act, which designates authorities that are unable to effectively supervise cybersecurity or respond after a breach, Liu said.
The Constitutional Court last year ordered the government to improve data security within three years, saying it “might be unconstitutional” to lack an independent oversight mechanism, Legislator Hung Shen-han (洪申翰) said.
However, there have been no amendments or timelines proposed since the order was issued in August, he said.
No one has assumed responsibility, nor has anyone been notified by a government agency when their data has been leaked, he added.
Issuing fines after the fact is not enough, Legislator Chuang Ching-cheng (莊競程) said over a video call.
The personal data act instructs businesses to inform affected people directly in the event of a leak to minimize its effect, but most users have no way of knowing if their data has been compromised, he said.
China might accelerate its strategic actions toward Taiwan, the South China Sea and across the first island chain, after the US officially entered a military conflict with Iran, as Beijing would perceive Washington as incapable of fighting a two-front war, a military expert said yesterday. The US’ ongoing conflict with Iran is not merely an act of retaliation or a “delaying tactic,” but a strategic military campaign aimed at dismantling Tehran’s nuclear capabilities and reshaping the regional order in the Middle East, said National Defense University distinguished adjunct lecturer Holmes Liao (廖宏祥), former McDonnell Douglas Aerospace representative in Taiwan. If
Prosecutors in New Taipei City yesterday indicted 31 individuals affiliated with the Chinese Nationalist Party (KMT) for allegedly forging thousands of signatures in recall campaigns targeting three Democratic Progressive Party (DPP) lawmakers. The indictments stem from investigations launched earlier this year after DPP lawmakers Su Chiao-hui (蘇巧慧) and Lee Kuen-cheng (李坤城) filed criminal complaints accusing campaign organizers of submitting false signatures in recall petitions against them. According to the New Taipei District Prosecutors Office, a total of 2,566 forged recall proposal forms in the initial proposer petition were found during the probe. Among those
ECHOVIRUS 11: The rate of enterovirus infections in northern Taiwan increased last week, with a four-year-old girl developing acute flaccid paralysis, the CDC said Two imported cases of chikungunya fever were reported last week, raising the total this year to 13 cases — the most for the same period in 18 years, the Centers for Disease Control (CDC) said yesterday. The two cases were a Taiwanese and a foreign national who both arrived from Indonesia, CDC Epidemic Intelligence Center Deputy Director Lee Chia-lin (李佳琳) said. The 13 cases reported this year are the most for the same period since chikungunya was added to the list of notifiable communicable diseases in October 2007, she said, adding that all the cases this year were imported, including 11 from
A 23-year-old Taichung man vowed to drink more water after his heavy consumption of sugary tea landed him in hospital with a kidney infection and sepsis. The man, surnamed Lin (林), used to drink two cups of half-sugar oolong tea while working at a food stall, where he often had to wait a long time before urinating. Lin developed kidney stones and noticed blood in his urine, but ignored the issue after taking medication for three days. A month later, he went to the emergency room after experiencing a recurring fever and was diagnosed with a kidney infection that led to sepsis, landing
RSS