Australia's biggest banks and the NSW Roads and Traffic Authority joined the NSW Council of Civil Liberties to slam the biometrics industry for sidelining privacy concerns in a regulatory environment that can only be described as "weak and unethical."
NSW Council of Civil Liberties president, Cameron Murphy, slammed providers, the government and users of the technology for failing to adopt even minimal standards when implementing biometrics.
In a fierce attack at the Biometric Institute of Australia annual conference in Sydney last week, Murphy said an industry-backed privacy code introduced in September 2006 has been virtually ignored.
Outlining dismal adoption rates, he pointed out that four out of 69 users have signed the Biometrics Institute Privacy Code even though it is an industry-negotiated standard designed to give users more confidence in the intrusive technology.
"This is appalling and an absolute disgrace; legislation is playing catch-up with biometric technology and the vendors are flying ahead [with biometric development] without any concern for privacy implications," Murphy said.
"It reflects badly on how important privacy is to the industry and will result in a lack of public confidence when it is time for them to give-up their information when adopting biometrics."
Formed in 1963 as a self-funded body for the protection of civil rights, the NSW Council of Civil Liberties and has around 2000 members including 200 barristers and 400 solicitors.
It lobbies government on privacy infringements, provides legal representation to victims of privacy violations, and participates in public interest debates.
Murphy said the council has received a twenty-one-fold increase in privacy complaints since 1991, with an eleven-fold rise in complaints centred on biometrics.
"Despite Europe's hard-line privacy regulations, Australian privacy laws are weak [and] the privacy office is under-resourced because it takes three to five years for a complaint to be fully investigated," he said adding that the council will put in a submission to government allowing people to sue for privacy breaches if business is holding information against their will.
Function-creep is one of the biggest privacy threats posed by biometrics, according to Murphy, who said government, law enforcement, and industry have regularly acquired biometric data for use outside of its intended purpose.
"Think of the wider context that biometric technology can be used outside its normal function; it is used by governments to track people, and we get cases of the police acquiring employee data such as fingerprints, for completely unrelated cases," he warned.
Privacy concerns related to biometrics are worse than the current 100-point system because "you can't get DNA back if it is stolen or acquired."
Murphy said no-one in industry can guarantee to protect biometric data despite technology advancements.
"Biometrics can reduce the quantity of ID thefts, but the risks are greater because it requires more sensitive information," he added.
Phillip Youngman, director of the Biometics Institute, and privacy officer for the Roads and Traffic Authority (RTA), also tore-into the weakness and proliferation of state and federal privacy laws, claiming too many privacy acts are built around a poor opt-out policy.
- +
Ticked Off at Tick the Box Mentality 04/02/2008 13:01:15
Does your executive search firm know the difference between an MIS manager and a CIO, and if it does, can it explain that difference to its corporate clients?Does your executive search firm know its MIS managers from its elbow? Does it even know the difference between an MIS manager and a CIO, and if it does, can it explain that difference to its corporate clients? - +
Strategies for Dealing With IT Complexity 24/12/2007 10:30:47
Every innovation, every business process improvement, comes with an IT complexity tax that must be paid by CIOs in time, money and sweat. Here are strategies to mitigate the increasing complexity of IT as it enables new business.Every innovation, every business process improvement, comes with an IT complexity tax that must be paid by CIOs in time, money and sweat. Here are strategies to mitigate the increasing complexity of IT as it enables new business.
Read up on the latest ideas and technologies from companies that sell hardware, software and services. Security Inside Out
Cutting printer costs
Email Archiving Implementation: Five Costly Mistakes to Avoid
Achieving the impossible: Unlimited application scalability
Refresh your AUP: Top tips to ensure your acceptable use policy is fit for purpose
Gaining Competitive Advantage Through Enterprise Planning
Data grids and service-oriented architecture
Delivering the Power of Choice with Microsoft Dynamics CRM
Zones provide focussed content from Computerworld and leading technology partners.
Discover how SOA can create smarter outcomes for your business.
Attend and learn:
- How SOA is helping leading companies to become more agile
- Where you should be applying SOA processes in your company
- The top SOA implementation mistakes to avoid
Click here for more information.
- +
Computerworld Live Podcast #97: The Future of Enterprise Networking 25/07/2008 09:45:36
This week CW Live chats with Mark Thompson, global sales and marketing manager for HP ProCurve, on the future of the enterprise networking. Mark discusses the trends we can expect to see in the near future and how the right infrastructure can ensure your enterprise network is secure. - +
Computerworld Live Podcast #96: Security at the Edge 11/06/2008 09:22:22
CW Live speaks with Amol Mitra, HP ProCurve Director of Marketing for Asia Pacific and Japan. Today's topic: how enterprises are starting to shift away from simply controlling security via server logins, firewalls and moving to more adaptive security frameworks. - +
Data Management Edition #10: Multi-Petascale Systems 02/05/2008 09:12:33
This week we look at sustainability and the development of multicore technologies to build multi-petascale systems. - +
IT Security Edition #11: How to poison the Storm botnet 01/05/2008 08:51:55
This week CW Live presents a case study on how to poison the notorious Storm botnet . Plus we take a look at Cisco's plans for Ironport. - +
IT Security Edition #10: Cyber-battles fought and won 24/04/2008 11:09:47
Vendors bow to end user pressure to improve product security, and we take a look at the latest concepts shaping the cyber-battlefield of the future.
Vignette Announces 2008 Excellence Awards 2008-11-21 10:50:00+11
PGP and Ponemon Institute Unveil Inaugural Australian Data Breach Study 2008 2008-11-20 17:34:00+11
Symantec Cloud Services Transform Data Centre Operations Through Proactive Management 2008-11-20 12:06:00+11
Verizon Business Offers Tips to Building a Successful Unified Communications and Collaboration Plan 2008-11-20 12:04:00+11
AARNet Brings 4K Digital Cinema to Australia: First 4K HD Video Signal delivered into Australia by AARNet 2008-11-20 12:02:00+11
Know thy self: Reduce costs, secure data and ensure compliance with identity management
Midsize businesses cannot operate effectively without the ability to control access to their networks and business systems. A strong identity management platform can play the role of gatekeeper and guardian of business intelligence and information. Read on to discover how you can create a strong identity management plan to protect your business.
Buying Guides
Latest Products
Buying Guides
