“Enhancing Personal Data Protection: Government Measures and Initiatives (lcq6)”

In recent years, there has been a growing concern about personal data protection and cyber security, especially in light of several incidents of data breaches and hacker intrusions in various government departments and organizations. This has raised questions about the level of awareness in society regarding the importance of safeguarding personal data.

In response to these concerns, the Secretary for Innovation, Technology and Industry, Professor Sun Dong, addressed the Legislative Council on May 29. He emphasized the crucial role of information and cyber security in the digital age, highlighting that all government departments are responsible for ensuring the security of their IT systems and data.

The Secretary outlined several key points in his response to questions raised by Hon Elizabeth Quat:

1. Government departments are directly responsible for the security of their IT projects, including compliance with information security guidelines, supervision of IT systems, conducting regular security risk assessments, and reporting security incidents.

2. The Office of the Privacy Commissioner for Personal Data is working on legislative amendments to enhance data protection, including the establishment of a mandatory notification mechanism for data breaches and the imposition of administrative fines. Efforts are also being made to raise public awareness of data security.

3. The government is considering introducing data privacy assessments and audits for all IT projects to prevent the disclosure of excessive personal data.

Overall, the government is committed to strengthening data protection measures and enhancing public awareness of cyber security. With the increasing digitization of services and information, it is essential for individuals and organizations to prioritize the security of personal data to prevent unauthorized access and misuse.