Personal data is being violated and exploited
On the afternoon of May 12, the National Assembly discussed in groups the draft Law on Personal Data Protection.
Speaking, delegate Quan Minh Cuong - Secretary of the Cao Bang Provincial Party Committee - emphasized that leaking personal data is a very pressing and hot issue because personal data is being violated and exploited.
"Protecting personal data in cyberspace is extremely difficult for us. Even senior leaders have had their personal data leaked from sources that are difficult to determine," the delegate informed.
According to the Secretary of Cao Bang, we are living in a digital environment, so how to protect personal data related to private secrets, economics, finance, etc. In particular, when legalizing, how to handle cases of disclosure, exploitation, and use for other purposes?
Cao Bang Secretary cited that when going to the supermarket, when shopping, you are required to read the phone number; when flying, there is also a phone number on the ticket, when you get to the gate, someone calls, do you take a taxi back?
Stating that a lot of information was leaked, the delegate said that just by accidentally seeing or touching a certain advertisement about buying and selling a house, there were dozens of phone calls that day to introduce the project. This is a form of information leakage, so what should the authorities do to ensure that citizens have that personal data?
Is there any violation in posting health information about business leaders causing great damage?
Delegate Tran Quoc Tuan (Tra Vinh) stated that the problem of personal data leakage is one of the issues that authorities and the whole society are currently very concerned about.
Although the authorities have tried very hard, the disclosure of personal data continues to increase sharply and is very alarming in our country.
The delegate suggested that the law should explain the phrase sensitive personal data. The reason is that the content of this phrase is not clear, but is still deterministic because personal data is sensitive to one person but not sensitive to another.
The delegate gave an example of the health and private life situation recorded in Mr. Nguyen Van A's medical records being exposed when Mr. A was the Chairman of the Board of Directors of a large company, a company with excellent business results, and a very high stock value.
However, Ms. B spread the news that Mr. A had terminal cancer. This source caused a negative impact, causing the value of the shares and capitalization of that company to decrease sharply.
In fact, Mr. A was seriously ill, and Mrs. B was also the one who spread the true news. However, that source caused great damage to the company. So Ms. B informed Mr. A about whether he had cancer and was considered a violation of the law or not?
Therefore, the delegate said that it is necessary to clarify the meaning of the phrase "sensitive information" right in the law to ensure feasibility.
The delegate also proposed to review the content of applying an administrative penalty level of 1-5% of the previous consecutive year's revenue of organizations and enterprises that violate regulations on personal data protection.
This regulation is difficult to implement, especially for newly established enterprises at the beginning of the year but at the end of the year, if they violate it, they cannot be punished. Or there are also cases where businesses that have violated are dissolved before being discovered. There are even cases where businesses have low profit rates, if they are fined, they will suffer heavy losses.
