Monday, 14 May 2007
TSA shows how well it protects personal data
WASHINGTON -- On Thursday, May 3, the Transportation Security Administration (TSA) became aware of a potential data security incident involving approximately 100,000 archived employment records of individuals employed by the agency from January 2002 until August 2005. An external hard drive containing personnel data (including name, social security number, date of birth, payroll information, bank account and routing information) was discovered missing from a controlled area at the TSA Headquarters Office of Human Capital. It is unclear at this stage whether the device is still within headquarters or was stolen. TSA immediately reported the incident to senior DHS and law enforcement officials and launched an investigation. TSA is treating this incident as a criminal matter and has asked the FBI to investigate. The U.S. Secret Service is also assisting in the forensic review of equipment and facilities. TSA is cooperating fully.
It's an interesting comparison with the TSA's disinterest in how travellers personal data has been misused, or in the criminal violations of the Privacy Act that has entailed. I'm still waiting for an answer to any of my questions about those crimes, or any indication form the TSA and DHS privacy offices that they have been treated as criminal matters or are being investigated.Link | Posted by Edward on Monday, 14 May 2007, 19:48 ( 7:48 PM)