In Sweden we outsourced for outsourcing's sake, steamrolled over security objections, and authorized non-security-cleared technicians at IBM Serbia to access our driver's license registry, including people with a protected identity, our civilian-registered military vehicles, etc.
We also leaked protected identities to advertisers and when this was discovered, the Directory General sent out an e-mail in cleartext saying "these are the protected identities, please remove them from your registries".
We also leaked protected identities to advertisers and when this was discovered, the Directory General sent out an e-mail in cleartext saying "these are the protected identities, please remove them from your registries".
@clacke@datamost.com I saw that story... Ice recently been thinking the hidden costs of properly handling digital data can be high enough that it's better for some organizations to stay on paper. It's easier for humans to know how to secure physical objects