Publications and Videos
Newsletter
|
PRIVATE
THOUGHTS (on-line version) 2000 Opinion Survey Results Released The PCPD's annual opinion survey on attitudes towards and the implementation of the Personal Data (Privacy) Ordinance has recently been completed. The survey was conducted by the Social Sciences Research Centre of the University of Hong Kong. The survey was the fourth annual opinion survey commissioned by the PCPD. It was aimed at providing the PCPD with information on public attitudes towards privacy issues and organizations' compliance with the Ordinance to assist the PCPD in setting priorities in its work ahead. The survey consisted of two parts: a telephone survey of 1,569 individuals and a questionnaire survey of 485 organizations. One subject of particular concern to the PCPD was the increasing use by employers in Hong Kong of surveillance facilities to monitor their employees in the workplace, and a set of questions in this area was included in the survey of organizations. The survey found that 64% of the respondent organisations had installed at least one type of surveillance facilities in the workplace, which included closed circuit TV (48%) and devices for monitoring employees' computer use (27%), web-browsing (23%), phone (22%) and e-mail (21%). However, only 18% of these organizations had formulated a written policy on such activities. The PCPD is of the view that organizations operating surveillance facilities in their workplace should have a written policy on such activities and should communicate it to their staff. To give practical and more detailed guidance to employers operating surveillance facilities in the workplace, the PCPD plans to issue a code of practice in this area, a draft of which is expected to be released for public consultation next year. The survey also found that the percentage of organizations which considered that the Ordinance would have long term benefits to an organization continued to increase. Such benefits included improvements in customer and employee relations, data management and the public image of an organization. With respect to the survey of the general public, similar to the surveys in the past three years, privacy, as a social policy issue, was given an average rating of 7.6 out of 10 in terms of importance. Privacy was considered as less important than air pollution and employment, roughly the same as food hygiene, but more important than health services, care for the elderly and sex discrimination. As regards
the use of the In[Image of image]ternet,
the survey found that 44% of the respondents had made use of the Internet
for personal purposes, out of which 52% gave a rating of 8 or more on
a scale of 0 to 10 to indicate their concern on privacy with respect to
purchasing on the Internet. The most important causes of concern were
"money loss due to interception of your credit card number" (84%), "misuse
of personal data by third parties" (72%) and "little knowledge about the
background of the sellers on the Internet" (55%). In addition, among those respondents using the Internet for personal purposes, 85% of them objected to receiving unsolicited commercial e-mails (spams). This percentage nearly doubled the corresponding percentage (43%) in the 1999 survey. Most of the respondents (60%) considered that such e-mails wasted their time and some (25%) were not happy that their e-mail address was being used without their consent. [Image of Complaint Cases] Taking of photographs by a magazine The complainant complained to the Privacy Commissioner that, when she was walking in the streets on a certain day, her photograph was taken by a photographer acting for a magazine, without her knowledge or consent. The photograph was subsequently published in the magazine, accompanied by unflattering comments on her dress style. The matter caused embarrassment and inconvenience to the complainant among her clients and colleagues. After an investigation of the case, the Commissioner decided that the magazine contravened data protection principle 1 of the Ordinance as the personal data of the complainant in her photograph were collected through unfair means. The magazine subsequently lodged an application to the Court of First Instance for an order of certiorari quashing the Commissioner's decision. The trial judge upheld the Commissioner's decision, but mentioned in his judgment his serious doubt about whether the photograph in question amounted to the complainant's personal data. The magazine appealed. The Court of Appeal reversed by 2 to 1 the decision in the Court of First Instance, and quashed the Privacy Commissioner's finding of contravention. Summary of the Court of Appeal's decision:
The Commissioner decided to accept the Court of Appeal's decision and subsequently amended its complaint handling policy to take into account the decision. [Image of Tech Talk] Personal Data Privacy and E-commerce The advent of Internet as a global medium has seen the phenomenal growth of millions of Internet users who log on to Internet for information, communications and electronic commerce. However, accompanying this novel phenomenon are significant issues of trust and confidence of the consumers in doing business on the Internet. Consumers are concerned with the suppliers' identity, integrity of information, validity of electronic contract, as well as data privacy and security. Such trust and confidence issues have a significant and negative impact on electronic commerce from reaching its promised potentials. In Hong Kong, personal data are legally protected by the Personal Data (Privacy) Ordinance ("the Ordinance"). From the perspective of compliance in cyberspace activities with the Ordinance, our office adopts a basic premise that: "What is illegal off-line is also illegal on-line". Below are some typical examples of possible infringement of the Ordinance in Internet activities:
It is the Government policy to establish Hong Kong as an information society and a global player in electronic commerce. Apart from building our physical and business in[Image of image]frastructure, ensuring trust and confidence of our consumers would enhance our effective reach for this goal. Complementing the regulatory requirements of the Ordinance, the PCPD is working with various parties to implement self-regulatory initiatives pertinent to the protection of data privacy. It has been working closely with the Hong Kong Society of Accountants with its launch of the WEBTRUST seal in 2000 for local web sites, the display of which at a web site provides assurance to consumers of its compliance with a set of auditable principles and procedures which protect consumers' interests including data privacy. The PCPD has also worked with the Hong Kong Internet Service Providers Association (HKISPA) and the Office of the Telecommunications Authority (OFTA) on the development of a Spamming Code of Practice for compliance by the ISPsin Hong Kong to reduce the amount of spamming activities which are regarded by many as nuisance and privacy intrusive. Through the active promotion of the requirements of the data protection principles and the Ordinance for incorporation into the implementation plans for electronic businesses and services, consumers are encouraged to embrace the new economy with confidence and trust. [Image of Common Q & As] [Image of image] [Image of image] [Image of image] [Image of image] [Image of PCPD Activities] Code
of Practice on Human Resources Management The PCPD will issue in September 2000 the Code of Practice on Human Resources Management for the protection of personal data privacy in relation to HRM practices. The Code will govern the collection, retention, use, security and other aspects of handling of personal data by HRM practitioners. Having considered the comments received during the public consultation period from September to December 1999, the PCPD has decided that the Code will apply to all employers irrespective of size. Another key issue in the Code is the retention of personal data by employers. As distinct from the draft Code which set different retention periods for various classes of personal data, current consideration is leaning towards the retention periods for personal data being simplified with two major categories: (i) in general, employers should be permitted to retain the personal data of unsuccessful job applicants no longer than 2 years after the rejection of the candidates; and (ii) unless there are other legal requirements, or there is a subsisting purpose for so doing, personal data of former employees should not be retained by employers for a period of longer than 7 years. PCPD issued guidance on electioneering activities On 10 June, Mr Tony Lam, Deputy Privacy Commissioner for Personal Data, attended the "Briefing Session for Candidates of the 2000 Legislative Council Election Committee Subsector Elections" orgainzed by the Electoral Affairs Commission to brief candidates of the 2000 Legco Election on the collection and use of personal data of prospective voters for electioneering purposes. The PCPD also issued a guidance note: "Guidance on Electioneering Activities", which can be found on the PCPD web site at www.pcpd.org.hk [Image of image]PCPD issued guidance notes to telecommunication companies Since the commencement of the Ordinance in December 1996 up to June 2000, among the complaints received by the PCPD, 157 cases were against telecommunication companies. The industry ranks second after the financial sector in terms of the number of complaints received by the PCPD. The majority of the complaints are against mobile phone service operators. To reflect its concern to the industry, the PCPD met with representatives of the Telecom Association of Hong Kong and major industry players in July 2000. In addition, the PCPD also issued guidance notes to mobile phone service operators to assist them in complying with the requirements of the Ordinance. The guidance notes can be found on the PCPD web site at www.pcpd.org.hk. Resources provided by the PCPD:
|
| Back to top |
End of Page
[Annual Report] [Code of Practice/ Guideline & Explanatory Booklet] [Consultation Document/ Report] [Newsletter] [Guidance Note & Fact Sheet] [Leaflet & Form] [Opinion Survey] [Others] [Investigation Report / Inspection Report] [Information Book]
[About PCPD] [The Ordinance] [Review of the
Ordinance] [PCPD Activities]
[Information Centre] [Privacy
Zone for Youngsters]
[Publications & Videos]
[Enquiries & Complaints]
[Case Notes] [Contact
Us] [Search] [Site
Directory] [Graphical Version]
[Chinese Version]
Notice/Copyright 2001 Office of the Privacy Commissioner for Personal Data, Hong Kong. All rights reserved. Disclaimer