The personal details of 20,000 people who made complaints about the police in Hong Kong have leaked onto the net. The apparently accidental leak of personal data submitted to Hong Kong's Independent Police Complaints Council (IPPC) has caused a huge flap in the Chinese city.
The database contained full details of complaints made from 1996 to 2004. Information included dates of complaints, the full names and addresses of complainants, details of alleged offences, names and other particular of allegedly bent cops, outcome of complaints and more. The breach was unearthed by webb-site.com, an independent site that monitors Hong Kong's corporate and economic governance.
Its editor, David Webb, reckons that the data might have been disclosed after a contractor working for the police copied a database onto a commercial server, possibly in the course of doing maintenance work. Circumstantial evidence (such as the format the data was leaked in) supports this hypothesis. However Webb's theory remains unconfirmed.
Roderick Woo, privacy commissioner for personal data, launched an inquiry into the mishap before any formal complaint was even received. Webb this week called for an investigation by an independent panel into the bigger issue of data security across all Hong Kong government organisations. ®