DATA PRIVACY OF JOLLIBEE CUSTOMERS AT RISK

Posted by AsiaViews | May 10, 2018 | 0 |

PHILIPPINES

Philippine Daily Inquirer-May 10

The National Privacy Commission (NPC) gave popular fast-food chain Jollibee Foods Corp. (JFC) 10 days to come up with a plan to rehabilitate the vulnerabilities in its website, which, if exploited, could expose the data of millions of patrons.

About 18 million people are at “high risk” of having their data exposed to harm, given that they are currently under Jollibee’s vulnerable online delivery database.

In response to this, NPC ordered a handful of measures to be implemented by the company, including the suspension of JFC’s online delivery system until the site’s vulnerabilities are addressed.

According to an NPC media advisory, the commission already sent JFC the official order on Tuesday afternoon, launching the 10-day countdown. NPC told the popular fast-food chain to come up with a security plan within 10 days, which would “ensure the integrity and retention of the database and its content.”

On top of this, NPC also ordered JFC to “employ privacy by design” in reengineering JFC Group’s data infrastructure. Jollibee should also conduct a new privacy assessment, while filing a monthly progress report until the issues in the system are addressed.

When asked what kinds of personal information were accessed, Francis Euston Acero, who leads NPC’s Complaints and Investigations Division (CID), said that the government hid which data were at risk on purpose.

Nevertheless, he said it was the same as Wendy’s Philippines, another fast-food chain that faced similar privacy concern. The difference, however, is that Wendy’s had been breached, while JFC only has the potential to be hacked given the vulnerabilities.

“We withheld that information deliberately because giving that information would give potential attackers avenues in,” he said in a previous phone interview with the Inquirer.

JFC data protection officer J’Mabelard M. Gustilo first notified NPC about the risk in December last year, when then-unknown people were able to gain access to its delivery website.

Upon investigation, NPC’s Complaints and Investigation Division (CID) found out that this was a result of a proof-of-concept initiative by a marketing public relations team “who made representations to a domestic cybersecurity firm.”

CID later invited the cybersecurity firm, who said they noticed a “security gap” within the system.

About The Author

AsiaViews

Leave a reply Cancel reply

Neigborhood Watch

Subscribe To Newsletter

POINTS TO PONDER

EXTRICATING NDONESIAN CHILDREN FROM ISIS INFLUENCE ABROAD

Indonesia urgently needs to revisit the possibility of repatriating the neediest of its young citizens stranded abroad, whose families had earlier joined ISIS. Most of these children are in camps in northern Syria but there are also small numbers in the Philippines, Afghanistan and Iraq. “Extricating Indonesian Children from ISIS Influence Abroad”, the latest report from the Institute for Policy Analysis of Conflict (IPAC) argues that the government could begin by bringing back small groups of unaccompanied children under ten years of age, who pose minimal security risk and are most vulnerable to deteriorating conditions in the camps.“The problem is that health and security conditions are worsening by the day in the Syrian camps, and the children are growing older,” says Dyah Kartika, IPAC analyst. “They need access to schools, a nurturing environment, and medical attention. If the government waits too long, the children will be further exposed to ISIS ideology.” The new report examines a 2019 list of Indonesians in camps and prisons run by the Kurdish Syrian Democratic Forces (SDF). The Indonesian government has been trying to verify their citizenship, but with pseudonyms, misspellings and bad transliterations, it is a daunting task. At the time the data was collected, between March and June 2019, there were 555 Indonesians in SDF camps and prisons, including 367 children. Among the children, approximately 277 were under the age of ten and 34 were unaccompanied. In June 2021, there are fewer than ten children who are both unaccompanied and under the age of ten that could be prioritized for return. Bringing back children of ISIS families is no easy task. The report analyses the main challenges faced by the Indonesian government. These include definitional issues, bureaucratic competition, the difficulty of verifying nationality, evaluating the toll of exposure to conflict, assessing security risk, and finding relatives or others willing to provide care once the children are returned. In addition, COVID has meant stringent restrictions on travel, placing further obstacles in the way of repatriation. There are several models for rehabilitation of children exposed to violent extremism in Indonesia that could be modified to accommodate the needs of children repatriated from abroad. The report examines these models and argues that the government does not need to have every detail of rehabilitation programs in place before it starts extricating children from ISIS influence. It can start by bringing back the most vulnerable children and then modify programs as needed.

“It’s important that the government see these children as victims” says Dyah. “They deserve a chance to be children again.”

DATA PRIVACY OF JOLLIBEE CUSTOMERS AT RISK

Share this:

Related

About The Author

AsiaViews

Related Posts

Conspiracy Talk Leading Myanmar Down a Dangerous Path

SINGAPORE:CELEBRATING A DIVERSE CULTURAL TAPESTRY

Stop the Racist Monks Before It’s Too Late

CAMBODIA: General’s Gun Smuggling Ring Busted

Leave a reply Cancel reply

Neigborhood Watch

TRENDING

Subscribe To Newsletter

POINTS TO PONDER