Subscribe
  • Home
  • /
  • TechForum
  • /
  • Recent IRS fraud reinforces importance of data protection laws (POPI Act)

Recent IRS fraud reinforces importance of data protection laws (POPI Act)

The recent IRS fraud reinforces the importance of data protection laws such as the POPI Act, says Alison Treadaway, director at Striata.


Johannesburg, 01 Jun 2015
Alison Treadaway, Director at Striata
Alison Treadaway, Director at Striata

Do not underestimate the personal and financial risk that exists in the sharing of your identity information, warns Alison Treadaway, Director at secure customer communications specialist, Striata.

Citing the recent incident in which identity data was used to defraud the Internal Revenue Service (IRS), Treadaway says: "This is a wake-up call for anyone who views identity theft as a low-risk crime. Now that personal documents such as payslips, tax returns and bank statements are available online, you cannot be too careful about protecting your highly valuable personal information."

The IRS incident involved a three-step scam in which the perpetrators allegedly used information such as social security numbers, birth dates and addresses stolen from unknown sources to access tax returns on the IRS document archive. The tax returns were then used to claim fraudulent refunds.

Says Treadaway: "While the IRS's financial loss is grave, at $50 million, the real public interest issue is the 100 000 individuals whose identities, including earnings and asset information, have been horribly compromised. This should be ringing global alarm bells as a definite warning about the dangerous combination of reckless information sharing and bad security practices in the data chain."

While the origin of the stolen identities is not clear in the case of the IRS fraud, Treadaway sees this as evidence of multiple parties in the chain being too casual about data protection, including, possibly, the data owner.

"Data security starts with you. You cannot expect your bank, employer or government to be solely responsible for protecting your personal information. Just like you wouldn't leave your bank statement lying in a public place, don't give your personal information to an organisation or individual you don't know and trust."

Why this incident reinforces the need for the POPI Act (South Africa)

"Although viewed as onerous by some, the Protection of Personal Information Act (POPI) is designed to reduce the likelihood of disasters such as the IRS breach, by forcing organisations to tighten their data security or face penalties. Consumers should welcome this legislation as it affords each individual rights over the use of their personal information, and recourse in the event of a breach."

But, Treadaway highlights that government has, to date, only set guidelines and quantified penalties. "We need follow-through on the establishment of a regulator, a deadline for compliance and then we must start seeing active policing of risky or unlawful processing of data."

The POPI Act is clear on what is required from organisations, but with the absence of time pressure, some may delay the interventions that are needed to adequately secure the data they gather, store and process. A casual attitude towards implementing the necessary policies and procedures extends the window of opportunity for data theft and exposes more individuals to fraud.

"A more digital world has fostered a more sophisticated criminal," says Treadaway, "and only with a concerted effort from all stakeholders - government, business and individuals - can we keep our personal information safe."

Alison Treadaway, Director at Striata

Alison Treadaway is a director at global paperless communication specialist, Striata. She is involved in defining business strategy, nurturing organisational culture, promoting employee wellness and mentoring talent.

Passionate about organisational culture, she is particularly interested in protecting and enhancing Striata's stories, traditions and unique approach to achieving success. To this end, she interviews 90% of approved candidates to ensure Striata's work ethic and social culture will continue to thrive as the organisation globalises.

Treadaway has 19 years of experience in the ICT sector, having worked at Internet Solutions and Dimension Data prior to joining Striata in 2002. She holds a Bachelor of Arts (languages, Wits) and a post-graduate diploma in business administration from Wits Business School.

Share

Striata

Striata unlocks the power of e-mail and mobile messaging. Striata combines superior electronic delivery solutions with advanced e-mail deliverability services to increase customer adoption of paperless bills, statements, policies, marketing and other high volume system-generated documents.

The world's largest financial services, utility, insurance, retail and telecommunications companies achieve unrivalled results by replacing print and mail with Striata's interactive electronic documents and transactional messages.

Striata's enterprise platform, strategy and support services:
* Drive significant paper suppression;
* Deliver ongoing cost savings;
* Accelerate payments;
* Enhance the customer experience;
* Enable regulatory compliance; and
* Deliver measurable return on investment.

Striata's comprehensive solutions expand the digital dialogue through personalised customer life cycle messaging, retail receipts, notifications and alerts.

A global paperless communications specialist with over a decade of experience, Striata has operations in New York, London, Johannesburg, Hong Kong, Sydney and partners in North and Latin America, Europe and Asia Pacific.

Web site: www.striata.com

Editorial contacts

Marketing
Striata
marketing@striata.com