SKANDAL: Hoxhaj shows how private people data is exposed

Yet, unconscious ATK has caused a scandal, undermining the privacy of thousands of Kosovo Republic citizens who are registered in the ATK and therefore, in the Trust.

In the app to verify the worker's statement, all the information needed to see the employment mirror in ATK, is the personal number, exposing open and online all citizens whose personal number is available to many people and companies and can be found without any major difficulty.

App link: https://apps.atk-x.org/regempler

In such cases, even private institutions would establish other security measures besides the personal number to look at the employment mirror, as may be e-mail verification or phone number. No doubt, this display of privacy in the history of the employment of Kosovo citizens is also a violation of the law, because it also violates the Law for the Protection of Personal Data.

Even cyber security expert Mentor Hoxhaj has expressed concern for the open display of personal data from ATK. He has said citizens' data is exposed because of logical mistakes.

Hoxhaj wrote:

Privacy in Digital Age

Citizen data is exposed because of logical errors and not taking appropriate technical-logical measures, so that privacy and data are not exposed to third parties.

From the private aspect:

-Institutions have failed to take appropriate technical-logic measures to protect persons and privacy data.

-the institutions have not applied the rule/standard “privacy by design means that in case a service is applied it should be to take the right measures to keep personal data safe and preserve privacy.

- The institution has failed to anonymous data.

From the aspect of the security of the information, we have violations of “privacy” because data can be revealed to third parties.

The following picture illustrates what is stated above.

I have not outlined the measures to take if institutions want my expertise I welcome their invitation!

#PPD2022