Vaccination passports may make it easier to get back to normal, but there are also concerns about what kind of personal data they collect and how well they protect it. According to Tony Anscombe, the head of public information at issues ασφάλειας στην παγκόσμια εταιρεία cyber securityς ESET, να τι πρέπει να γνωρίζουμε.
Throughout the COVID-19 pandemic, technology has taken center stage, but not without presenting some issues and challenges.
Applications, for example, used to prove vaccinated or to validate medical examinations, are among the latest in a long list of technologies that have been the focus of interest and are raising concerns about the protection of privacy. life and safety.
And while many authorities have avoided applying vaccination requirements to return to normalcy - such as eating out at a restaurant or attending a concert or show - as this could be seen as a human rights violation, the Delta variant forces to review.
As countries, states, and cities slowly return to everyday life and allow mass gatherings and events indoors, they often require proof of either vaccination or a negative COVID-19 (or both) diagnostic test.
The need for vaccination passports is growing and has two distinct elements: the first is the right to privacy and the second is how technology can be utilized to ensure the desired functionality.
Whatever the solution offered by the government, the state or the healthcare provider, it should by definition offer security and protection of our privacy, while at the same time this solution should include so much data that you can be sure that you are the one who did it. the vaccine or test.
According to Tony Anscombe, ESET Chief Security Evangelist, some of the features he suggests to consider when using the Digital Vaccine Passport Application are:
1. To create a Covid passport only some basic data is required: name, date of birth and date of vaccination. This data is sufficient to validate that the vaccination has taken place and, if necessary, to cross-check the holder's identification with another document such as a driver's license.
2. Communication and all stored data must be encrypted.
3. The privacy policy should state the purpose of the application and that no personal information is disclosed to third parties.
4. Δε θεωρείται αποδεκτή καμία προσπάθεια εντοπισμού τοποθεσίας ή άσκοπη συλλογή data, πέραν από τα δεδομένα που χρησιμοποιεί η συσκευή για τη βελτίωση της εμπειρίας του χρήστη.
5. Apps should only be installed from official sources, such as the Apple App Store or the Google Play Store.
6. Σε χώρες που έχουν υιοθετήσει το Γενικό Κανονισμό Προστασίας Δεδομένων (GDPR) ή παρόμοια νομοθεσία για την προστασία της ιδιωτικής ζωής, όπως η CCPA, οι εφαρμογές θα πρέπει να δεσμεύονται από το σχετικό κανονισμό για την προστασία της ιδιωτικής ζωής, ώστε να διασφαλίζεται ότι το υποκείμενο των data, το άτομο, έχει την απαραίτητη προστασία της ιδιωτικής ζωής και ασφάλεια.
