12/6/2001

"There are significant privacy issues for government agencies to address in implementing Public Key Infrastructures", said Timothy Pilgrim, Deputy Privacy Commissioner as he issued the Office's consultation paper "Privacy Issues in the Use of Public Key Infrastructure for Individuals" for public comment. The Office has worked with the National Office for the Information Economy on this project.

"I believe that in the right circumstances, this technology can be used to enhance individual privacy," said the Deputy Privacy Commissioner Timothy Pilgrim. However, a Public Key Infrastructure (PKI) may compromise privacy if not implemented and administered in privacy friendly way.

"This is why we need to consult widely with consumers and other interested individuals" said Mr Pilgrim. "We need to know whether we have addressed all the issues, and whether people believe the measures we have recommended are reasonable and will provide adequate protections for personal information" he said. The consultation will inform the Office's decision to issue privacy guidelines. "Consumer views will be crucial in identifying issues to be addressed by the guidelines" said Mr Pilgrim.

"Greater provision for online services presents an exciting option for individuals in their dealings with government. This is particularly significant for regional and remote communities, as it could support online applications for a range of government services. Nevertheless, where online interactions replace traditional face to face dealings, we have to think carefully about how privacy is maintained", said Mr Pilgrim.

We have been and will continue to work with key stakeholders including consumer representatives, and interested individuals to make sure we ask the right questions of government agencies seeking to implement PKI. Government agencies will need to consider carefully how and when they use PKI, ensuring they allow their clients to continue to use other means of doing business with them when appropriate, said the Deputy Commissioner.

"Our Office welcomes this opportunity to contribute to making government services more available, more reliable, and in a way that respects privacy", said Mr Pilgrim.

The Office of the Privacy Commissioner seeks to ensure that its consideration of privacy issues is well informed and based on wide consultation. Organisations and individuals are encouraged to consider the issues raised in the consultation paper and provide the Office with feedback. Copies of the report are available at www.privacy.gov.au/aboutus/consult#4 and through the hotline on ph 1300 363 992. The closing date for submissions is 27 July 2001.

Background

The federal government has developed the Public Key Infrastructure (PKI) system known as Gatekeeper to facilitate the take up of online delivery of government services in Australia. Gatekeeper sets up some structures that will protect the privacy of users but does not address all of the potential issues.

The National Office for the Information Economy (NOIE) manages the Gatekeeper project and has invited the Privacy Commissioner to consider issuing guidelines on the privacy implications of its use and to outline good practices for federal government agencies that intend to use PKI for individuals.

Consultation paper: Public Key Infrastructure Privacy Guidelines (HTML version229 kb or ZIP format 340 kb)