By Kefa Senoga
It is not uncommon for people to post on the Internet, informing their followers on social media about an impending trip, and where they will be going. However, such actions, according to an online safety expert, could jeopardize one’s security.
Baker Birikujja, the Manager for Compliance and Investigations at the Ugandan Government’s Personal Data Protection Office (PDPO), said when people use social media to share their locations and upload photos of their travels on a regular basis, it makes it easy for people with bad intentions to harm them.
Making a case for data privacy and security at Uganda Christian University (UCU), Birikujja urged the students to pay more attention about the kind of information they share on the internet and with whom they share what information.
“Only share information with people you trust, anything you upload on the internet can be stored and used against you,” Birikujja told students during an address on January 24. The event was organized by the Computing Sciences and Engineering Students’ Association in the UCU Faculty of Engineering, Design and Technology.
“You may not have something to hide, but there are people who value your data and they could use it for not-good intentions,” Birikujja counseled.
His call came as part of activities to preach the importance of personal information, as the world marked the International Data Privacy Week, January 21 to 26. The International Data Privacy Day is celebrated every January 28.
Birikujja, a lawyer, also referred to the risk associated with downloading some mobile applications (apps). He said some apps collect sensitive information about the phones on which they have been installed, as well as the digital profiles of the users.
In a study conducted from 2018 to 2020, Privacy International, a global agency that works to promote the human right to privacy, reported it was discovered that some menstruation-related applications were sharing certain sensitive information with companies such as Facebook, without user knowledge.
“Out of the 36 apps we tested, we found that 61% automatically transfer data to Facebook the moment a user opens the app. This happens whether the user has a Facebook account or not, and whether they are logged into Facebook or not,” Privacy International wrote on their site.
It added: “We also found that some of those apps routinely send Facebook incredibly detailed and sometimes sensitive personal data. Again, it didn’t matter if people were logged out of Facebook or didn’t have an account.”
However, in a response, Facebook said: “Developers can receive analytics that allow them to understand what the audience of their app enjoys and improve their apps over time. Developers may also use Facebook services to monetise their apps through Facebook Audience Network.”
Ddumba Timothy, the interim chairperson of the UCU Cyber Security Chapter, said they intend to organize more awareness campaigns to teach people how to keep their data private. Ddumba said they distributed fliers with information on data privacy, such as teaching readers how to safeguard their passwords, for instance, by changing them frequently.
In 2019, Uganda’s President Yoweri Museveni assented to the Data Protection and Privacy Bill, making it law. The Data Protection and Privacy Act, 2019 protects the privacy of an individual and personal data by regulating the collection and processing of personal information. The Act also provides for the rights of the persons whose data is collected and the obligations of data collectors, data processors and data controllers as well as regulates the use or disclosure of personal information and for related matters.