The Personal Data (Privacy) Ordinance and Octopus Card System 
The Personal Data (Privacy) Ordinance and Octopus Card System
Lam Ka Chun
3035069794
The University of Hong Kong
CCST9029 Cyberspace Crime: Technology and Ethics
Dr. K.P. Chow
Ms. Chan Vivien Pui Shan
Abstract
This article is about the leakage of data of the Octopus card company. In 2010 , Octopus sold the information of their clients to 6 companies for promotion and made a profit of 44 million Hong Kong dollars over 4.5 years .In view of the case of Octopus case, this article will go through three part to study it : technical aspect, ethical aspect and legal aspect. It will also suggest feasible suggestions.
The dis-honest company led a leakage of personal data:
Octopus Card Company
Introduction of Octopus card company
According to the statistics, 95% of those between the ages of 16 and 65 have an Octopus and Octopus processes over 12 million transactions a day. The card is accepted by more than 100 transportation service providers and 160 retailers, including 7-Eleven, Starbucks, and Park & Shop. It can also be used at pay phones, photo booths, and parking garages. This reveals that the octopus is commonly and widely used. Also implied that the leakage of personal data influences a lot of people.
Technical Issue
In terms of technical Issue, Octopus card is a rechargeable contactless stored value smart card used widely in transportation and retail business. How can it transfer the money without contact? It is because it used the technique of Radio Frequency Identification (RFID).
We will go into deeper of the RFID. RFID is the use of a wireless non-contact system that uses radio-frequency electromagnetic fields to transfer data from a tag attached to an object, for the purposes of automatic identification and tracking. The Octopus card requires no battery and are powered and read at short ranges via magnetic fields (electromagnetic induction). The tag contains electronically stored information which can be read from up to several meters
Lam Ka Chun
3035069794
The University of Hong Kong
CCST9029 Cyberspace Crime: Technology and Ethics
Dr. K.P. Chow
Ms. Chan Vivien Pui Shan
Abstract
This article is about the leakage of data of the Octopus card company. In 2010 , Octopus sold the information of their clients to 6 companies for promotion and made a profit of 44 million Hong Kong dollars over 4.5 years .In view of the case of Octopus case, this article will go through three part to study it : technical aspect, ethical aspect and legal aspect. It will also suggest feasible suggestions.
The dis-honest company led a leakage of personal data:
Octopus Card Company
Introduction of Octopus card company
According to the statistics, 95% of those between the ages of 16 and 65 have an Octopus and Octopus processes over 12 million transactions a day. The card is accepted by more than 100 transportation service providers and 160 retailers, including 7-Eleven, Starbucks, and Park & Shop. It can also be used at pay phones, photo booths, and parking garages. This reveals that the octopus is commonly and widely used. Also implied that the leakage of personal data influences a lot of people.
Technical Issue
In terms of technical Issue, Octopus card is a rechargeable contactless stored value smart card used widely in transportation and retail business. How can it transfer the money without contact? It is because it used the technique of Radio Frequency Identification (RFID).
We will go into deeper of the RFID. RFID is the use of a wireless non-contact system that uses radio-frequency electromagnetic fields to transfer data from a tag attached to an object, for the purposes of automatic identification and tracking. The Octopus card requires no battery and are powered and read at short ranges via magnetic fields (electromagnetic induction). The tag contains electronically stored information which can be read from up to several meters