Speaking during a panel entitled “Protection of personal data and digital identity”, Mr. Omar Seghrouchni, President of the National Commission for the Control of the Protection of Personal Data (CNDP) mentioned a deliberation of the Commission, in 2020, which laid the foundations for guidelines on an architecture of identifiers recommending the separation of storage locations for usage data and those for authentication data.
He added that the commission also proposed the establishment of a national trusted third party dedicated to authentication to avoid each service provider (bank, insurance, logistics, administration, etc.) having to equip itself with an internal biometric database.
Mr. Seghrouchni stressed the need to properly manage digital identity management, to make it a building block of true trust within the digital society under construction.
He also called for the establishment of an “international framework” dedicated to identity management to bring together legal visions of this issue and operational visions.
This proposal has attracted particular interest from representatives of data protection bodies in the Southern Mediterranean (Algeria, Egypt, Jordan, Lebanon, Morocco, Tunisia).
The official also called for the establishment of a map of unique sectoral identifiers, the aim being to guarantee optimal protection of the privacy and personal data of citizens.
He noted that today, the scope of protection must be extended to all areas, particularly the behavioral aspect, raising in the same vein the question of the management of legal continuity.
Mr. Seghrouchni also insisted on the imperative of separating authentication data from usage data, indicating that access to databases should not be open to everyone to avoid any slippage.
He then mentioned the consultation on genomic information and DNA databases recently launched by the CNDP.
The work of the panel was also marked by the presentation of Moroccan reflections and experience, in particular the collaboration plan between the General Directorate of National Security, manager of sovereign identity and the CNDP, authority in charge of controlling the protection of personal data.
On the sidelines of this day, Mr. Seghrouchni, who is also president of the Commission for the Right of Access to Information, held working meetings with Messrs. Adnène Lassoued, president of the National Authority for Access to Information in Tunisia and Chawki Kaddes, president of the National Authority for the Protection of Personal Data in Tunisia (INPDP).
This conference was organised with the support of the European Union and the Council of Europe within the framework of the “Project to Support Independent Bodies in Tunisia” (PAII-T) and the joint programme “Regional Support for the Consolidation of Rights, the Rule of Law and Democracy in the Southern Mediterranean”.
The topics on the agenda included “Personal data: a prime target for cybercriminals”, “How can States better protect them through cross-border cooperation?”, digital identity (biometric IDs, unique identifiers): what are the risks for individuals and the protection of personal data? and “How can personal data be protected in the context of the development of the digital economy and trade that goes beyond the borders of a single State?
2024-08-18 08:41:23