<table cellspacing="0" cellpadding="0" border="0"><tr><td valign="top" style="font: inherit;"><p>Is this a matter of cybersecurity and privacy right (confidenciality ). Someone please enlighten. If so don't we have a functional organ that seeks to limit the extend of exposure of private info data from online <br>
Or ofline access <br><br></p>
<p>Sent from Yahoo! Mail on Android</p>
</td></tr></table> <div id="_origMsg_">
<div style="font-family:arial, helvetica, sans-serif:font-size:10pt">
<br />
<div style="font-family:times new roman, new york, times, serif;font-size:12pt">
<font size="2" face="Tahoma">
<hr size="1">
<b>
<span style="font-weight:bold;">From:</span>
</b>
Esther Muchiri <emuchiri@andestbites.com>; <br>
<b>
<span style="font-weight:bold:">To:</span>
</b>
<memakunat@yahoo.com>; <br>
<b>
<span style="font-weight:bold:">Cc:</span>
</b>
'KICTAnet ICT Policy Discussions' <kictanet@lists.kictanet.or.ke>; <br>
<b>
<span style="font-weight:bold:">Subject:</span>
</b>
Re: [kictanet] Has IEBC Voter Register Been Compromised <br>
<b>
<span style="font-weight:bold;">Sent:</span>
</b>
Tue, Feb 12, 2013 6:57:27 PM <br>
</font>
<br>
<table cellspacing="0" cellpadding="0" border="0">
<tbody>
<tr>
<td valign="top" style="font:inherit;"><div class="WordSection1"><p class="MsoNormal"><span style='color:black;'>Joe – yes, ‘truecaller’ works. </span></p><p class="MsoNormal"><span style='color:black;'> </span></p><p class="MsoNormal"><span style='color:black;'>Last week I met an old friend in town and when I gave her my phone number, she dialed it to confirm and my full name appeared on her phone! That was real ‘weird’…</span></p><p class="MsoNormal"><span style='color:black;'> </span></p><p class="MsoNormal"><span style='color:black;'>Esther </span><span style='font-size:11.0pt;font-family:"Calibri", "sans-serif";color:black;'></span></p><p class="MsoNormal"><span style='color:black;'> </span></p><div style='border:none;border-top:solid #B5C4DF 1.0pt;padding:3.0pt 0in 0in 0in;'><p class="MsoNormal"><b><span style='font-size:10.0pt;font-family:"Tahoma",
"sans-serif";'>From:</span></b><span style='font-size:10.0pt;font-family:"Tahoma", "sans-serif";'> kictanet [mailto:kictanet-bounces+emuchiri=andestbites.com@lists.kictanet.or.ke] <b>On Behalf Of </b>Joseph Mucheru<br><b>Sent:</b> Tuesday, February 12, 2013 9:22 PM<br><b>To:</b> emuchiri@andestbites.com<br><b>Cc:</b> KICTAnet ICT Policy Discussions<br><b>Subject:</b> Re: [kictanet] Has IEBC Voter Register Been Compromised</span></p></div><p class="MsoNormal"> </p><p>Does anyone else on the list use the app "truecaller" this is a global app and links caller names with their phone numbers from social networks and other online sources.</p><p><a rel="nofollow" target="_blank" href="http://www.truecaller.com">www.truecaller.com</a>:</p><p>Search and find people all over the world with number lookup and get info from Truecaller, Facebook And LinkedIn</p><p>Joe Mucheru</p><div><p class="MsoNormal">On Feb 12, 2013 4:57 PM, "Grace
Mutung'u (Bomu)" <<a rel="nofollow" ymailto="mailto:nmutungu@gmail.com" target="_blank" href="javascript:return">nmutungu@gmail.com</a>> wrote:</p><p class="MsoNormal">when the voter register was open for inspection, anyone with your ID<br>Number could have accessed your voter information.....<br>but again, i am advised that voter information is not private....so<br>if thats the case, then to what extent do data protection laws apply<br>to the voters register? and is it unauthorized access if i check<br>others registration details?<br><br>2013/2/12, Harry Karanja <<a rel="nofollow" ymailto="mailto:kkairo@gmail.com" target="_blank" href="javascript:return">kkairo@gmail.com</a>>:</p><div><p class="MsoNormal" style='margin-bottom:12.0pt;'>> On interrogation of legislation I've actually found that the Kenya<br>> Communication (Amendment) Act imposed stiff penalties for unauthorized<br>> access of data. So
whether it came from retail agents or telcos (which is<br>> highly improbable) this MP is not supposed to have my data. I'd also<br>> discount the idea of cell broadcasting - which to the best of my knowledge<br>> had not been activated in Kenya for commercial use. The SMS originated from<br>> a UK number.<br>><br>> What is indisputable is that the aspiring MP accessed my personal data<br>> without authorization. The next challenge is who should be held accountable<br>> and how do I do this? As mentioned earlier, targeted campaigning or<br>> marketing is only one use of this data - but what if someone based on my<br>> surname surmises that I do not fit into the electoral map, will there be<br>> another form of targeting to evict me from that constituency? (Here lies the<br>> futility of SIM registration as these SMS can easily be sent from UK or<br>> India)<br>><br>> The fears I have are real, for
its happened before, and as most on this list<br>> can attest, technology has the power to make this process more efficient.<br>><br>> Regards,<br>> Harry Karanja<br>><br>> Sent from my iPad<br>><br>> On Feb 11, 2013, at 10:40 AM, Edith Adera <<a rel="nofollow" ymailto="mailto:eadera@idrc.ca" target="_blank" href="javascript:return">eadera@idrc.ca</a>> wrote:<br>><br>>> Harry,<br>>><br>>> Indeed the sources are many as others have said. Do we have a data<br>>> protection law (and FOI law) in place? Or the 10th parliament left<br>>> “hurriedly” without enacting it?<br>>><br>>> The scenarios of how an individual voter can be targeted are many and<br>>> scary, to say the least.<br>>><br>>> Edith<br>>><br>>> From: kictanet<br>>> [mailto:<a rel="nofollow" ymailto="mailto:kictanet-bounces%2Beadera" target="_blank"
href="javascript:return">kictanet-bounces+eadera</a>=<a rel="nofollow" ymailto="mailto:idrc.ca@lists.kictanet.or.ke" target="_blank" href="javascript:return">idrc.ca@lists.kictanet.or.ke</a>] On Behalf Of<br>>> Harry Karanja<br>>> Sent: February 10, 2013 10:44 PM<br>>> To: Edith Adera<br>>> Cc: KICTAnet ICT Policy Discussions<br>>> Subject: [kictanet] Has IEBC Voter Register Been Compromised<br>>><br>>> Listers,<br>>><br>>> This morning I received the oddest message. Through a bulk sms provider,<br>>> one of the aspirants for MP in my constituency sent me an SMS appealing me<br>>> to vote for him in the upcoming elections? Now I say odd because to the<br>>> best of my knowledge I have never communicated to this politician my<br>>> number and my constituency. In fact the only person I have ever given this<br>>> dual information is the IEBC during voter
registration.<br>>><br>>> Which begs the question, could IEBC or its registration clerks be making<br>>> voter registers available to politicians for consideration or otherwise?<br>>> I'm also curious if this is an isolated event or its happening elsewhere?<br>>><br>>> Now I don't need to emphasize on the very serious implications if<br>>> politicians are in possession of such specific data on the electorate. I<br>>> previously blogged<br>>> (<a rel="nofollow" target="_blank" href="http://www.startupkenya.info/2010/08/chopping-up-big-green-giant-safaricom.html">http://www.startupkenya.info/2010/08/chopping-up-big-green-giant-safaricom.html</a>)<br>>> on the dangers of telcos in possession of too much personal data, but it<br>>> is nothing compared to politicians with this data especially in a country<br>>> that has experienced deadly post election
violence.<br>>><br>>> I'm curious what measures IEBC has in place for the protection of our<br>>> personal information and if my experience this morning portends the<br>>> compromise of all future governmently held e-data?<br>>><br>>> Regards,<br>>> Harry Karanja<br>>><br>>> Sent from my iPad<br>><br><br></p></div><p class="MsoNormal"><span style='color:#888888;'>--<br>Grace L.N. Mutung'u (Bomu)<br>Kenya<br>Skype: gracebomu<br>Twitter: @Bomu<br>Website: <a rel="nofollow" target="_blank" href="http://www.diplointernetgovernance.org/profile/GraceMutungu">http://www.diplointernetgovernance.org/profile/GraceMutungu</a></span></p><div><p class="MsoNormal"><br>_______________________________________________<br>kictanet mailing list<br><a rel="nofollow" ymailto="mailto:kictanet@lists.kictanet.or.ke" target="_blank" href="javascript:return">kictanet@lists.kictanet.or.ke</a><br><a rel="nofollow"
target="_blank" href="https://lists.kictanet.or.ke/mailman/listinfo/kictanet">https://lists.kictanet.or.ke/mailman/listinfo/kictanet</a><br><br>Unsubscribe or change your options at <a rel="nofollow" target="_blank" href="https://lists.kictanet.or.ke/mailman/options/kictanet/mucheru%40google.com">https://lists.kictanet.or.ke/mailman/options/kictanet/mucheru%40google.com</a><br><br>The Kenya ICT Action Network (KICTANet) is a multi-stakeholder platform for people and institutions interested and involved in ICT policy and regulation. The network aims to act as a catalyst for reform in the ICT sector in support of the national aim of ICT enabled growth and development.<br><br>KICTANetiquette : Adhere to the same standards of acceptable behaviors online that you follow in real life: respect people's times and bandwidth, share knowledge, don't flame or abuse or personalize, respect privacy, do not spam, do not market your wares or
qualifications.</p></div></div></div></td>
</tr>
</tbody>
</table>
</div>
</div>
</div>