Source: pitb.gov.pk/privacy_policy
Does PITB have an international-standard Data Management Policy?
Are project managers and core software developers at PITB bound to sign NDAs? If not, why?
Is there a vigilance mechanism in place to ensure that PITB staff does not keep copies of official data or recklessly upload entire source codes online?
Has PITB ever conducted external/third-party digital forensic analyses of their critical information infrastructure, including data centre and computer systems/laptops/devices used by core developers?
Have lawmakers in Punjab (government/opposition) ever discussed data security issues with PITB?
Will NGOs that are members of the Punjab Development Network (PDN) have login-enabled access to this new Relief Management System app? If yes, have appropriate security guidelines and liabilities been shared with them?
To what extent is NADRA responsible for contributing to the integrity of this new PITB app?
Who is the Chief Information Security Officer (CISO) or equivalent in PITB?
Who is that ONE person/entity to be held responsible if the new Relief Management System app leads to another sensitive data spill?
[End]