No. As I said, the results of an investigation into privacy breaches of 34,000 people through the GCKey system were released in February 2024.
At the time, we made a number of recommendations and found a number of issues, including that the CRA and government organizations had not sufficiently assessed the risk level.
A big issue is understanding how serious this is and the impact it has on people. It's not a conceptual thing. Fraud in the thousands of dollars causes stress and can have an impact on health. It also has an impact on people's time, because the money needs to be recovered and so on.
We found that security had been lacking, so we recommended that it be increased through multifactor verification.
We also found communication problems between decision-makers and departments. We then made several recommendations, all of which were accepted. I have to say that there was excellent co-operation with the agency during that time, and there still is.
Nevertheless, a breach occurred, and the necessary corrective measures must be taken.