If we’ve ever needed a reminder of the challenges Fiji faces growing into digital communications, the past few weeks has been it. Email, the most widely used Internet application for people in Fiji (as well as the rest of the world) is, once again, in the news and also getting a bit of a bad rap.
There is clearly a misunderstanding some people have about email and more specifically, email security. Although I’m not intimately-versed on Fiji’s laws regarding the privacy around electronic communications, suffice to say it lags a bit behind some other countries around the world, if it exists at all. I don’t personally believe this is a sign that people in Fiji are dragging their feet either. The reality is that the number of people in the country using the Internet in their daily lives is still quite small. Although it may be increasing, I’ll still estimate that less than 10% of the population is connected. If this number is correct, then clearly there are other things our lawmakers might find more pressing. However, the impact of not having legislation in place is what appears to be painful right now and that’s what’s making a difference.
As far as email is concerned, people should probably realise that when an email is sent, it effectively has the same level of security as a postcard openly dropped into a postbox. Yes, a postcard. Do not write something in an email which you wouldn’t feel comfortable writing on a postcard. Just as postcard’s pass through the hands of numerous people, so does the lowly electronic message. On a reassuring note, most people running networks aren’t really interested in snooping around your mail unless they really have nothing better to do. Finding a network administrator who has nothing better to do is a lot harder that people think.
These issues extend well beyond just email communications, too. They also include topics such as privacy. When consumers in Fiji sign up for loyalty programmes with retailers, for example, are they properly informed over what that retailer will do with their personal information? Do most people care? I think they should, especially in an environment where there may be unclear legislation protecting consumer privacy rights.
I actually like loyalty programmes and believe they can be run responsibly and to the benefit of consumers. However, I also believe people should be aware of what they’re giving up by joining these types of programmes. In some cases, just a little bit. In other cases, it’s difficult to tell because people are asked to read and sign four pages of conditions, written in 8 point type, using terminology requiring a doctorate from Oxford to understand.
Whether the topic is email or database marketing, the value of having legislation set is clear. A new survey from the American Management Association in the United States reported that 58% of 304 companies would sack workers for misusing company-provided email accounts or using the Internet to surf for improper material. The reason companies are so sensitive to workplace email is legal liability. If this type of liability is not yet defined, courts in Fiji will be unsure how to rule.
For many, the use of email is limited by their time in the office. The computers people use at work belong to their company. The network connection people use at work belong to their company. That means that everything people do on their company network and on their company computer is effectively, company property.
Some organisations feel that the best way of dealing with employee misuse of the Internet is to simply block access for staff who “don’t really need it”. I’ve always believed that people work better with better tools. I fully realise that some of the staff in my office use our network for personal activities. For my business, I have to encourage that type of use until it gets to a point that it’s somehow disruptive. I am not a fan of blocking access, though. A clearly communicated policy should be enough to set the ground rules for adults. If it’s not, then the wrong people have been hired.
Because Oceanic provides business email services to clients, we often field questions about the security of email. In every situation where a client felt their emails have been read by others, the situation turned out to be an “inside job”.
My advice for anyone who wants to ensure their emails are secure is simple. First and foremost, choose a proper password. Using “password” as a password is not good enough. Good passwords are generally a mix of both letters, numbers and even symbols and should also be longer than 8 characters. It’s also good to remember that this security breaks down completely when passwords are written on pieces of paper and taped to the side of a computer monitor. Try not to do that.
For those who really want to make sure no one but the intended recipient can read their mail, consider utilising encryption software which can enable secure messaging between people. There are both free and commercial software titles available on the Internet which can do this. Unfortunately, encryption often requires both the person sending an email as well as the person receiving an email to have special software. I think the learning curve for encrypting email, while starting to get easier, is still a bit difficult for the average person.
Most people don’t need this kind of protection but then again, why shouldn’t everyone have it? If I want to write a sensitive note to a business associate, the piece of mind of knowing it is safe and encrypted can be worth it.
From the FijiTimes 8 March 2008
Jonathan Segal is the Managing Director and CEO of Oceanic Communications (www.oceanic.com.fj), an advertising, marketing and technology agency in Suva. Feel free to send comments and topic suggestions to talanoa@oceanic.com.fj
