Protection of Data Collected for Next-generation ERP System
Ministry of TransportSpeakers
Summary
This question concerns the data collection and protection protocols for the next-generation Electronic Road Pricing (ERP) system, as raised by Ms He Ting Ru. Minister for Transport Ong Ye Kung stated that the system collects transaction and traffic data, with traffic data automatically anonymized upon transfer to the backend for planning. He explained that vehicle-specific data is used solely for payments and enforcement, with access restricted to authorized personnel on a need-to-know basis and regular logs. Minister for Transport Ong Ye Kung highlighted that the system features strict security safeguards, such as the use of on-board units and adherence to government-wide standards. Data sharing with other agencies for policy purposes is governed by the Public Service (Governance) Act and is conducted only on an anonymised or aggregated basis.
Transcript
62 Ms He Ting Ru asked the Minister for Transport (a) what data fields will be collected by the new ERP system; (b) where will the data be stored; (c) how will the data will be anonymised and at which point in the data collection process will it be anonymised; (d) who will have access to both the non-anonymised and anonymised data; (e) what protocols are put in place to ensure that the data will not be mishandled and will remain securely held; and (f) under what circumstances can the data be accessed by other parties.
Mr Ong Ye Kung: Like many applications and payment systems we use today, the next-generation Electronic Road Pricing (nexgen ERP) system will collect transaction data such as whether the vehicle is on ERP-priced roads, the amount charged and whether the transaction is successfully completed. The system will also collect road traffic data such as vehicle speeds.
Nexgen ERP was designed with strict data security safeguards. This was a key consideration when LTA, in consultation with other agencies, decided on using an on-board unit (OBU) to process the transactions, as opposed to an open system using our smartphones. There are also safeguards in place governing the storage, usage and sharing of data, in line with Government-wide standards.
For road traffic data, once it is transferred from the OBU to LTA's backend system, the data will be automatically anonymised. The data will be aggregated for traffic management and transport planning purposes. As an existing practice, such data can also be shared with third-party developers and researchers to develop traffic management solutions. For example, LTA publishes aggregated land transport datasets on the LTA DataMall website.
As for vehicle-specific data, LTA will only use it for payments, charges and enforcement. Summons related to such non-payments will largely be auto-generated.
Like all Government agencies, personnel who can access nexgen ERP data will be tightly controlled and restricted to a need-to-know basis, and data access will be logged and regularly reviewed.
LTA also adheres to Government-wide standards on data sharing with other Government agencies. For example, sharing of data to support policy and planning purposes will only be done on an anonymised or aggregated basis, in accordance with the Public Service (Governance) Act.