http://news.bbc.co.uk/2/hi/americas/7315813.stm

So trust is a big issue. I see auditing as an even bigger and important issue. There are people out there that would steal just about anything if they knew they could get away with it. Even little stuff, like office supplies or a ream of paper. If you *know* for a fact that you will be caught, it’s human nature to not risk it. No one likes being punished.

The beauty of auditing is that it allows you, the employer and keeper of information, to show trust in your employees by allowing them to do their job. You can’t completely lock down the passport database, otherwise all those airport workers wouldn’t be able to check those passports. Auditing does allow you to quickly follow up on who is checking information. It’s also very easy to flag any particularly sensitive information.

In the case of the Presidential canditates and their passports, I have no doubt their passports were flagged with extra audit trail information. (It’s standard procedure for any “viable” Presidental candidate.) If anything, the breakdown occurred when the employees violated company policy and looked at data when they had no business need to do so. Just like the medical personnel at UCLA Hospital who peeked at Britney’s medical records.

If the world at large doesn’t want their information leaked, peeked or prodded, they need to hold companies accountable to notify their employees of information policies and above all, taking definitive *action* when a violation occurs. You may not be able to undo the damage, but it goes a looooong way in preventing the next person who is a bit too curious.