The URL can be used to link to this page

Home My WebLink About08.12.25 John Stonebraker Public Comment_ FW_ 3.5.a electronic HR recordsFrom:Clerk of the Board To:Clerk of the Board; Connelly, Bill; Cook, Holly; Cook, Robin; Durfee, Peter; Jessee, Meegan; Kimmelshue, Tod; Kitts, Melissa; Krater, Sharleen; Lee, Lewis; Little, Melissa; Pickett, Andy; Ritter, Tami; Stephens, Brad J.; Sweeney, Kathleen; Teeter, Doug Cc:Waters, Sheri; LaValley, Paul; Navarro, Andrea Subject:Public Comment: FW: 3.5.a electronic HR records Date:Tuesday, August 12, 2025 7:56:51 AM Please see Public Comment Sharleen L Krater Administrative Analyst – Supervisor (530) 552-3353 Butte County Administration 25 County Center Drive, Suite 200, Oroville, CA 95965 Restorative*Woo*Belief*Adaptability*Connectedness "COUNTY OF BUTTE E-MAIL DISCLAIMER: This e-mail and any attachment thereto may contain private, confidential, and privileged material for the sole use of the intended recipient. Any review, copying, or distribution of this e-mail (or any attachments thereto) by other than the County of Butte or the intended recipient is strictly prohibited. If you are NOT the intended recipient, please contact the sender immediately and permanently delete the original and any copies of this e-mail and any attachments thereto." -----Original Message----- From: John S. <john@upperridge.info> Sent: Tuesday, August 12, 2025 7:39 AM To: Clerk of the Board <clerkoftheboard@buttecounty.net> Subject: 3.5.a electronic HR records .ATTENTION: This message originated from outside Butte County. Please exercise judgment before opening attachments, clicking on links, or replying.. I would not consider Amazon Web Services to be a trusted system. Any hardware not under the county's physical control should be assumed to be accessible to attackers, and the same principles that require paper records to be shredded ought to demand that offsite electronic records be encrypted. The record destruction log could include a column for a SHA-2 checksum to confirm that the current electronic copy stored locally and securely still matches the original scan. And while yes, there should be offsite backups as well, if they are online rather than airgapped, it should be assumed that someone with physical access to the remote system could harvest confidential personal information for propritary dossiers. Technology available to the corporate enemies of privacy is advancing faster than government policy in this realm. John Stonebraker Magalia, CA