Ken Ng Kin, president of EDPS Systems - the company accused of releasing the personal details of 20,000 police complainants on the internet - faced off with the man who exposed the blunder and a packed room of computer security experts last night. Shareholder activist David Webb, who found the details during a search for a property on Google, called on those whose information had been revealed to bring legal action against the Independent Police Complaints Council. Speaking at the Hong Kong Computer Science Society meeting, Mr Webb said this would force the government to bring in tough legislation to protect private data. The call comes as a survey by leading internet security company Network Box of more than 1,000 Hong Kong companies, law firms and medical surgeries found most were unaware of how their information was secured. Managing director Michael Gazeley said the attitude of most seemed to be 'build up the wealth, and then worry about securing it'. 'Managements completely ignore internet security, viewing it as an IT issue only, rather than a business issue,' he said. Mr Gazeley said the top two responses on how well information was protected was either 'we don't have anything important to protect on our computers' or 'our company doesn't have the budget for internet security'. 'Many directors of big firms had no idea how their confidential data was protected or who was responsible for managing the data,' it said. During last night's forum, Mr Webb urged Mr Ng to clarify the reasons behind the blunder to the computer-literate audience. Mr Ng told the audience - and a panel including IT legislator Sin Chung-kai - the contractor had used the 'FTP system' to upload the data so it could be accessed at any time rather than just in the complaints council's offices. The contractor had not been aware the data was 'live' and had not properly secured it. Mr Ng denied it had been deliberately uploaded onto the china2easy.com website. Instead, it had appeared on the accessible-to-all site because the contractor's system administrator had put the file directory of all the data on his system under the file directory china2easy.com. 'Everything - from the love letters to his wife to all the business he does - were placed under that file directory,' Mr Ng said. Proof it was not deliberately put on the internet was the fact there were no Web pages. The data was unprocessed for the internet. In a warning to all businesses, Mr Ng described information as 'a tiger behind a gate'. 'Whoever controls the gate and decides to let the tiger out should always understand the importance of the information they possess,' he said. The council met Secretary for Security Ambrose Lee Siu-kwong yesterday to discuss the release of the report on the blunder next week. Chairman Ronny Wong Fook-hum and vice-chairman Alan Leong Kah-kit said they had yet to decide whether to name those responsible for the leak.