Állami Számvevőszék

State Audit Office of Hungary (ASZ)

Operation of the Record Systems Applied in the Eligibility Scheme of Benefits and Services Provided from the Social Security Funds Read full summary in English

2012 report 1285

Hungarian SAI evaluated the set-up and operation of the basic registries of managing bodies (National Health Insurance Fund, Central Administration of National Pension Insurance, National Tax and Customs Administration), as well as the dataflow amongst them. In addition, the control system of fulfilling the data provision obligation was evaluated, as well as the IT support activities and whether the records had proven reliable in supporting services in compliance with eligibilities and in filtering unjustified services. The audited period covered the years 2007-2010.

In the report: part Main findings (page 1)

- As regards the handover and quality of data, the specifications concerning satisfactory execution were missing.

- Problems arose basically from the complexity and differences of the data files of Central Administration of National Pension Insurance (CANPI) and National Tax and Customs Administration (NTCA).

- The division of tasks and responsibilities between the organisations was not fully regulated, control functions and overlaps between record systems had not been eliminated.

- Handling these problems did not proved successful.

In the report: part Main findings (page 1)

- The record systems were supported by complex and complicated IT systems, which operation represented a risk in itself.

- Within their limited possibilities, the entities managing record systems strived to set-up systems adapting to the continuous change of the legal framework.

- Some IT security related policies are outdated (ISP) or missing (BCP, DRP.

- The entities did not seek to establish their employers’ record systems of the same purpose and function as a joint, cost-efficient development.

- Serious risk that the data the employers provided the CANPI with, has been replaced by the data provision of NTCA.

The risk cases visible on this page are collected and described by the e-Government Subgroup of the EUROSAI IT Working Group in contact with author Supreme Audit Institutions (SAI). In the same way, analytical assumptions and headings are chosen by the Subgroup. We encourage you to read the original texts by SAIs - to be found in the linked files.