DPI16_Banner_300x250 WITH COPY

Background: The Standing Committee on Access to Information, Privacy and Ethics is currently conducting interviews in preparation for a report to Parliament on changes to Canada's Personal Information Protection and Electronics Document Act (PIPEDA). Nymity, on behalf of The Privacy Advisor, recently interviewed
Tom Wappel, MP, Scarborough Southwest, who also serves as Chairman of the Standing Committee on Access to Information, Privacy and Ethics.

The Privacy Advisor (TPA):
How does the regulatory review of PIPEDA process work? What are the goals?

The act mandated that a Parliamentary Committee review the operation and effectiveness of the act, five years after it came into force. This review was referred to our committee by the House of Commons. Our committee decided to hear from interested stakeholders, the public, the Minister of Industry and, of course, the Privacy Commissioner. The goals are to try to identify if there are any shortcomings in the act, based on the experience since it came into force, and make recommendations to the Minister on how to improve the act.

Who is on the committee?

Wappel: The Committee is composed of 12 Members of Parliament: 5 Conservatives, 4 Liberals, 2 Bloc Quebecois and 1 NDP member. As you can see, the opposition members outnumber the government members. This is reflective of a minority Parliament.

Who is presenting to the committee and how were they selected?

The committee, through its Steering Committee, in consultation with the Clerk of the Committee and the committee's research staff, decided on a list of witnesses, representative of the various groups. An invitation also was broadcast for interested parties to indicate to the clerk their interest in either appearing before the committee or submitting a written brief. Respondents also were considered by the steering committee. The goal was to have a broad and diverse group of interveners.

What have been the key areas of concern by presenters so far?

Some presenters have felt that the act is more or less fine the way it is. Others have suggested that the Privacy Commissioner have order-making powers; that there be a definition of "work product" contained in the act; that there be some sort of mandatory security breach notification mechanism; that there be the ability to more readily exchange information if it is in furtherance of potential fraud or other criminality; that it be easier for potential purchasers to obtain relevant information from sellers prior to purchase of the business; and that there be some recognition of the speed of development of the information highway; the potential exploitation of children on the Internet; and the international aspects of the Information Age. That is just a short synopsis of some of what we have heard so far.

What are the key areas of concern for the committee?

The key concern of the committee is to ensure that all those who wish to present either do so, submit a brief or have their concerns aired by others. We want to try to make sure that the act will operate in the fairest and most efficient way possible into the future.

What happens after the review is complete? What are the steps to amend PIPEDA?

Upon the completion of the hearing of evidence, the committee will draft a report to the government. We hope it will be unanimous, but it may not be. There may be concurring reports with additional comments, or there may be dissenting reports, however, there will certainly be a majority report. Once the report is finalized and passed by the committee, it is presented to the House of Commons, for the attention of the government. The usual practice is for the relevant ministry to consider the report and draft a response for approval by its minister, who will then have Cabinet approve the final response, which will be tabled in the House of Commons. This may take up to 180 days approximately. The response usually contains a detailed list of the recommendations of the committee which the government will accept, or reject, with the reasons why.

TPA: What happens if an election is called?

If an election is called before the committee issues its report, the work of the committee is effectively lost. A new Parliament will decide how it wants to deal with the fact that a report on PIPEDA has not been submitted to Parliament, despite the clear wording of the act. Usually, but not always, the new committee would adopt the evidence heard by our committee. But depending on the results of the election and the composition of the new committee, it could be "back to the drawing board." If an election is called after the committee reports but before the government response, we would expect that the newly constituted committee would adopt the previous committee's report, resubmit it to the new House and request a response from the new government. However, there is nothing this committee can do to bind a future committee to a particular course of action. If an election is called after the government issues its response, but before any recommendations are implemented, the newly elected government is not bound to follow the response of the previous government.

TPA: When would we expect PIPEDA to be amended?

It is only a guessing game as to when amendments to PIPEDA would be forthcoming. I would expect that, before any major recommendation were implemented, the ministry would hold consultations with stakeholders to discuss how most efficiently to implement the changes.

In what form would PIPEDA be modified? Could the Canadian Standards Association principles be modified?

It is too early to comment on the form of modifications to PIPEDA, if any, as we are still hearing evidence and have not yet begun to discuss our draft report.

Have there been any concerns relating to Quebec's constitutional challenge of PIPEDA?

The issue of Quebec's constitutional challenge to PIPEDA has been raised by some witnesses and committee members. As far as we can tell, the matter is stalled in the courts. Until the courts advise otherwise, we have to assume that the act is constitutional.

In closing, what else is on the agenda for the committee?

Wappel: The committee's first report of this Parliament called upon the Minister of Justice to prepare and submit to Parliament a new Access to Information Act, by December 15, 2006, for consideration by the committee. This did not happen. The committee has requested the Minister of Justice to appear before the committee this month, to discuss this issue further. The committee is also aware that the Privacy Act is in need of review and modernization.

Party: Liberal

Political Experience: First elected to the Parliament of Canada for the Riding of Scarborough West in November 1988 and again in October 1993. Elected to the Parliament of Canada for the Riding of Scarborough Southwest in June 1997, November 2000, June 2004 and January 2006.

Chairman, Standing Committee on Access to Information, Privacy and Ethics, Past Chairman of the Standing Committee on Fisheries and Oceans, Member, Subcommittee on the Review of the Anti-Terrorism Act of the Standing Committee on Public Safety and National Security, Past Member and Past Chairman of the Subcommittee on National Security of the Standing Committee on Justice, Human Rights, Public Safety and Emergency Preparedness, Member, Past Chairman and Past Vice-Chairman of the Joint House of Commons and Senate Standing Committee on the Scrutiny of Regulations, Co-Chairman of the Canada-China Legislative Association and Chairman of the Canada-Hungary Parliamentary Friendship Group.Past Member of the Standing Committee on Citizenship and Immigration,

Education: University of Toronto, 1971 (B. Arts) (Pol. Sci.); Queen's University, 1974 (L.L.B.); Called to the Bar of Ontario, April 8, 1976

Nymity (www.nymity.com) provides Web-based privacy management support solutions that help organizations manage the risks that lead to a data breach, a privacy complaint and to non-compliance or over-compliance with privacy laws.


If you want to comment on this post, you need to login.


Board of Directors

See the esteemed group of leaders shaping the future of the IAPP.

Contact Us

Need someone to talk to? We’re here for you.

IAPP Staff

Looking for someone specific? Visit the staff directory.

Learn more about the IAPP»

Daily Dashboard

The day’s top stories from around the world

Privacy Perspectives

Where the real conversations in privacy happen

The Privacy Advisor

Original reporting and feature articles on the latest privacy developments

Privacy Tracker

Alerts and legal analysis of legislative trends

Privacy Tech

Exploring the technology of privacy

Canada Dashboard Digest

A roundup of the top Canadian privacy news

Europe Data Protection Digest

A roundup of the top European data protection news

Asia-Pacific Dashboard Digest

A roundup of the top privacy news from the Asia-Pacific region

Latin America Dashboard Digest

A roundup of the top privacy news from Latin America

IAPP Westin Research Center

Original works. Groundbreaking research. Emerging scholars.

Get more News »

Find a KnowledgeNet Chapter Near You

Network and talk privacy at IAPP KnowledgeNet meetings, taking place worldwide.

Women Leading Privacy

Events, volunteer opportunities and more designed to help you give and get career support and expand your network.

IAPP Job Board

Looking for a new challenge, or need to hire your next privacy pro? The IAPP Job Board is the answer.

Join the Privacy List

Have ideas? Need advice? Subscribe to the Privacy List. It’s crowdsourcing, with an exceptional crowd.

Find more ways to Connect »

Find a Privacy Training Class

Two-day privacy training classes are held around the world. See the complete schedule now.

Online Privacy Training

Build your knowledge. The privacy know-how you need is just a click away.

The Training Post—Can’t-Miss Training Updates

Subscribe now to get the latest alerts on training opportunities around the world.

New Web Conferences Added!

See our list of upcoming web conferences. Just log on, listen in and learn!

Train Your Staff

Get your team up to speed on privacy by bringing IAPP training to your organization.

Learn more »

CIPP Certification

The global standard for the go-to person for privacy laws, regulations and frameworks

CIPM Certification

The first and only privacy certification for professionals who manage day-to-day operations

CIPT Certification

The industry benchmark for IT professionals worldwide to validate their knowledge of privacy requirements

Certify Your Staff

Find out how you can bring the world’s only globally recognized privacy certification to a group in your organization.

Learn more about IAPP certification »

Get Close-up

Looking for tools and info on a hot topic? Our close-up pages organize it for you in one easy-to-find place.

Where's Your DPA?

Our interactive DPA locator helps you find data protection authorities and summary of law by country.

IAPP Westin Research Center

See the latest original research from the IAPP Westin fellows.

Looking for Certification Study Resources?

Find out what you need to prepare for your exams

More Resources »

GDPR Comprehensive: Spots Going Fast

With the top minds in the field leading this exceptional program, it's no wonder it's filling quickly. Register now to secure your spot.

Be Part of Something Big: Join the Summit

Registration is open for the Global Privacy Summit 2016. Discounted early bird rates available for a short time, register today!

Data Protection Intensive Returns to London

Registration is now open for the IAPP Europe Data Protection Intensive in London. Check out the program!

P.S.R. Call for Speakers Open!

P.S.R. is THE privacy + cloud security event of the year, and you can take a leading role. Propose a session for this year's program.

Sponsor an Event

Increase visibility for your organization—check out sponsorship opportunities today.

Exhibit at an Event

Put your brand in front of the largest gatherings of privacy pros in the world. Learn more.

More Conferences »

Become a Member

Start taking advantage of the many IAPP member benefits today

Corporate Members

See our list of high-profile corporate members—and find out why you should become one, too

Renew Your Membership

Don’t miss out for a minute—continue accessing your benefits

Join the IAPP»