Notes from the IAPP Canada Managing Director, Nov. 8, 2019

(Nov 8, 2019) Taxes! Yuck. Right? Not too many people like to pay taxes, and so the government institution tasked with collecting taxes faces a pretty hefty hurdle in public popularity contests. Considering this, I think the Canada Revenue Agency actually does a pretty good job delivering on its mandate, putting out fires and keeping its reputation in check. Sure, they’ve had their share of issues. We know about them much like we know the banks have high rates of privacy issues, too, because they handle some ... Read More

Vancouver airport to use facial-recognition technology

(Nov 8, 2019) Vancouver International Airport will be the first in Canada to use facial recognition for pre-screened travelers, the Vancouver Sun reports. Nexus cardholders will be asked to download their passport photo, which will identify their facial features at kiosks. Iris scanners had previously been used to identify Nexus travelers, and the Canada Border Services Agency said the switch “allows the CBSA to align its biometric collection and verification practices with internationally recognized standard... Read More

Privacy advocates speak against Canada's 'Textalyzer' for drivers

(Nov 8, 2019) CTV News reports Canada's plans for a "Textalyzer," which will monitor the efforts of texting while driving, is facing backlash from privacy advocates. While the general purpose of the surveillance is generally welcomed, advocates argue that the technology may provide police with personal data that would typically require a warrant to obtain. “My concern is this: if the police are accessing your cellphone, could they get access to any other information ... all of the sensitive data?" former Info... Read More

Canadian commissioners call for privacy law updates

(Nov 7, 2019) The Office of the Privacy Commissioner of Canada has announced a joint resolution with information and privacy commissioners across the country on potential actions to modernize federal information and privacy legislation. According to the OPC, the resolution aims to address "the rapid advancement of technologies" and "impact on fundamental democratic principles and human rights, including access to information and privacy." The resolution itself seeks to improve definitions for responsible deve... Read More

Roundup: Australia, Brazil, India, UK, US and more

(Nov 4, 2019) In this week's Privacy Tracker global legislative roundup, the Finnish Presidency of the EU Council is expected to propose yet another iteration of the proposed ePrivacy Regulation for the next meeting of the Working Party on Telecommunications and Information Society Nov. 7. Shweta Reddy. D, CIPP/US, writes about what organizations can do to prepare for India's long-awaited Personal Data Protection Bill, 2018, and in the U.S., the “sale” provision within the California Consumer Privacy Act is p... Read More

Global News Roundup — Oct. 28–Nov. 4, 2019

(Nov 4, 2019) In this week's Privacy Tracker global legislative roundup, the Finnish Presidency of the EU Council is expected to propose yet another iteration of the proposed ePrivacy Regulation for the next meeting of the Working Party on Telecommunications and Information Society Nov. 7. GCA Advogados Partner Ana Carolina Cagnoni, CIPP/E, CIPP/US, looks at how children’s privacy is regulated in Brazil and the specific provisions within the country's upcoming Data Protection Act that cover children’s data. S... Read More

Data breach affects all 4.2M Desjardins Group members

(Nov 4, 2019) Reuters reports the Desjardins Group data breach is more widespread than initially thought — the breach has affected all 4.2 million members of the group. When the breach was first reported in June, it was believed 2.9 million members were affected. Quebec Finance Minister Eric Girard said the revelation will lead to government reforms “to improve cybersecurity and the protection of personal information.” Despite the late discovery, Girard said Desjardins is managing the breach.Full Story... Read More

Notes from the IAPP Canada Managing Director, Nov. 1, 2019

(Nov 1, 2019) Today marks the one-year anniversary of the Personal Information Protection and Electronic Documents Act data breach regime coming into force. It has kept me busy, and I’m sure many privacy pros are dealing with the regime now that it’s fully in effect. And, speaking of data breaches, the world’s data protection and privacy commissioners gather every year, and they just wrapped up their annual conference in Albania. One of the things coming out of it was a resolution concerning the fact that so... Read More

OPC looks back at first year of PIPEDA mandatory breach reporting

(Nov 1, 2019) The Office of the Privacy Commissioner of Canada looks back at the first year of mandatory data breach reporting under the Personal Information Protection and Electronic Documents Act. The agency said it received 680 breach reports over the past year. “It’s a staggering increase and higher than we had anticipated given the experience of our counterparts at the Office of the Information and Privacy Commissioner of Alberta when their mandatory reporting laws came into effect,” the agency wrote in ... Read More

Alberta privacy commissioner calls for clarity, tightening of background check laws

(Nov 1, 2019) Alberta Information and Privacy Commissioner Jill Clayton is urging the government to clarify its laws around police background and vulnerable sector checks, citing “inconsistencies” that have led to “breaches” of the province’s privacy act, CBC News reports. Clayton’s request follows a court recommendation that the Edmonton Police Service redesign its protocols and consent forms involving background checks to ensure privacy laws are not being broken. Clayton called for the Alberta government to... Read More