Canadian privacy law has long been reliant on the principle of “reasonable expectation of privacy.” The principle is particularly important with respect to the Charter of Rights and Freedoms, as the Supreme Court of Canada has held that the right to be free from unreasonable search and seizure is grounded in a reasonable expectation of privacy in a free and democratic society.
The reasonable expectation of privacy standard provides a useful starting point for analysis, but the danger is that privacy rights can seemingly be lost with little more than a contractual provision indicating that the user has no privacy. Indeed, if privacy rights can disappear based on a sentence in a contract that few take the time to read (much less assess whether they are comfortable with), those rights stand on very shaky ground.
My weekly technology law column (Toronto Star version, homepage version) notes the limits of the reasonable expectation of privacy standard emerged in a recent British Columbia Court of Appeal case involving the search of a courier package that contained illegal drugs. The court rejected claims of an illegal search, concluding that the defendant had no reasonable expectation of privacy despite the fact that he had no commercial relationship with the courier company and had never agreed to, or even viewed, the terms of the contract.
Read more ›
In late December 2009, Wikileaks, the website that publishes secret government information, posted a copy of the draft intellectual property chapter of the Canada – European Trade Agreement (CETA). The CETA deal was still years from completion, but the leaked document revealed that the European Union envisioned using the agreement to mandate a massive overhaul of Canadian law.
The leak generated concern among many copyright watchers, but when a German television station leaked the final text of the agreement last week, it contained rules that largely reflect a “made-in-Canada” approach. Why the near-complete reversal in approach on one of the most contentious aspects of a 500 page treaty?
My weekly technology law column (Toronto Star version, homepage version) notes the starting point for copyright in CETA as reflected in 2009 leaked document was typical of European demands in its trade agreements. It wanted Canada to extend the term of copyright to life of the author plus 70 years (Canada is currently at the international standard of life plus 50 years), adopt tough new rules for Internet provider liability, create criminal sanctions for some copyright infringement, implement new rights for broadcasters and visual artists, introduce strict digital lock rules with minimal exceptions, and beef up enforcement powers. In other words, it was looking for Canada to mirror its approach on copyright.
Read more ›
The debate over Internet governance for much of the past decade has often come down to a battle between ICANN and the ITU (a UN body), which in turn is characterized as a choice between a private-sector led, bottoms-up, consensus model (ICANN) or a governmental-controlled approach. The reality has always been far more complicated. The U.S. still maintains contractual control over ICANN, while all governments exert considerable power within the ICANN model through the Governmental Advisory Committee (GAC).
While the GAC claims its role is merely to provide “advice” to ICANN, it often seems to take the view that its suggestions can’t be refused. Indeed, late on Friday, ICANN proposed a by-law change that would grant governments even greater control over its decision-making process. At the moment, ICANN looks to various supporting organizations to develop policies designed to represent the views of many different stakeholders, including the GAC. Where the GAC and the ICANN board disagree on a policy issue, the ICANN board decision governs provided that a simple majority of board members vote against the GAC advice and that ICANN provide an explanation for the decision.
ICANN is now proposing that the threshold be increased so that 2/3 of eligible ICANN board members would be required to vote against GAC advice in order to reject it.
Read more ›
Last month, media reports covered a recently released Ontario court decision involving a Peel Regional Police warrant application for subscriber data from Telus and Rogers. The two telecom companies challenged the order, arguing that it was overbroad. The police withdrew the order in favour of a more limited request, but the court decided that the Charter issues raised by the request should still be examined.
The money quote from the judge – “the privacy rights of the tens of thousands of cell phone users is of obvious importance” – captured the attention, but the case is more interesting for the data it provides on police warrant applications for subscriber data. The case reveals that Telus received approximately 2,500 production orders and general warrants in 2013, while Rogers produced 13,800 files in response to production orders and search warrants that year.
Even more interesting is how the police were seeking access to a huge amount of subscriber information by asking for all records involving dozens of cell phone towers, including subscriber data, billing information, bank data, and credit card information. The specifics as described by the court:
Read more ›
Earlier this year, a group of U.S. litigants launched an unusual domain name lawsuit. The group consisted of family members of victims of terror attacks they claim were sponsored by the governments of Iran, Syria, and North Korea. The group had succeeded in winning over a billion dollars in damages in several lawsuits filed in U.S. courts.
Unable to collect, they sued the Internet Corporation for Assigned Names and Numbers (ICANN), the body that administers the Internet’s domain name system. Their goal: seize the dot-ir, dot-sy, and dot-kp domain name extensions (the respective country-code domains) by ordering ICANN to transfer them as compensation.
My weekly technology law column (Toronto Star version, homepage version) notes the notion of seizing a country’s domain name extension may sound implausible, but the case is proceeding through the U.S. court system with ICANN filing a brief late last month. ICANN is unsurprisingly seeking to dismiss the case, arguing that the domain name extensions are not property that is capable of seizure (I am a board member of the Canadian Internet Registration Authority, Canada’s dot-ca administrator, but this article represents my own views and not those of CIRA).
Read more ›