Post Tagged with: "security"

Canada’s Identity Theft Bill: What It Says and What’s Missing

The federal government yesterday introduced much-needed identity theft legislation. Bill C-27 includes several important provisions focusing on identity theft such as trafficking in documents and identity information. Key provisions include: making, possessing, transferring, or selling "identity documents" of another person becomes an offence punishable with up to five years in […]

November 22, 2007 — 5 comments — News

Industry Canada Launches Public Consultation on PIPEDA Reforms

The government's response to the PIPEDA review included a promise to consult on possible reforms to the law, including the creation of a mandatory data breach notification requirement. On Friday, Industry Canada published the promised consultation in the Canada Gazette, asking Canadians for comments on the data breach requirement along […]

October 29, 2007 — 1 comment — News

Chertoff’s Talk

My speech at the Data Protection and Privacy Commissioner's conference focused specifically on U.S. Secretary of Homeland Security Michael Chertoff's talk. His remarks have now been posted online.

October 21, 2007 — Comments are Disabled — News

Privacy Threats No Longer ‘Terra Incognita’ – The Video

Last week's column on the Data Protection and Privacy Commissioner's conference has generated a fair amount of attention. As I noted in my blog posting, the column was based on my concluding remarks in the final plenary of that conference. The Office of the Privacy Commissioner of Canada has now […]

October 8, 2007 — 29 comments — News

The Future of Privacy: Privacy Threats No Longer “Terra Incognita”

Last week the privacy world gathered in Montreal for the most important global privacy conference on the calendar. The International Data Protection and Privacy Commissioner's conference brings together hundreds of privacy commissioners, government regulators, business leaders, and privacy advocates who spend three days grappling with emerging issues. I was privileged to be asked to provide some concluding remarks in the final plenary and my weekly technology law column (Toronto Star version, Ottawa Citizen version, homepage version) is a shortened version of that address.

This year's conference theme was "Terra Incognita," a reference to the unknown lands that typify the fear of the unknown in a world of rapidly changing technologies that challenge the core principles of privacy protection. Yet despite a dizzying array of panels on new technologies such as ubiquitous computing, radio frequency identification devices (RFID), and nanotechnology, it was a reference by U.S. Secretary of Homeland Security Michael Chertoff to a simple fingerprint that struck the strongest chord.

Canada last hosted the conference in 1996 and it quickly became apparent that privacy has become virtually unrecognizable in the intervening eleven years. The technological challenges were on display throughout the event including eye-opening presentations on the privacy impact of popular children's websites such as Webkinz and Neopets, on genetic innovation that is pushing the boundaries of science without regard for privacy, and on the continual shift toward tiny devices that can be used to collect and disclose personal information.

The conference placed the spotlight the growing "toolkit" of responses, including privacy audits of both public and private sector organizations, privacy impact assessments that are used to gauge the effect of new regulations and corporate initiatives, trust seals that include corporate compliance programs, and emphasis on global cooperation in a world where personal data slips effortlessly across borders. While the effectiveness of these measures has improved in recent years, there remained a pervasive sense that these responses are inadequate.

October 2, 2007 — 2 comments — Columns, Conferences, Keynote Speaking, Video