Post Tagged with: "security"

CIPPIC Files Complaint in Data Breach Case

The Canadian Internet Policy and Public Interest Clinic has filed a formal complaint with the Canadian Privacy Commissioner, requesting a formal investigation into the widely-reported security breach suffered by the Winners group of companies, and affecting consumers who shop at any Winners or HomeSense store in Canada. CIPPIC is concerned […]

January 25, 2007 — Comments are Disabled — News

Privacy Breaches Expose Flaws in the Law

My weekly Law Bytes column (Toronto Star version, homepage version) focuses on the need for Canadian privacy reform in light of last week's security breaches involving CIBC and retailer giant Winners. I note that these two incidents highlight the fragility of sensitive, personal information that is entrusted to Canadian businesses as well as the inadequacy of current Canadian privacy legislation. Business groups have cautioned against privacy law reforms, yet as the risk of identity theft grows, the calls for change are likely to become more vocal.

While the U.S. pushes forward with security breach disclosure legislation, Canadian business has argued strongly against similar reforms. The Information Technology Association of Canada, which features representatives from companies such as BCE, Telus, Rogers, Microsoft, Nortel, and Research in Motion on its board of directors, warned against mandatory notification legislation in an appearance before a parliamentary committee last month.

January 22, 2007 — 3 comments — Columns

Privacy Breaches Expose Flaws in Law

Appeared in the Toronto Star on January 22, 2007 as Privacy Breaches Expose Flaws in Law Privacy took centre stage in Canada late last week as TJX Cos., the parent company of retail giants Winners and HomeSense, disclosed that as many as two million Canadian credit cards may have been […]

January 22, 2007 — 8 comments — Columns Archive

Police Want More Subscriber Info from ISPs

A recent arrest has police looking for more subscriber information from Canada's ISPs.

November 6, 2006 — 6 comments — News

Government Docs Highlight Lawful Access Strategy

My weekly Law Bytes column (Toronto Star version, homepage version) reports on government documents obtained under the Access to Information Act that provide some insight into how officials view, and have managed, Internet surveillance legislation. It uncovers a clear recognition of the negative public reaction to the lawful access proposals, a divide-and-conquer strategy for managing that reaction, and lingering internal doubts about the effectiveness of Canadian privacy legislation to address Internet privacy threats.

The negative public reaction is no secret to anyone who has followed the issue through the media. Indeed, a Department of Justice memorandum drafted just after the last federal election acknowledges that "although the public generally responds positively to the idea of 'getting tough on crime', proposals to introduce new investigative tools raise concerns about the surveillance powers of the state and the public’s underlying anxiety is heightened by the media and statements of privacy and civil liberties advocates." The memorandum continues by noting that "in the past, media coverage (albeit based on inaccurate and misleading interpretations) was highly critical and alarmist. Almost all stakeholders indicated generally that the lawful access proposals seemed to be moving ahead without the government having provided a convincing justification for the new measures."

With internal discussion focusing on public anxiety and critical media coverage, the issue may be well be viewed as a political liability that is best avoided by a minority government.

Should lawful access legislation be reintroduced, officials will be armed with detailed analysis of how stakeholder groups are likely to react.

October 30, 2006 — Comments are Disabled — Columns