Privacy Compliance

PitbLAWg may be AWOL on January 18, 2012.

In a USA Today article “TwitPic, WordPress to go dark for online SOPA protest” Yamiche Alcindor reported that WordPress, along with other websites will not available on Wednesday January 18, 2012 to protest the proposed US legislation, Stop Online Piracy Act and the Protect Intellectual Property Act.

WordPress is the host site for PitbLAWg. If WordPress is not available then PitbLAWg will not be online for the day. However, we expect that WordPress and PitbLAWg with be back up and running on Thursday January 19th.

PitbLAWg takes no position on the proposed legislation or on the blackout. Thanks for following PitbLAWg and we hope to see you back on January 19th.

January 17, 2012 Posted by Mark Wallace | Blogs, E-mail, Identity Theft, Intellectual Property, Legislation, Mobile devices, Online Reputation Management, PIPEDA, Privacy, Privacy Commissioner, social networking vehicles, Social Networking Websites, Uncategorized | Intellectual Property, Legislation, Mobile devices, Online Reputation Management, PIPEDA, Privacy, Privacy Compliance, Social Media | Leave a Comment

Toyota advertising case raises privacy issues

In 2009, a woman initiated a lawsuit against a Californian advertising firm and Toyota U.S.A. because of an aggressive advertising campaign that she claimed was designed to make individuals believe they were being stalked by a criminal (which, in fact, turned out to be fictitious). While the charges are now being dealt with by the Los Angeles Superior Court the case raises issues in respect of the application of privacy principles here in Canada.

In 2008, Toyota Matrix advertised the “Your Other You” campaign which targeted young males. It encouraged individuals to provide someone else’s personal information, who would then receive an invitation to a fake personality test. What really happened was, the “victim” ended up receiving numerous disturbing emails from an imaginary soccer hooligan with a pitbull named Trigger. This impersonator claimed to be on their way to the victim’s house, who had no idea it was a hoax. In order to promote the advertising campaign, a fake social networking account for the stalker was even set up.

How would a similar case play out here in Canada? Under the PIPEDA framework , there would possibly be a violation of the law because of the alleged collection, use and disclosure of personal information without consent. Further, PIPEDA’s requirement that the “identified purposes” of any collection, use or disclosure of personal information would not likely met. Finally, the reasonableness test, enshrined in PIPEDA, would probably be violated. In short, the facts pertaining to the case could put the relevant parties in the crosshairs of the Office of the Privacy Commissioner of Canada and courts. As a result, the case should serve as a warning to advertising agencies to ensure that privacy law considerations are thoroughly canvassed with legal counsel before initiating campaigns involving personal information – especially where people are submitting friends’ data.

November 7, 2011 Posted by Brian Bowman | E-mail, Limitations, Marketing, Personal Information, PIPEDA, Privacy, Privacy Commissioner, social networking vehicles, Uncategorized | Legislation, PIPEDA, Privacy, Privacy Compliance, Social Media | Leave a Comment

Are you a spammer? What you need to know about Canada’s new anti-spam law

Tired of reading? How about a video to help you learn about Canada’s new anti-spam law? I’m delighted to let you know about a cool feature on Pitblado’s new website called the “Whiteboard Sessions”, which are vlogs (or video blogs). We’ve just posted a 3 minute vlog of mine entitled “Are you a spammer?“, wherein I discuss:

highlights of the new law
why you should care
an overview of the rules
penalties for non-compliance; and
proactive tips to help comply with the law

To watch “Are you a spammer?” please click here>>

July 8, 2011 Posted by Brian Bowman | Access to Information, Blogs, Corporate Information, Data Protection, E-mail, Electronic Commerce, Fraud, Marketing, Privacy, Privacy Commissioner, Spam, Uncategorized | Bankruptcy and Insolvency, Corporate Information, Data Protection, PIPEDA, Privacy, Privacy Compliance, Social Media | Leave a Comment

Privacy Commissioner releases report on online tracking, profiling and targeting, and cloud computing

Canada’s Privacy Commissioner has just released the final report of her Office’s consultations on the online tracking, profiling and targeting of consumers by marketers and other businesses. “Most people have no idea about the rich trail of data they leave behind when they browse the Internet, use social networking sites, or engage the geo-location functions of their mobile devices,” the Commissioner observed. Organizations that track the online activities of Canadians must be more upfront about their practices, Privacy Commissioner Jennifer Stoddart has concluded… “it comes down to meaningful consent, which entails informed consent”.

May 6, 2011 Posted by Brian Bowman | Access to Information, Cloud Computing, Data Protection, Identity Theft, Marketing, Mobile devices, Personal Information, PIPEDA, Privacy, Privacy Commissioner, Social Networking Websites, Technology, Uncategorized | Access to Information, Data Protection, Mobile devices, PIPEDA, Privacy, Privacy Compliance, Technology Law | Leave a Comment

Fines needed to help stem growing data breaches, Privacy Commissioner says

The Privacy Commissioner of Canada has called for legislation empowering her to impose substantial fines against major corporations that fail to adequately protect Canadians’ personal information from preventable breaches.

“I am deeply troubled by the large number of major breaches we are seeing, including serious incidents in recent weeks that have affected hundreds of thousands of Canadians,’’ Jennifer Stoddart said in a speech today at the Canada 3.0 forum in Stratford, Ont. “It seems to me that it’s time to begin imposing fines – significant, attention-getting fines – on companies when poor privacy and security practices lead to breaches.’’

To learn more, read the complete news release.

May 4, 2011 Posted by Brian Bowman | Access to Information, Corporate Information, Data Protection, Identity Theft, Personal Information, PIPEDA, Privacy, Privacy Commissioner, Technology, Uncategorized | Access to Information, Corporate Information, Data Protection, PIPEDA, Privacy, Privacy Compliance, Technology Law | Leave a Comment

How safe is your scan? Hard drives on copy machines pose risk

Does your office have a copy machine? If so, then this post is worth reading. CBC news has just released the results of an investigation that exposes the security risks associated with modern copy machines, specifically, the ease at which information scanned into certain copiers can be tapped. Just think about the information that gets scanned into your office copier. Personal information. Confidential corporate information such as client data. Even intellectual property. It’s a scary thought if you haven’t done your due diligence, especially considering that privacy laws can apply to certain data undoubtedly scanned into your copy machine. Check out CBC’s online story here or TV segment here. And if you’d like to learn more, you may also want to read my post from earlier this year which provided a link to a similar CBS news story.

October 20, 2010 Posted by Ron Greasley | Data Protection, Due Diligence, Personal Information | Corporate Compliance, Data Protection, Privacy Compliance | Leave a Comment

Should you say “no” to the police?

Imagine this scenario… The police show up at your office and demand access to records relating to one of your customers. You want to help the police (as you should), but are concerned about violating your customer’s privacy rights. What should you do?

Click here to find out (you’ll be directed to the full blog post on my “On the Cutting Edge” blog).

April 8, 2010 Posted by Ron Greasley | Access to Information, Privacy | Access to Information, Data Protection, Privacy, Privacy Compliance | 2 Comments

A Conversation with Dr. Ann Cavoukian, Ontario’s Information and Privacy Commissioner

Continuing a series of posts on my “On the Cutting Edge” blog that I’m calling “A Conversation with…” I’m delighted to post a conversation with Ontario’s Information and Privacy Commissioner, Dr. Ann Cavoukian. If you’re interested in reading the conversation, please click here.

Previous posts include “conversations” with Jennifer Stoddart (Canada’s Privacy Commissioner), Frank Work (Alberta’s Information and Privacy Commissioner) and Irene Hamilton (Manitoba’s Ombudsman).

March 1, 2010 Posted by Ron Greasley | Airport Security, Data Protection, Personal Information, Privacy, Privacy Commissioner, Security | Due Diligence, Privacy, Privacy Compliance, Security | Leave a Comment

Businesses should learn from 2010 Olympics surveillance camera debate

The 2010 Olympics are finally here! So too are the reportedly pervasive crowd surveillance cameras that are monitoring spectators’ every move.

Privacy advocates are already voicing concern. But unlike previous public debates regarding privacy and surveillance cameras, I expect that the concerns that’ll be raised during and after the 2010 Olympics will be more comprehensive than the traditional “privacy vs. security” debate. For instance, Jennifer Stoddart, Canada’s Privacy Commissioner, recently commented on my “On the Cutting Edge“ blog that “one of the big issues will revolve around the pervasive crowd surveillance measures, and what will happen with all of the cameras and recordings after the flame is extinguished.”

Of course, there are legal tests that governments (and businesses) should use to determine the appropriateness of installing surveillance cameras in the first place. But once any organization has decided to install surveillance cameras there’s a corresponding requirement to appropriately manage the data that’s collected. For instance, organizations must ensure that they have security, retention and destruction policies in place. This is the “devil in the detail” that’s often overlooked.

I expect public scrutiny of the surveillance cameras being used during the 2010 Olympics. And such scrutiny will increase public expectations on businesses to properly manage data that they too collect by surveillance cameras.

February 16, 2010 Posted by Ron Greasley | Data Protection, Personal Information, Privacy, Security, Video Surveillance | Data Protection, Privacy, Privacy Compliance, Security | Leave a Comment

A Conversation with Jennifer Stoddart, Privacy Commissioner of Canada

I’m very pleased to post A Conversation with Jennifer Stoddart, Privacy Commissioner of Canada, on my blog entitled “On the Cutting Edge“. If you’re interested in reading the conversation with Canada’s Privacy Commissioner, please click here.

January 28, 2010 Posted by Ron Greasley | Blogs, Personal Information, PIPEDA, Privacy, Privacy Commissioner, Security | PIPEDA, Privacy, Privacy Compliance | Leave a Comment

« Previous Entries

About PitbLAWg

Welcome to PitbLAWg!

The authors are lawyers at Pitblado LLP, a leading business law firm in Winnipeg, Canada. PitbLAWg’s objective is to facilitate a conversation with you regarding timely and relevant legal issues affecting your business.

Click here to listen to Pitblado LLP’s Managing Partner, Bruce King, discuss the launch of PitbLAWg with CJOB|68.

We want to hear from you! Join the conversation by commenting on posts or submitting topic ideas. Please also consider signing up for the RSS feed or e-mail subscription service.

View Lawyer Profiles