After the Investment Industry Regulatory Organization of Canada (IIROC or in French OCRCVM) who monitors all trading activity across the country suffered a security breach in April 2013 (an employee lost a USB drive containing the personal information of individuals with accounts at various brokerage firms), a class action was filed against IIROC, claiming 1,000$ for each […] Read more
AVIS – En raison de la possibilité d’une grève des employés de la BAnQ Vieux-Montréal qui vient d’être annoncée, l’évènement sera déplacé à l’Université de Montréal, au Laboratoire de cyberjustice (local B-2215) de la Faculté de droit (3101, chemin de la Tour – Métro Côte-des-Neiges / Université de Montréal ou stationnement à l’Oratoire St-Joseph à 5,00 $ ou stationnement […] Read more
La prolifération des nouvelles technologies amène une panoplie de questionnements quant à la protection de la vie privée et des renseignements personnels. Chaque semaine à Vie privée 20.15 (dimanche matin à 11h), le journaliste Guillaume Touzel-Bond creuse, en compagnie d’experts de partout au pays, de nombreux enjeux concernant la vie privée de groupes ciblés: les […] Read more
The Nineteenth Annual Canadian IT Law Association Conference is taking place this year in Toronto on October 26–27, 2015. I will be participating on the panel entitled “Key IT Law Issues for Wearable & Mobile Devices” moderated by David Canton, Harrison Pensa LLP, with co-panelists Sony Gokhale, Osler, Hoskins & Harcourt LLP and Rachael Vaughn, Attorney Next […] Read more
On October 6, 2015, the Court of Justice of the European Union (“CJEU”) released a judgment invalidating an important Commission Decision 2000/520 which was validating the EU-US Safe Harbour Principles. Why is this an important issue? Pursuant to Directive 95/46/EC, EU Member States are required to provide that the transfer of personal data from Europe to […] Read more
I will be presenting on De-identification around the World, at the Privacy, Security, Risk 2015, presented by the IAPP Privacy Academy and CSA Congress, in Las Vegas, on October 1, 2015. My co-panelists are Phil Lee, Head of US Office, Fieldfisher and Andrew Reiskind, Deputy CPO, MasterCard. All around the world, personal information is defined in a wide […] Read more
Online merchants can offer each website customer a different price given that it can recognise such customer through the use of a cookie and can therefore categorise the customer based on other information (previous purchases, etc.). Many regard price discrimination as unfair or manipulative and I have already blogged about this issue a while back: Dynamic pricing […] Read more
I came across an article today about the Apple Store now selling drones. These devices are more commonly used by individuals, as well as from private sector and public sector entities although under each scenario, the privacy issues are obviously quite different. Personal drone Recent stories about unfriendly neighbours and drones have been circulating. On […] Read more
Two great U.S. privacy academics, Ira Rubinstein and Woodrow Hartzog, have released last week their article on anonymization and risk. They articulate the view that perfect anonymization of data sets has failed and that although the process of protecting individuals in shared information remains integral to privacy practice and policy, there is no clear direction for policy. Data protection […] Read more
I recently published a blog post on the topic of Is taking someone’s picture in public breaching their privacy? I have since received many questions pertaining to whether using or publishing someone’s Facebook profile information could be considered as breaching their privacy. Facebook users post information and pictures about themselves and their loved ones as […] Read more