E-CommerceALERT.com is part of the Bennett Gold LLP web site network.
LINK TO: Bennett Gold LLP, Chartered Professional Accountants, home page.		 LINK TO: E-CommerceALERT.com Home Page.
CLICK to GO BACK to Main Page.

Research and retrieval of news articles by:
Bennett Gold LLP, Chartered Professional Accountants


SPECIAL NOTE TO ALL VISITORS:
Effective December 31 2012, articles are no longer being updated on this web site.
The site is now maintained as an historical archive, covering notable e-commerce news articles from the period 1999 to 2012.


PRIVACY COMPLAINTS, DATA BREACHES JUMP: WATCHDOG JENNIFER STODDART

Source: The Star

Posted on October 29, 2012

Record delays in accessing personal information held by Ottawa, along with more than six dozen breaches of sensitive data last year alone, show Canada's privacy laws are in dire need of updating, a federal watchdog says.

In her annual report Canada's privacy commissioner Jennifer Stoddart paints a troubling picture of a bureaucracy governed by obsolete legislation that provides few incentives to report when data has been compromised and offers little recourse to citizens if their personal information is misused.

Stoddart's office received 986 complaints about the government's handling of private information last year - a 39 per cent increase over the previous year - most of them targeting the Correctional Service Canada, the RCMP, National Defence and the Canada Revenue Agency. The majority of complaints centered on problems citizens encountered while trying to access information about themselves held by government departments and the amount of time it took to get a response.

Meanwhile, data breaches involving government-controlled personal information were at their highest level in recent years, with 80 reported cases in 2011 and 2012 - a 25 per cent increase over the previous year.

But because the reporting of data breaches is voluntary, the commissioner's office was unable to determine if the number of breaches actually increased or whether departments took more initiative in reporting them.

"We have no idea what part of the actual data breaches going on we see or know about," Stoddart told the Toronto Star. "It could be the tip of the iceberg and many may be simply shoved to the background."

Her report also highlights problems at a number of government departments, including the Canada Revenue Agency, which saw an 23 per cent increase in complaints last year.

In one instance, a woman lodged a complaint with the CRA after she learned that her tax information had been accessed by a government employee now living with her ex-husband. The CRA took 13 months to investigate and failed to inform the woman about the results of the investigation.

"Year after year, people come to us with complaints that somebody has been looking into their tax files, somebody they know personally or someone who is part of their community," Stoddart said. "This has to be stopped.

"It's not acceptable for Canadians to give their personal information under law to the government and then not have really strong safeguards about who's using it and who's misusing it, and not to have any real remedy if it's misused."

Compounding the problem is Canada's 30-year-old Privacy Act - legislation Stoddart calls "almost totally obsolete" - created before the widespread use of personal computers and the Internet. She laments the lack of government action to despite numerous calls by her office to revamp the law.

Also tabled was Stoddart's follow-up audit of Veterans Affairs Canada, which was heavily criticized in 2010 for widely sharing a veteran's medical information with employees who had no legitimate reason to see it. The personal data even made it into ministerial briefing notes.

Stoddart said the department now has a comprehensive privacy management program and appears to be taking its obligation to protect veterans' private information seriously.

Avner Levin, director of Ryerson University's Privacy and Cyber Crime Institute, says the commissioner's concerns will do little to encourage government departments and institutions to part with information or diligently report data breaches.

"There is a tendency in any organization to say, 'We're not going to share that.' I think all organizations are guilty of this, not just the public sector," said Levin, noting that government departments tend to take a very rigid interpretation of privacy law.



CLICK to GO BACK to Main Page.

E-Commerce Alerts are issued by Bennett Gold LLP, Chartered Professional Accountants as situations develop. Bookmark this site and check back often. Our e-mail address is: info@BennettGold.ca

In accordance with United States Code, Title 17, Section 107 and Article 10 of The Berne Convention on Literary and Artistic Works, the news clippings on this web site are made available without profit for research and educational purposes.

ALERT
ARCHIVES
Final Entries
2012
2011
2010
2009
2008
2007
2006
2005
2004
2003
2002
2001
2000
1999


LINK TO: Bennett Gold, Chartered Professional Accountants: A Licensed Provider of WebTrust Services.

WebTrust Is Your
Best Defense
Against
Privacy Breaches.

Get WebTrust
Working For
Your Site.