| Efficient and accurate authentication of individuals is a growing challenge across a number of sectors. There are currently three main forms of authentication, based on something you know, something you have and something you are. The third form is especially interesting in light of biometric technologies as a means of verification. This article explores some recent applications of biometrics in Ontario. OLG and OIPC Announcement
On November 12, 2010, Tom Marinelli, the Acting CEO of the Ontario Lottery & Gaming Corporation (OLG) and Dr. Ann Cavoukian, the Ontario Information & Privacy Commissioner (OIPC), announced a new development in privacy-protective facial recognition technology. [...] The US Secure Flight Program has garnered much public concern and disapproval in Canada, where many Canadians are finding themselves subject to the controversial regulations when flying over US airspace. Aviation security is a high priority issue for the Canadian federal Privacy Commissioner, who earlier this year carried out an investigation of airport security scanners being installed in Canadian airports. While security is an issue in the aviation industry, the Privacy Commissioner, along with other privacy watchdogs, insist that security measures must also respect the privacy and personal dignity of travelers in Canadian [...] Electronic authentication is common in this information-driven society, as daily transactions through electronic services and the Internet require remote electronic authentication. Online transactions are increasingly seamless through the connection of multiple devices which offer services to consumers that were previously unattainable. Many authentication systems collect and use the personal information of users in a way that compromises their privacy and security. Authentication systems must be designed to give consumers more control over their personal information, promoting user security and effective privacy [...] Youth privacy is increasingly important, especially in light of how young people adeptly integrate the Internet and online serves into their daily lives. Under the United Nations 1989 Convention on the Rights of the Child, privacy is a basic human right for everyone under the age of 18. In the United States, the FTC passed the Children’s Online Privacy Protection Act in 1998, specifically protecting children under age 13. Canadian privacy legislation – the PIPEDA and the Privacy Act – also ensure that children’s privacy is protected in the private and public spheres. The Canadian Privacy Commissioner has made youth privacy one of the issues to focus on for [...] Professional accountant institutions in the United States and Canada collaborated to publish a document describing the Generally Accepted Privacy Principles (GAPP). The GAPP facilitate management of privacy policies and programs on a local, national and international level. Accountants, among other professionals, face a number of differing privacy legislation and regulations. The GAPP offers a comprehensive framework for designing an effective, privacy program that can be applied in a number of industries and [...] In March 1996, the Canadian Standards Association (CSA) published the Model Code for the Protection of Personal Information. Canada was the first country in the world to establish a voluntary, national standard for personal information protection. The Model Code was largely based on the Guidelines Governing the Protection of Privacy and Transborder Flows of Personal Data, created by the Organization for Economic Cooperation and Development (OECD). While the Code remains a voluntary standard, it enjoys strong support and endorsement by a variety of Canadian companies as the national standard on privacy [...] The Personal Health Information Protection Act (PHIPA) represents a comprehensive model for the protection of personal health information in the province of Ontario. The PHIPA is one of parts of the Health Information Protection Act, the other being the Quality of Care Information Protection Act. About the PHIPA The PHIPA was enacted November 1, 2004 and outlines privacy policies and practices for health information custodians in the province of Ontario. It was necessary to develop the appropriate legislative provisions for Ontario health care providers to ensure the privacy of personal health information in a way that is consistent with effective health care [...] The Privacy Commissioner of Canada is mandated to oversee compliance with the Privacy Act and the Personal Information Protection and Electronic Documents Act (PIPEDA), a number of provinces have had their own private sector privacy legislation declared as substantially similar to federal statutes. A number of provinces have Privacy Commissioners Offices and Ombudsmen who work in conjunction with the federal Privacy Commissioner of Canada. They are responsible for the protection of personal information rights of Canadians under specific provincial legislation. Thus, provincial Commissioners must negotiate concurrent or overlapping jurisdiction with the federal Privacy Commissioner. Alberta PIPA: About The Personal Information and Protection [...] In addition to Canadian Federal privacy legislation – the Privacy Act and the Personal Information Protection and Electronic Documents Act, or PIPEDA – a number of Canadian provinces have also established their own substantially similar privacy statutes. Organizations operating in these provinces must respect the provincial legislation with respect to the collection, use or disclosure of personal information as well as the other federal regulations. Provincial & Territorial Privacy Laws As Canada’s privacy protection model takes a co-regulatory approach, a number of provinces and territories have established legislation with respect to the collection, use or disclosure of personal information within private sector [...] The Personal Information Protection and Electronic Documents Act (PIPEDA) is a Canadian federal legislation governing the collection, use and disclosure of personal information by private sector organizations. It also regulates the use of electronic documents while supporting e-commerce. About the PIPEDA The PIPEDA was enacted on April 13, 2000 in order to promote and support consumers in e-commerce. The PIPEDA was based on the Canadian Standards Association’s Model Code for the Protection of Personal Information. It also intended to reinforce the privacy protection mechanisms and practices which reflected European Union privacy directives. The PIPEDA was implemented in a number of phases over [...] | |
