Quebec City February 2005 PUBLIC SECTOR CIO COUNCIL BC - USA Patriot Act Update.

Slides:

Advertisements

Similar presentations

Reliability in British Columbia

Advertisements

Consumers International March 2011 consumersinternational.org.

Alberta Occupational Health and Safety Update 2013.

Confidentiality and HIPAA

29e CONFÉRENCE INTERNATIONALE DES COMMISSAIRES À LA PROTECTION DES DONNÉES ET DE LA VIE PRIVÉE 29 th INTERNATIONAL DATA PROTECTION AND PRIVACY COMMISSIONERS.

Research and the Health Information Act Rachel Hayward Office of the Information and Privacy Commissioner of Alberta.

Cross-Border Privacy Issues and the USA Patriot Act Presentation for INSIGHT Montréal December 7-8, 2005 Charles Morgan

1 PRIVACY ISSUES IN THE U.S. – CANADA CROSS BORDER BUSINESS CONTEXT Presented by: Anneli LeGault ACC Greater New York Chapter Compliance Seminar May 19,

TEQSA Registration and Material Change Processes Senior Management Summit 15 February 2012 Professor Merran Evans, Pro Vice-Chancellor, Planning and Quality.

© 2003 IBM Corporation Privacy 12 th CACR Workshop Yim Y. Chan Chief Privacy Officer & CIO IBM Canada Ltd. w3.ibm.com/Privacy.

Managing Personal Information - Australian Companies Outsourcing to India and the Philippines Professor Margaret Jackson and Marita Shelly.

The Federal Regulator’s Perspective Industrial Railway Safety Conference Fort Saskatchewan, Alberta April 28, 2015.

Version 6.0 Approved by HIPAA Implementation Team April 14, HIPAA Learning Module The following is an educational Powerpoint presentation on the.

1. 2 CVM’s OBJECTIVES u to stimulate the creation of savings and their investment in securities; u to promote the expansion and regular and efficient.

The role of the Office of the Privacy Commissioner in telecommunications Andrew Solomon Director, Policy.

1 Office of theCommissariat Privacy Commissionerà la protection de of Canadala vie privée du Canada Personal Information Protection and Electronic Documents.

Procurement Lobbying Legislation New York State Bar Association December 9, 2005 (revised January 4, 2006)

Supplier Ethics: Program Checklist

"Can I give this out?" What Frontline Staff Need to Know About FOI and Privacy 2010 LGMA Administrative Professionals' Conference Paul Hancock, City of.

Information Asset Classification

Name of presenter(s) or subtitle Privacy laws and their impact on research David W. Stark MRIA B.C. Chapter November 2, 2005.

Welcoming the Equality Act 2010 Equality Law Conference 8 December 2010 John Wadham Group Legal Director Equality and Human Rights Commission.

1 Brace Centre for Water Resources Management McGill University, Sept. 25 François Boulanger, Regional Director The New Canadian Environmental Assessment.

Teresa Macklin Information Security Officer 27 May, 2009 Campus-wide Information Security Activities.

David W. Stark Name of presenter(s) or subtitle MRIA Alberta Chapter

G17: Recordkeeping for Business Activities Carried out by Contractors Patrick Power, Manager Government Recordkeeping Programme Archives New Zealand.

Privacy Law for Network Administrators Steven Penney Faculty of Law University of New Brunswick.

CORPORATE COMPLIANCE Tim Timmons Vice President Compliance and Regulatory Services Health Future, LLC.

ANTI-CARTEL ENFORCEMENT IN VIETNAM Presented by: Le Thanh Vinh Vietnam Competition Administration Department – Ministry of Trade Seoul, 07/04/2006.

Integrating HIPAA Into Your Compliance Program Fifth Annual National Congress on Health Care Compliance February 7, 2002 Glenna S. Jackson Vice President.

Recommendation for Greater Transparency and Efficiency to Better Protect the Public Interest Professional Practices Institute Conference October 23 – 25.

Privacy & Personal Information Prepared by the CBC Law Department CONFIDENTIAL – FALL 2011.

Best Practices: Financial Resource Management February 2011.

Part 6 – Special Legal Rights and Relationships Chapter 35 – Privacy Law Prepared by Michael Bozzo, Mohawk College © 2015 McGraw-Hill Ryerson Limited 34-1.

HIPAA Michigan Cancer Registrars Association 2005 Annual Educational Conference Sandy Routhier.

FleetBoston Financial HIPAA Privacy Compliance Agnes Bundy Scanlan Managing Director and Chief Privacy Officer FleetBoston Financial.

State Agency on Public Procurement and Material Reserves under the Government of the Kyrgyz Republic Public Procurement System of the Kyrgyz Republic.

Information Asset Classification Community of Practicerev. 10/24/2007 Information Asset Classification What it means to employees.

Guide - Recordkeeping for business activities carried out by contractors Natalie Dewson Senior Advisor Government Recordkeeping Programme Archives New.

PIPEDA and Receivables Management Robin Gould-Soil Receivables Management Association of Canada November 16, 2011.

Provincial SCM Summit 03 February 2011 Bolivia Lodge Consolidated Policy inputs and Recommendations.

Privacy Challenges for Condominium Corporations and Condominium Managers presented to the Association of Condominium Managers of Alberta by Carmen Mann,

BC Public Libraries November, 2008 Privacy Principles.

Copyright ©2014 by Saunders, an imprint of Elsevier Inc. All rights reserved 1 Chapter 02 Compliance, Privacy, Fraud, and Abuse in Insurance Billing Insurance.

Infrastructure Development Bill [B ] Submission by the Centre for Environmental Rights to Portfolio Committee on Economic Development 14 January.

HOUSE BILL 192 AND YOU: UNDERSTANDING, IMPLEMENTING AND ENFORCING GEORGIA’S NEW P-CARD LEGISLATION.

OMB Memorandum M Implementation of the Government Charge Card Abuse Prevention Act of 2012 (Charge Card Act) September 2013.

Research & Economic Development Office of Grants and Contracts Administration Data Security Presented by Debbie Bolick September 24, 2015.

Effectively Integrating Information Technology (IT) Security into the Acquisition Process A course for the Department of Commerce contracting and contracting.

Fred Carter Senior Policy & Technology Advisor Information and Privacy Commissioner Ontario, Canada MISA Ontario Cloud Computing Transformation Workshop.

PRESENTATION TO THE SELECT COMMITTEE ON PUBLIC SERVICES: RENTAL HOUSING AMENDMENT BILL C SEPTEMBER: MINISTER OF HUMAN SETTLEMENTS DATE: 4 MARCH 2014.

SOUTH AFRICAN REVENUE SERVICE AMENDMENT BILL, 2002.

1 MINE HEALTH AND SAFETY AMENDMENT BILL, KEY OBJECTIVES OF THE ACT The department introduced the Bill in parliament as a Section 75 Bill. The.

Implementation of legislation (Chapter 47) By Haley Court.

Information Security TechLink Seminar, 17 April 2013 James Knapton, Information Compliance Officer, Registrary’s Office.

The Health Information Protection Act. What is the Health Information Protection Act (HIPA)? HIPA is legislation that speaks to access to, and protection.

REPUBLIC OF ALBANIA PUBLIC PROCUREMENT AGENCY Eighth Regional Public Procurement Forum May, 22-25, 2012 Tirana

Regulation Highlights Kimberly Heifetz May 15, 2012.

TRANSBORDER DATA FLOWS INA MEIRING. THE PROTECTION OF PERSONAL INFORMATION ACT (“POPI”) > 'personal information' means information relating to an identifiable,

Health and Social Care Vetting and Barring Scheme (VBS) Review of the Scheme.

1 Changes to Regulations Governing Personal Conflicts of Interest and Organizational Conflicts of Interest Breakout Session # C08 Name: Barbara S. Kinosky,

Nassau Association of School Technologists

TIBiH engagement in improving the public procurement system in BiH

PRESENTATION OF MONTENEGRO

Procurement Lobbying Legislation New York State Bar Association

On the Cutting Edge – Update on Privacy Legislation

Passing Legislation.

The Freedom of Information and Data Protection Legislation An Overview

Looking to Ottawa: disability policy issues at the federal level

Kenya Mann Faulkner Chief Ethics & Compliance Officer April 2019

Presentation transcript:

Quebec City February 2005 PUBLIC SECTOR CIO COUNCIL BC - USA Patriot Act Update

1 Background BCGEU legal action (February 2004) – Outsourcing and Patriot Act. Information and Privacy Commissioner Inquiry (over 500 submissions) Public profile – media coverage, “Right to Privacy Campaign”, Fahrenheit 9/11 BC Government Submission Commissioner’s Report/Recommendations (October 2004)

2 FOIPP Act Legislative Changes (Bill 73) Amending protection of privacy provisions in the FOIPP Act to prevent the storage of, and access to, personal information outside of Canada Amending protection of privacy provisions in the FOIPP Act to restrict the disclosure of personal information outside of Canada Extending requirements and restrictions posed by privacy protection provisions to service providers and employees Requiring the reporting of any requests received from jurisdictions external to Canada for unauthorized disclosure of personal information Including “whistle-blower protection” in legislation to protect individuals who report violations of the disclosure rules Creating offences and penalties for violation of disclosure rules and failure to report Transitional provisions

3 Transitional Provisions The new privacy provisions will apply to all contracts signed by Government Ministries with a contract commitment date later than October 12, The provisions will also apply to contracts signed by all other public bodies (including Crown agencies, health authorities, municipalities, etc.) with a contract commitment date after Royal Assent (October 21). However, a public body is expected to bring all existing contracts into compliance with the new provisions as soon as reasonably possible. Commitment date means: (a) in the case of a contract that a public authority is legally obliged to enter into as a result of a completed binding competitive process, the date on which the process was completed, or (b) in any other case, the date on which the contract was entered into by the public authority;

4 Commissioner’s Report Key points: “ A ban on outsourcing is not a practical or effective response” “A sensible solution is to put in place legislative, contractual and practical mitigating measures against illegal and surreptitious access” Commissioner called Bill 73 a “laudable piece of legislation’ and has suggested that the Federal government enacted similar provisions Made 16 recommendations – 6 Federal; 2 joint; 8 BC (a number of which were not related to the Patriot Act – Information sharing agreements)

5 Commissioner’s recommendations Further amendments to the FOIPP Act Create and publish a litigation policy for challenging foreign orders BC/Canada to jointly request USA not to seek personal information under the Patriot Act or similar mechanisms Commit resources to ensure privacy mitigation measures are in contracts Implement a program of regular third party compliance audits TB to direct Ministries to include resources for audits and contract privacy measures in their service plans and budgets Federal government should review legislation re Patriot Act Federal government should review FOIPP amendments and consider implementing

6 Commissioner’s recommendations (cont.) Conduct comprehensive audit of Information Sharing Agreements, publicly release report and address deficiencies Conduct comprehensive review of data mining activities and develop legislation to regulate Federal government should also implement ISA and data mining recommendations Fully implement and expand section 69 of FOIPP Act (PID) Make similar amendments to PIPA and PIPEDA Federal government should review: anti-terrorism legislation International Trade and Investment Agreements to ensure they do not impair provincial jurisdiction to maintain and enhance privacy protections Trans-national Data Protection and Oversight Standards in International Agreements.

7 Mitigation Strategies Mitigation measures include: 1. Technology and Businesses Processes 2. Employee Strategies 3. Contractual Measures 4. Corporate Structures Procurement - privacy protection requirements/schedule Legislative provisions

8 Next Steps Rigorous mitigation provisions in contracts and corporate restructuring requirements Sharing with other jurisdictions – federal/provincial discussions Responding to Information and Privacy Commissioner’s Recommendations – on-going Continuing Profile – FOI requests, media Pending legal action

9 Guidelines and Resources Information Policy and Privacy Branch Website: Bill 73 Model Contract Language (Privacy Protection Schedule) Privacy Protection Measures Q & As – Proposed amendments to FOIPP Act in response to the USA Patriot Act USA Patriot Act – Government Briefing Link to Purchasing and Contract Management Resource Centre  Instructions on How to Apply Amendments to Contracts  Suggested RFP Language