Privacy Challenges for Condominium Corporations and Condominium Managers presented to the Association of Condominium Managers of Alberta by Carmen Mann,

Slides:

Advertisements

Similar presentations

Data Protection Law In India iPleaders and Intelligent Legal Risk management LLP.

Advertisements

Presentation to the Association of Municipal Administrators of New Brunswick 2013 Annual Conference Shediac, NB – June 14, 2013.

Drafting and Reviewing Confidentiality Agreements West LegalEdcenter 2012.

1. As a Florida KidCare community partner families entrust you to not only help them navigate the Florida KidCare system but to keep the information they.

HIPAA THE PRIVACY RULE Reviewed December HISTORY In 2000, many patients that were newly diagnosed with depression received free samples of anti-

The Problem Solvers TM Privacy Rights: Minors and Parents Michael J. Hewitt Marcel Daigle Singleton Urquhart LLP.

PRIVACY BREACHES A “breach of the security of the system”: –Is the “unauthorized acquisition of computerized data that compromises the security, confidentiality,

VIU Workshop: Creating a Culture of Privacy Awareness June 12, 2013 By Justin Hodkinson OIPC Policy Analyst/Investigator Office of the Information & Privacy.

Research and the Health Information Act Rachel Hayward Office of the Information and Privacy Commissioner of Alberta.

CONSENT AND THE PERSONAL HEALTH INFORMATION PROTECTION ACT, 2004 PHIPA Summit 2005 November 3, 2005 Halyna Perun, Counsel, Ministry of Health and Long-Term.

1 PRIVACY ISSUES IN THE U.S. – CANADA CROSS BORDER BUSINESS CONTEXT Presented by: Anneli LeGault ACC Greater New York Chapter Compliance Seminar May 19,

Quebec City February 2005 PUBLIC SECTOR CIO COUNCIL BC - USA Patriot Act Update.

The Australian Privacy Principles Protecting information rights – advancing information policy.

BC Freedom of Information and Protection of Privacy Act

DATA PROTECTION and Research University Research Ethics Committee – David Cauchi Office of the Data Protection Commissioner.

Mark S. Hayes – Blake, Cassels & Graydon LLP Privacy and Security – Some Observations Mark S. Hayes, Blake, Cassels & Graydon LLP 7th CACR Privacy and.

Introduction to the APPs and the OAIC’s regulatory approach Presented by: Este Darin-Cooper Director, Regulation and Strategy May 2015.

Transparency in Public Administration – FOI and EIR

Per Anders Eriksson

DEED WorkForce Center Reception and Resource Area Certification Program Module 2 Unit 1b: WorkForce Center System II Learning Objectives III.

Implementing and Enforcing the HIPAA Privacy Rule.

Data Protection Paul Veysey & Bethan Walsh. Introduction Data Protection is about protecting people by responsibly managing their data in ways they expect.

Personal Data (Privacy) Ordinance Hong Kong Personal Data (Privacy) Ordinance Hong Kong by Stephen Lau Privacy Commissioner for Personal Data Hong Kong.

The employment relationship as the privacy laboratory Elizabeth Denham Information and Privacy Commissioner for B.C. Privacy, Law and the Contemporary.

The ICO and the DPA Ken Macdonald Assistant Commissioner Information Commissioner’s Office ScotStat Public Sector Analysts Network 30 th September 2010.

Privacy: What you need to know Elizabeth Denham Information and Privacy Commissioner for B.C. Professional Investigators’ Association of B.C. October 26,

Name of presenter(s) or subtitle Privacy laws and their impact on research David W. Stark MRIA B.C. Chapter November 2, 2005.

13 July 2006Susan Joseph Health Privacy It’s My Business Health Records Act 2001 (Vic) eReferral Service Co-ordination System.

Privacy Law for Network Administrators Steven Penney Faculty of Law University of New Brunswick.

HIPAA PRIVACY AND SECURITY AWARENESS.

Confidentiality, Consents and Disclosure Recent Legal Changes and Current Issues Presented by Pam Beach, Attorney at Law.

Dobson Ranch August 16, Job Description  Section 8. Duties. To the extent that such  duties are not assigned or delegated to a  manager or executive.

Protecting information rights – advancing information policy The Australian Privacy Principles.

Part 6 – Special Legal Rights and Relationships Chapter 35 – Privacy Law Prepared by Michael Bozzo, Mohawk College © 2015 McGraw-Hill Ryerson Limited 34-1.

Privacy & Confidentiality

HIPAA THE PRIVACY RULE. 2 HISTORY In 2000, many patients that were newly diagnosed with depression received free samples of anti- depressant medications.

PIPEDA and Receivables Management Robin Gould-Soil Receivables Management Association of Canada November 16, 2011.

BC Public Libraries November, 2008 Privacy Principles.

STUDENT JUDICIAL AFFAIRS Balancing the Principals of Natural Justice with Requirements of Privacy Legislation CCSJA March 23, 2006 Harry Davis Deborah.

C HAPTER 34 Code Blue Health Sciences Edition 4. Confidentiality of sensitive information is an important issue in healthcare. Breaches of confidentiality.

HIPAA Health Insurance Portability and Accountability Act of 1996.

IM NETWORK MEETING 20 TH JULY, 2010 CONSULTATION WITH 3 RD PARTIES.

PROTECTION OF PERSONAL DATA. OECD GUIDELINES: BASIC PRINCIPLES OF NATIONAL APPLICATION Collection Limitation Principle There should be limits to the collection.

An Introduction to the Privacy Act Privacy Act 1993 Promotes and protects individual privacy Is concerned with the privacy of information about people.

19 th Theater Support Command Inspector General NEED ASSISTANCE? Before You Tell it to Your Inspector General….Give Your Chain of Command a Chance to Solve.

1 The Public Interest Disclosure (Whistleblower Protection) Act.

Privacy Information for Advisors. Agenda PIPEDA Advisor Required Privacy Program Our MGA Privacy Program Recommendations for Advisors.

Introduction to the Australian Privacy Principles & the OAIC’s regulatory approach Privacy Awareness Week 2016.

Privacy and Personal Information. WHAT YOU WILL LEARN: What personal information is. General guidelines for the collection of personal information. Your.

Understanding Privacy An Overview of our Responsibilities.

Canada’s Breach Reporting Law What you need to know Timothy M. Banks, CIPP/C Dentons Canada LLP July 21, 2015.

Understanding Privacy An Overview of our Responsibilities.

MUM’S THE WORD: A Strata Corporation’s obligations under the Personal Information Protection Act February 24, 2016 Presented by: Veronica P. Franco Buildex.

Nassau Association of School Technologists

PRIVACY TRAINING For CAILBA members

HIPAA THE PRIVACY RULE Reviewed December 2012.

Privacy principles Individual written policies

Obligations of Educational Agencies: Parents’ Bill of Rights

Privacy principles Individual written policies

Overview What is a privacy breach? 2. Examples of privacy breaches 3. Consequences of privacy breaches 4. Steps to handling a privacy breach.

Notifiable data breaches Roundtable

Privacy Breach Response and Reporting

Move this to online module slides 11-56

OECD Guidelines Collection Limitation: should be limited to personal data, obtained by lawful and fair means, and (where appropriate) with knowledge and.

Mandatory Breach Reporting (isn’t *that* bad)

On the Cutting Edge – Update on Privacy Legislation

IAPP TRUSTe SYMPOSIUM 9-11 JUNE 2004

Good Spirit School Division

Upcoming PIPEDA Changes

Presentation transcript:

Privacy Challenges for Condominium Corporations and Condominium Managers presented to the Association of Condominium Managers of Alberta by Carmen Mann, Portfolio Officer Office of the Information and Privacy Commissioner November 19, 2010 Calgary, AB

Applicable Legislation (Alberta)  Personal Information Protection Act (PIPA)  Privacy obligations of private sector organizations, including both condominium corporations and condominium management companies  Condominium Property Act  Rights and responsibilities of condominium corporations, condominium boards and owners

General Privacy Principles  Reasonable purpose for collection, use or disclosure (“CUD”)  Consent to CUD  Exceptions to consent  Legislative authority  Access to personal information  Correction of personal information  Safeguarding  Privacy Officer and Privacy Policy  *NEW* Notifying Commissioner of incidents

Service Providers – s. 5 s. 5 provides: (2) For the purposes of this Act, where an organization engages the services of a person, whether as an agent, by contract or otherwise, the organization is, with respect to those services, responsible for that person’s compliance with this Act. (6) Nothing in subsection (2) is to be construed so as to relieve any person from that person’s responsibilities or obligations under this Act.

OIPC Statistics Complaints/Requests for Review Property Management Companies (includes Landlords) Estimated total to date (since 2004): 85 Condominium Corporations Estimated total to date (since 2004): 25

OIPC Orders  Order P  Disclosure without consent: President of Condo Board overheard by Complainant discussing Complainant’s personal information with a resident and another person.  Order P  Disclosure without consent: Personal information of Complainant alleged to have been included in AGM minutes.  Order P  Access request: Applicant wanted Condo Corp to give him a copy of the complaint it received about him.

Common Complaints  Safeguarding complaints – s. 34   AGM sign in sheets  New keys  Disclosures at AGM and in Meeting Minutes

Access Requests  Access to Personal Information – s. 24  Photographs  Complaints  Access to Non-Personal Information – s. 20  Other owner contact information  Parking/storage space information  Condominium financial information  Resolutions

Section 20 and the CPA 20 An organization may disclose personal information about an individual without the consent of the individual but only if one or more of the following are applicable: (b)The disclosure of the information is authorized or required by (i) a statute of Alberta or of Canada (ii) a regulation of Alberta or a regulation of Canada (iii) a bylaw of a local government body, or (iv) a legislative instrument of a professional regulatory body

Breach Reporting (s. 34.1(1)) Section 34.1(1) provides: 34.1(1) An organization having personal information under its control must, without unreasonable delay, provide notice to the Commissioner of any incident involving the loss of or unauthorized access to or disclosure of the personal information where a reasonable person would consider that there exists a real risk of significant harm to an individual as a result of the loss or unauthorized access or disclosure.

Resources  Alberta:  Frequently Asked Questions For Condominium Corporations:  BC:  Privacy Guidelines for Strata Corporations & Strata Agents:* *NOTE THOUGH THE BC PIPA IS NOT IDENTICAL TO THE AB PIPA

Contact Information  Office of the Information and Privacy Commissioner  Fax: (403)  Toll Free:  Website -  Access and Privacy Branch, AB Government Services  Website -  Information Line (780) 644-PIPA (7472)

Questions?