Committee
Consult the user guide
For assistance, please contact us
Consult the user guide
For assistance, please contact us
Add search criteria
Results: 16 - 30 of 1860
Daniel Therrien
View Daniel Therrien Profile
Daniel Therrien
2021-06-21 12:21
At the beginning of my mandate, there was a lot of emphasis on public and national security issues, and on measures that followed the events of September 11.
The Snowden phenomenon highlighted certain government practices. It's not all perfect, but we have made progress on those issues. Legislation has been passed to raise the bar on which departments [Technical difficulty—Editor] for national security purposes. Most importantly, independent oversight bodies have been established and are now in place within the public service and within Parliament. As I mentioned, not everything is perfect, but significant progress has been made.
In recent years, with Facebook, Cambridge Analytica and all the rest, there has been a lot of focus on what some call surveillance capitalism, where companies collect, process and disclose a lot of information about their consumers to provide services, but also to make money, of course. That is where we are at now, which is why it is extremely important that these issues be properly regulated through Bill C‑11 or its successor.
I have to say that recently we are seeing more and more public‑private partnerships. Clearview AI and the RCMP are just one example among many. This leads me to suggest that you think seriously about the relationship between the public sector and the private sector in terms of sharing personal information, and the idea of the same legislation governing both sectors, which we think would be extremely desirable. If two laws are used, it would be best if they had very similar principles, because data has no geographic borders and no boundaries between the public and private sectors. It is important that similar rules govern both sectors.
I would add that, to maintain the confidence of the public and consumers, it is essential that [Technical difficulty—Editor] result in penalties that are proportionate to the magnitude of the impact of the privacy breach on privacy. Order powers and consequent fines are therefore crucial. The reason for recommending substantial fines is not to be punitive. Rather, it is to ensure that the consequences for people whose privacy has been breached are proportionate to the consequences for the companies involved, so that, over time, imposing such a regime will result in governments, departments and companies properly protecting the personal information of the public and consumers.
Daniel Therrien
View Daniel Therrien Profile
Daniel Therrien
2021-06-21 12:25
I'll be brief. It's about the concept of privacy as a human right.
The issues we are talking about are extremely complex from a technical point of view, as everyone agrees. Despite the complexity of the technology and the privacy rules, it is clear to me that the goal should be for our Canadian values to be reflected in our laws. One of those values is to treat privacy as a fundamental right, and that is an important principle no matter how complex the technology is. If our goal is to ensure that our values in privacy or other areas are reflected in our laws on digital, I think we can't go wrong.
View Brenda Shanahan Profile
Lib. (QC)
Thank you, Mr. Therrien. I will continue along those lines.
It's true that it's a principle that we all understand, but how do we implement it? It's very technical. As my colleagues have already mentioned, we are really in the wild west. Our committee has learned things in the last few months that we didn't think were possible, and we have to make decisions about them.
In your view, is it possible to come up with legislation that respects this principle but has clear and specific regulations, especially if it includes fines?
Daniel Therrien
View Daniel Therrien Profile
Daniel Therrien
2021-06-21 12:27
For more details, let me refer you to my submission.
Generally speaking, I would say that the principles can be clear and unambiguous, but not the rules. I agree with many of the speakers who speak favourably of the importance of having principle‑based privacy laws, such as the principle of corporate social responsibility. That principle needs to be defined broadly. Since technology is constantly and exponentially changing, I think it would be wishful thinking to believe that it is possible to have very precise, clear and permanent rules.
I agree that we must aim at the principle of transposing our values into our legislation. You are clearly asking the right question in asking how to do this in practice. There is a need for general principles, defined flexibly enough to accommodate the evolution of technology, but not so specific as to be detrimental to it, with the aim of both protecting privacy and allowing the use of data for the benefit of society.
View Brenda Shanahan Profile
Lib. (QC)
That's excellent.
Thank you again for your dedication, Mr. Therrien. We needed your expertise and we are glad you are staying on for another year.
I know my colleague Mr. Sorbara has a question for you.
View Francesco Sorbara Profile
Lib. (ON)
Thank you to my honourable colleague, MP Shanahan. It's very kind of you to share your time.
Mr. Therrien, again, congratulations on your reappointment for a year. It is actually a really learning experience for me to listen to you and to read the articles and pronouncements that you put out. This is a subject matter that's only growing in ever-increasing importance with this digital world that we continue to adopt at a very fast pace.
The one question I did have, Mr. Therrien, is about ensuring that Canada is competitive in the way we look at our privacy and interact in certain aspects with the Competition Bureau, that is, balancing it with the Competition Bureau of Canada's competitiveness and then keeping privacy in check. I know that it's a sort of holistic question, but it's just so important that we get that balance correct, versus what the Europeans are doing and have done, and versus what our neighbours to the south have done and are doing. Can you comment on that, please?
Daniel Therrien
View Daniel Therrien Profile
Daniel Therrien
2021-06-21 12:30
Yes. We think that for Canada to be competitive—and the government underlined this in Bill C-11, and I would completely agree.... We have a confidence problem, a trust problem. Consistently Canadians, at the level of 90% or so, have expressed their concerns that privacy is not currently respected. They continue to use the Internet, because frankly you cannot live outside of the digital world in 2021. However, they still have important concerns, so we have a trust issue.
In order to deal with the trust issue, you need to have laws that enhance trust. That means ensuring that with regard to privacy laws, rights and values, consumers and citizens see that the legislation is apt to protect rights and values and produces proportional consequences, penalties, if these rights and values are not respected.
The law should provide for flexibility for companies to use data for legitimate commercial purposes, and our submissions I think go in that vein. There is no opposition really between privacy protection and economic development or innovation. As far as our relationship with the Competition Bureau and other regulators is concerned, it's extremely important that digital regulators are able to co-operate and share information so as to have an effective regulatory framework across all sectors. We have a good relationship with the Competition Bureau.
View Chris Warkentin Profile
CPC (AB)
Thank you, Mr. Sorbara.
Commissioner, we want to thank you for coming today. We appreciate your work, your continued effort to protect the privacy of Canadians and ensure that parliamentarians and Canadians are aware and informed of concerns that you and your office bring. We believe that to be an important service to Canadians. We look forward to continuing to work with you over the next year and look forward to where that takes us.
Commissioner, we know that the House has already approved your extension, so today we don't need to do that. We just thought it was important for committee members to follow our usual practice, which is to consider where you will head, and the relationship between the committee and you over the duration of your appointment.
We don't have anything further to add in terms of process. The House has already approved your appointment. We concur with that. I think I speak on behalf of all committee members in thanking you for your service and commending you for continuing to do what you have done so well over the last number of years.
Daniel Therrien
View Daniel Therrien Profile
Daniel Therrien
2021-06-23 15:43
Thank you to the Chair and members of the committee for your invitation to share our views on your current study.
As you said, I am accompanied by Gregory Smolynec, the Deputy Commissioner. Due to a prior engagement, I cannot be here for the entire meeting, but Mr. Smolynec will remain afterwards to address any questions that you may wish to ask.
I am here to speak to you today about what the Privacy Act does and does not allow with respect to the production of documents under provisions of the Act related to disclosures of personal information.
Let me begin by stating that the role of the Office of the Privacy Commissioner is to oversee compliance with the duties and obligations in both the Privacy Act (the public sector law) and the Personal Information Protection and Electronic Documents Act (the private sector law).
The public sector law, the Privacy Act, enacted in 1983, applies to the personal information handling practices of federal government departments and agencies. The act defines personal information as information about an identifiable individual that has been recorded in any form. The act states that personal information collected by federal institutions can only be used for the purpose for which it was collected, for uses consistent with that purpose, or for purposes specifically provided for under subsection 8(2) of the Act. I believe this to be the provision most relevant to this discussion.
According to the Privacy Act, personal information cannot be disclosed without consent unless exceptions delineated in subsection 8(2) of the Privacy Act apply, two of which are most relevant for this discussion.
The first I would highlight is paragraph 8(2)(m). This provision allows for the disclosure of personal information where, “in the opinion of the head of the institution...the public interest...clearly outweighs any invasion of privacy that could result from the disclosure, or” if the “disclosure would clearly benefit the individual to whom the information relates”. Fundamental to this exercise of discretion is that there must be a clear public interest in the disclosure. The discretion to disclose or not to disclose personal information lies with the institutional head.
The second relevant provision is paragraph 8(2)(c) of the Privacy Act, which allows for the disclosure of personal information to “a court, person or body with jurisdiction” and the power “to compel the production of information” through the issuance of an order, subpoena or warrant. In relation to this provision, we recognize Parliament's authority to compel the production of documents that may contain personal information and acknowledge that the Privacy Act therefore allows for the disclosure of personal information to a committee.
In previous instances where this issue has arisen, we have recommended that committees explore a range of options to ensure that the authority of committees is exercised in ways that do not unduly invade on privacy. For example, mechanisms that might be considered include having committees come to an agreement that they will limit the personal information sought to only those cases that are clearly necessary to resolve the public interest at issue. Another possibility would be to hold meetings in camera where personal information is to be examined and discussed, or ensuring that there are proper procedures for securing that information once it is in the possession of both the committee as a whole as well as individual members. These are examples of privacy protective measures.
We hope—
View Michelle Rempel Garner Profile
CPC (AB)
Thank you, Chair.
My line of questions will be directed to Mr. Dufresne in trying to ascertain what the committee should do with regard to next steps in trying to obtain the documents that we have not received yet.
Just for clarity, approximately how many documents did you receive under the House order from October of last year?
Philippe Dufresne
View Philippe Dufresne Profile
Philippe Dufresne
2021-06-23 17:08
We have received approximately 6,307 documents.
Philippe Dufresne
View Philippe Dufresne Profile
Philippe Dufresne
2021-06-23 17:08
They have. Excuse me, some that have been received have not been released to the committee because they have not been translated, so 6,307 have been tabled—
Results: 16 - 30 of 1860 | Page: 2 of 124

|<
<
1
2
3
4
5
6
7
8
9
10
>
>|
Export As: XML CSV RSS

For more data options, please see Open Data