SlideShare una empresa de Scribd logo
1 de 17
Descargar para leer sin conexión
Everything you need to know about workplace privacy Dan Michaluk January 27, 2010
Outline ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
Employee privacy rights and the patchwork quilt ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
Employee privacy rights and the patchwork quilt ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
How to run an internet background check An information collection model  for efficient and compliant  recruiting
How to run an internet background check ,[object Object],[object Object],[object Object],[object Object]
Why  your acceptable use policy needs to change ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
Why  your acceptable use policy needs to change ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
Why  your acceptable use policy needs to change ,[object Object]
How  your acceptable use policy needs to change ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
Yes you can transfer data to the U.S. but… ,[object Object],[object Object],[object Object],[object Object]
Yes you can transfer data to the U.S. but… ,[object Object],[object Object],[object Object],[object Object],[object Object]
How to manage the risk of disease Employer Employee HCP Medical  Advisor
How to manage the risk of disease ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
How to manage the risk of disease ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
Dan Michaluk ,[object Object],[object Object],[object Object],[object Object],[object Object],[object Object]
Everything you need to know about workplace privacy Dan Michaluk January 27, 2010

Más contenido relacionado

Destacado

Visual fusion 5_visual_rollups
Visual fusion 5_visual_rollupsVisual fusion 5_visual_rollups
Visual fusion 5_visual_rollupsIDV Solutions
 
Visual fusion5geodata
Visual fusion5geodataVisual fusion5geodata
Visual fusion5geodataIDV Solutions
 
Information from Jack Tuckner about Workplace Rights
Information from Jack Tuckner about Workplace RightsInformation from Jack Tuckner about Workplace Rights
Information from Jack Tuckner about Workplace RightsJack Tuckner
 
Corporate Security and the Organisational Frontline
Corporate Security and the Organisational FrontlineCorporate Security and the Organisational Frontline
Corporate Security and the Organisational FrontlineExpoco
 
Employees Privacy Issues and Legal Rights
Employees Privacy Issues and Legal RightsEmployees Privacy Issues and Legal Rights
Employees Privacy Issues and Legal RightsSaad Mazhar
 
Workplace Privacy and Employee Monitoring: Laws and Methods
Workplace Privacy and Employee Monitoring: Laws and MethodsWorkplace Privacy and Employee Monitoring: Laws and Methods
Workplace Privacy and Employee Monitoring: Laws and Methodscmilliken09
 
Chapter 16 Employee Rights and Discipline
Chapter 16 Employee Rights and DisciplineChapter 16 Employee Rights and Discipline
Chapter 16 Employee Rights and DisciplineRayman Soe
 
Security Management Practices
Security Management PracticesSecurity Management Practices
Security Management Practicesamiable_indian
 

Destacado (11)

Visual fusion 5_visual_rollups
Visual fusion 5_visual_rollupsVisual fusion 5_visual_rollups
Visual fusion 5_visual_rollups
 
Visual fusion5geodata
Visual fusion5geodataVisual fusion5geodata
Visual fusion5geodata
 
Information from Jack Tuckner about Workplace Rights
Information from Jack Tuckner about Workplace RightsInformation from Jack Tuckner about Workplace Rights
Information from Jack Tuckner about Workplace Rights
 
Corporate Security and the Organisational Frontline
Corporate Security and the Organisational FrontlineCorporate Security and the Organisational Frontline
Corporate Security and the Organisational Frontline
 
Employees Privacy Issues and Legal Rights
Employees Privacy Issues and Legal RightsEmployees Privacy Issues and Legal Rights
Employees Privacy Issues and Legal Rights
 
Workplace Privacy
Workplace PrivacyWorkplace Privacy
Workplace Privacy
 
Workplace Privacy and Employee Monitoring: Laws and Methods
Workplace Privacy and Employee Monitoring: Laws and MethodsWorkplace Privacy and Employee Monitoring: Laws and Methods
Workplace Privacy and Employee Monitoring: Laws and Methods
 
Corporate security
Corporate securityCorporate security
Corporate security
 
Corporate security pdf
Corporate security pdfCorporate security pdf
Corporate security pdf
 
Chapter 16 Employee Rights and Discipline
Chapter 16 Employee Rights and DisciplineChapter 16 Employee Rights and Discipline
Chapter 16 Employee Rights and Discipline
 
Security Management Practices
Security Management PracticesSecurity Management Practices
Security Management Practices
 

Más de Dan Michaluk

Ecno cyber - 23 June 2023 - djm(137852631.1).pptx
Ecno cyber - 23 June 2023 - djm(137852631.1).pptxEcno cyber - 23 June 2023 - djm(137852631.1).pptx
Ecno cyber - 23 June 2023 - djm(137852631.1).pptxDan Michaluk
 
Critical Issues in School Board Cyber Security
Critical Issues in School Board Cyber SecurityCritical Issues in School Board Cyber Security
Critical Issues in School Board Cyber SecurityDan Michaluk
 
Introduction to FOI law (the law of information)
Introduction to FOI law (the law of information)Introduction to FOI law (the law of information)
Introduction to FOI law (the law of information)Dan Michaluk
 
Higher Education Sexual Violence Presentation
Higher Education Sexual Violence PresentationHigher Education Sexual Violence Presentation
Higher Education Sexual Violence PresentationDan Michaluk
 
Cyber class action claims at an inflection point
Cyber class action claims at an inflection pointCyber class action claims at an inflection point
Cyber class action claims at an inflection pointDan Michaluk
 
The pandemic and privacy
The pandemic and privacyThe pandemic and privacy
The pandemic and privacyDan Michaluk
 
Cyber security for the regulator and regulated - Ontario Regulatory Authorit...
Cyber security for the regulator and regulated  - Ontario Regulatory Authorit...Cyber security for the regulator and regulated  - Ontario Regulatory Authorit...
Cyber security for the regulator and regulated - Ontario Regulatory Authorit...Dan Michaluk
 
Union access to information
Union access to informationUnion access to information
Union access to informationDan Michaluk
 
Cybersecurity Risk Governance
Cybersecurity Risk GovernanceCybersecurity Risk Governance
Cybersecurity Risk GovernanceDan Michaluk
 
Cyber Incident Response - When it happens, will you be ready?
Cyber Incident Response - When it happens, will you be ready?Cyber Incident Response - When it happens, will you be ready?
Cyber Incident Response - When it happens, will you be ready?Dan Michaluk
 
The Current State of FOI
The Current State of FOIThe Current State of FOI
The Current State of FOIDan Michaluk
 
Cyber, secrecy and the public body
Cyber, secrecy and the public bodyCyber, secrecy and the public body
Cyber, secrecy and the public bodyDan Michaluk
 
The privacy and security implications of AI, big data and predictive analytics
The privacy and security implications of AI, big data and predictive analyticsThe privacy and security implications of AI, big data and predictive analytics
The privacy and security implications of AI, big data and predictive analyticsDan Michaluk
 
Advocates' Society Tricks of the Trade 2019 - A Privacy Update
Advocates' Society Tricks of the Trade 2019 - A Privacy UpdateAdvocates' Society Tricks of the Trade 2019 - A Privacy Update
Advocates' Society Tricks of the Trade 2019 - A Privacy UpdateDan Michaluk
 
Privacy, Data Security and Anti-Spam Compliance
Privacy, Data Security and Anti-Spam CompliancePrivacy, Data Security and Anti-Spam Compliance
Privacy, Data Security and Anti-Spam ComplianceDan Michaluk
 
Cyber Insurance and Incident Response Practice
Cyber Insurance and Incident Response Practice Cyber Insurance and Incident Response Practice
Cyber Insurance and Incident Response Practice Dan Michaluk
 
Role of a breach coach
Role of a breach coachRole of a breach coach
Role of a breach coachDan Michaluk
 
PHIPA for school boards
PHIPA for school boardsPHIPA for school boards
PHIPA for school boardsDan Michaluk
 
Privacy, Data Security and Anti-Spam Compliance
Privacy, Data Security and Anti-Spam CompliancePrivacy, Data Security and Anti-Spam Compliance
Privacy, Data Security and Anti-Spam ComplianceDan Michaluk
 
Finding internet evidence
Finding internet evidenceFinding internet evidence
Finding internet evidenceDan Michaluk
 

Más de Dan Michaluk (20)

Ecno cyber - 23 June 2023 - djm(137852631.1).pptx
Ecno cyber - 23 June 2023 - djm(137852631.1).pptxEcno cyber - 23 June 2023 - djm(137852631.1).pptx
Ecno cyber - 23 June 2023 - djm(137852631.1).pptx
 
Critical Issues in School Board Cyber Security
Critical Issues in School Board Cyber SecurityCritical Issues in School Board Cyber Security
Critical Issues in School Board Cyber Security
 
Introduction to FOI law (the law of information)
Introduction to FOI law (the law of information)Introduction to FOI law (the law of information)
Introduction to FOI law (the law of information)
 
Higher Education Sexual Violence Presentation
Higher Education Sexual Violence PresentationHigher Education Sexual Violence Presentation
Higher Education Sexual Violence Presentation
 
Cyber class action claims at an inflection point
Cyber class action claims at an inflection pointCyber class action claims at an inflection point
Cyber class action claims at an inflection point
 
The pandemic and privacy
The pandemic and privacyThe pandemic and privacy
The pandemic and privacy
 
Cyber security for the regulator and regulated - Ontario Regulatory Authorit...
Cyber security for the regulator and regulated  - Ontario Regulatory Authorit...Cyber security for the regulator and regulated  - Ontario Regulatory Authorit...
Cyber security for the regulator and regulated - Ontario Regulatory Authorit...
 
Union access to information
Union access to informationUnion access to information
Union access to information
 
Cybersecurity Risk Governance
Cybersecurity Risk GovernanceCybersecurity Risk Governance
Cybersecurity Risk Governance
 
Cyber Incident Response - When it happens, will you be ready?
Cyber Incident Response - When it happens, will you be ready?Cyber Incident Response - When it happens, will you be ready?
Cyber Incident Response - When it happens, will you be ready?
 
The Current State of FOI
The Current State of FOIThe Current State of FOI
The Current State of FOI
 
Cyber, secrecy and the public body
Cyber, secrecy and the public bodyCyber, secrecy and the public body
Cyber, secrecy and the public body
 
The privacy and security implications of AI, big data and predictive analytics
The privacy and security implications of AI, big data and predictive analyticsThe privacy and security implications of AI, big data and predictive analytics
The privacy and security implications of AI, big data and predictive analytics
 
Advocates' Society Tricks of the Trade 2019 - A Privacy Update
Advocates' Society Tricks of the Trade 2019 - A Privacy UpdateAdvocates' Society Tricks of the Trade 2019 - A Privacy Update
Advocates' Society Tricks of the Trade 2019 - A Privacy Update
 
Privacy, Data Security and Anti-Spam Compliance
Privacy, Data Security and Anti-Spam CompliancePrivacy, Data Security and Anti-Spam Compliance
Privacy, Data Security and Anti-Spam Compliance
 
Cyber Insurance and Incident Response Practice
Cyber Insurance and Incident Response Practice Cyber Insurance and Incident Response Practice
Cyber Insurance and Incident Response Practice
 
Role of a breach coach
Role of a breach coachRole of a breach coach
Role of a breach coach
 
PHIPA for school boards
PHIPA for school boardsPHIPA for school boards
PHIPA for school boards
 
Privacy, Data Security and Anti-Spam Compliance
Privacy, Data Security and Anti-Spam CompliancePrivacy, Data Security and Anti-Spam Compliance
Privacy, Data Security and Anti-Spam Compliance
 
Finding internet evidence
Finding internet evidenceFinding internet evidence
Finding internet evidence
 

Último

BCE24 | Virtual Brand Ambassadors: Making Brands Personal - John Meulemans
BCE24 | Virtual Brand Ambassadors: Making Brands Personal - John MeulemansBCE24 | Virtual Brand Ambassadors: Making Brands Personal - John Meulemans
BCE24 | Virtual Brand Ambassadors: Making Brands Personal - John MeulemansBBPMedia1
 
Graham and Doddsville - Issue 1 - Winter 2006 (1).pdf
Graham and Doddsville - Issue 1 - Winter 2006 (1).pdfGraham and Doddsville - Issue 1 - Winter 2006 (1).pdf
Graham and Doddsville - Issue 1 - Winter 2006 (1).pdfAnhNguyen97152
 
Michael Vidyakin: Introduction to PMO (UA)
Michael Vidyakin: Introduction to PMO (UA)Michael Vidyakin: Introduction to PMO (UA)
Michael Vidyakin: Introduction to PMO (UA)Lviv Startup Club
 
Tata Kelola Bisnis perushaan yang bergerak
Tata Kelola Bisnis perushaan yang bergerakTata Kelola Bisnis perushaan yang bergerak
Tata Kelola Bisnis perushaan yang bergerakEditores1
 
MC Heights construction company in Jhang
MC Heights construction company in JhangMC Heights construction company in Jhang
MC Heights construction company in Jhangmcgroupjeya
 
NASA CoCEI Scaling Strategy - November 2023
NASA CoCEI Scaling Strategy - November 2023NASA CoCEI Scaling Strategy - November 2023
NASA CoCEI Scaling Strategy - November 2023Steve Rader
 
Cracking the ‘Business Process Outsourcing’ Code Main.pptx
Cracking the ‘Business Process Outsourcing’ Code Main.pptxCracking the ‘Business Process Outsourcing’ Code Main.pptx
Cracking the ‘Business Process Outsourcing’ Code Main.pptxWorkforce Group
 
Harvard Business Review.pptx | Navigating Labor Unrest (March-April 2024)
Harvard Business Review.pptx | Navigating Labor Unrest (March-April 2024)Harvard Business Review.pptx | Navigating Labor Unrest (March-April 2024)
Harvard Business Review.pptx | Navigating Labor Unrest (March-April 2024)tazeenaila12
 
Upgrade Your Banking Experience with Advanced Core Banking Applications
Upgrade Your Banking Experience with Advanced Core Banking ApplicationsUpgrade Your Banking Experience with Advanced Core Banking Applications
Upgrade Your Banking Experience with Advanced Core Banking ApplicationsIntellect Design Arena Ltd
 
Lecture_6.pptx English speaking easyb to
Lecture_6.pptx English speaking easyb toLecture_6.pptx English speaking easyb to
Lecture_6.pptx English speaking easyb toumarfarooquejamali32
 
HELENE HECKROTTE'S PROFESSIONAL PORTFOLIO.pptx
HELENE HECKROTTE'S PROFESSIONAL PORTFOLIO.pptxHELENE HECKROTTE'S PROFESSIONAL PORTFOLIO.pptx
HELENE HECKROTTE'S PROFESSIONAL PORTFOLIO.pptxHelene Heckrotte
 
Plano de marketing- inglês em formato ppt
Plano de marketing- inglês  em formato pptPlano de marketing- inglês  em formato ppt
Plano de marketing- inglês em formato pptElizangelaSoaresdaCo
 
Borderless Access - Global Panel book-unlock 2024
Borderless Access - Global Panel book-unlock 2024Borderless Access - Global Panel book-unlock 2024
Borderless Access - Global Panel book-unlock 2024Borderless Access
 
Talent Management research intelligence_13 paradigm shifts_20 March 2024.pdf
Talent Management research intelligence_13 paradigm shifts_20 March 2024.pdfTalent Management research intelligence_13 paradigm shifts_20 March 2024.pdf
Talent Management research intelligence_13 paradigm shifts_20 March 2024.pdfCharles Cotter, PhD
 
Intellectual Property Licensing Examples
Intellectual Property Licensing ExamplesIntellectual Property Licensing Examples
Intellectual Property Licensing Examplesamberjiles31
 
The Vietnam Believer Newsletter_MARCH 25, 2024_EN_Vol. 003
The Vietnam Believer Newsletter_MARCH 25, 2024_EN_Vol. 003The Vietnam Believer Newsletter_MARCH 25, 2024_EN_Vol. 003
The Vietnam Believer Newsletter_MARCH 25, 2024_EN_Vol. 003believeminhh
 
MoneyBridge Pitch Deck - Investor Presentation
MoneyBridge Pitch Deck - Investor PresentationMoneyBridge Pitch Deck - Investor Presentation
MoneyBridge Pitch Deck - Investor Presentationbaron83
 
Mihir Menda - Member of Supervisory Board at RMZ
Mihir Menda - Member of Supervisory Board at RMZMihir Menda - Member of Supervisory Board at RMZ
Mihir Menda - Member of Supervisory Board at RMZKanakChauhan5
 
Borderless Access - Global B2B Panel book-unlock 2024
Borderless Access - Global B2B Panel book-unlock 2024Borderless Access - Global B2B Panel book-unlock 2024
Borderless Access - Global B2B Panel book-unlock 2024Borderless Access
 

Último (20)

BCE24 | Virtual Brand Ambassadors: Making Brands Personal - John Meulemans
BCE24 | Virtual Brand Ambassadors: Making Brands Personal - John MeulemansBCE24 | Virtual Brand Ambassadors: Making Brands Personal - John Meulemans
BCE24 | Virtual Brand Ambassadors: Making Brands Personal - John Meulemans
 
Graham and Doddsville - Issue 1 - Winter 2006 (1).pdf
Graham and Doddsville - Issue 1 - Winter 2006 (1).pdfGraham and Doddsville - Issue 1 - Winter 2006 (1).pdf
Graham and Doddsville - Issue 1 - Winter 2006 (1).pdf
 
Michael Vidyakin: Introduction to PMO (UA)
Michael Vidyakin: Introduction to PMO (UA)Michael Vidyakin: Introduction to PMO (UA)
Michael Vidyakin: Introduction to PMO (UA)
 
Tata Kelola Bisnis perushaan yang bergerak
Tata Kelola Bisnis perushaan yang bergerakTata Kelola Bisnis perushaan yang bergerak
Tata Kelola Bisnis perushaan yang bergerak
 
MC Heights construction company in Jhang
MC Heights construction company in JhangMC Heights construction company in Jhang
MC Heights construction company in Jhang
 
NASA CoCEI Scaling Strategy - November 2023
NASA CoCEI Scaling Strategy - November 2023NASA CoCEI Scaling Strategy - November 2023
NASA CoCEI Scaling Strategy - November 2023
 
Cracking the ‘Business Process Outsourcing’ Code Main.pptx
Cracking the ‘Business Process Outsourcing’ Code Main.pptxCracking the ‘Business Process Outsourcing’ Code Main.pptx
Cracking the ‘Business Process Outsourcing’ Code Main.pptx
 
Harvard Business Review.pptx | Navigating Labor Unrest (March-April 2024)
Harvard Business Review.pptx | Navigating Labor Unrest (March-April 2024)Harvard Business Review.pptx | Navigating Labor Unrest (March-April 2024)
Harvard Business Review.pptx | Navigating Labor Unrest (March-April 2024)
 
Upgrade Your Banking Experience with Advanced Core Banking Applications
Upgrade Your Banking Experience with Advanced Core Banking ApplicationsUpgrade Your Banking Experience with Advanced Core Banking Applications
Upgrade Your Banking Experience with Advanced Core Banking Applications
 
WAM Corporate Presentation Mar 25 2024.pdf
WAM Corporate Presentation Mar 25 2024.pdfWAM Corporate Presentation Mar 25 2024.pdf
WAM Corporate Presentation Mar 25 2024.pdf
 
Lecture_6.pptx English speaking easyb to
Lecture_6.pptx English speaking easyb toLecture_6.pptx English speaking easyb to
Lecture_6.pptx English speaking easyb to
 
HELENE HECKROTTE'S PROFESSIONAL PORTFOLIO.pptx
HELENE HECKROTTE'S PROFESSIONAL PORTFOLIO.pptxHELENE HECKROTTE'S PROFESSIONAL PORTFOLIO.pptx
HELENE HECKROTTE'S PROFESSIONAL PORTFOLIO.pptx
 
Plano de marketing- inglês em formato ppt
Plano de marketing- inglês  em formato pptPlano de marketing- inglês  em formato ppt
Plano de marketing- inglês em formato ppt
 
Borderless Access - Global Panel book-unlock 2024
Borderless Access - Global Panel book-unlock 2024Borderless Access - Global Panel book-unlock 2024
Borderless Access - Global Panel book-unlock 2024
 
Talent Management research intelligence_13 paradigm shifts_20 March 2024.pdf
Talent Management research intelligence_13 paradigm shifts_20 March 2024.pdfTalent Management research intelligence_13 paradigm shifts_20 March 2024.pdf
Talent Management research intelligence_13 paradigm shifts_20 March 2024.pdf
 
Intellectual Property Licensing Examples
Intellectual Property Licensing ExamplesIntellectual Property Licensing Examples
Intellectual Property Licensing Examples
 
The Vietnam Believer Newsletter_MARCH 25, 2024_EN_Vol. 003
The Vietnam Believer Newsletter_MARCH 25, 2024_EN_Vol. 003The Vietnam Believer Newsletter_MARCH 25, 2024_EN_Vol. 003
The Vietnam Believer Newsletter_MARCH 25, 2024_EN_Vol. 003
 
MoneyBridge Pitch Deck - Investor Presentation
MoneyBridge Pitch Deck - Investor PresentationMoneyBridge Pitch Deck - Investor Presentation
MoneyBridge Pitch Deck - Investor Presentation
 
Mihir Menda - Member of Supervisory Board at RMZ
Mihir Menda - Member of Supervisory Board at RMZMihir Menda - Member of Supervisory Board at RMZ
Mihir Menda - Member of Supervisory Board at RMZ
 
Borderless Access - Global B2B Panel book-unlock 2024
Borderless Access - Global B2B Panel book-unlock 2024Borderless Access - Global B2B Panel book-unlock 2024
Borderless Access - Global B2B Panel book-unlock 2024
 

Everything You Need To Know About Workplace Privacy

  • 1. Everything you need to know about workplace privacy Dan Michaluk January 27, 2010
  • 2.
  • 3.
  • 4.
  • 5. How to run an internet background check An information collection model for efficient and compliant recruiting
  • 6.
  • 7.
  • 8.
  • 9.
  • 10.
  • 11.
  • 12.
  • 13. How to manage the risk of disease Employer Employee HCP Medical Advisor
  • 14.
  • 15.
  • 16.
  • 17. Everything you need to know about workplace privacy Dan Michaluk January 27, 2010

Notas del editor

  1. Thank you Trained as an employment lawyer Strong information management and privacy focus Built this need to know presentation around recent experience… types of questions we’re getting Excited to deliver it Five topics Only…. thirteen slides of substance So let’s take questions while we go and see how it flows
  2. Two slides on “where do employee privacy rights come from?” What do you have to worry about? Here are the four sources… that’s it Statutory codes -four of them -comprehensive codes based on fair information practices -backed by administrative means of enforcement and anti-reprisal protection Other statutes -Income Tax Act…. written consent to use a SIN for non-tax purpose -Ontario OHSA… can’t seek to gain access to a health record -Charter. Government? Law of unionized workplace – reasonableness doctrine Civil claims for breach of contract and tort… risk more and more real…. but s there a practical means of enforcement?
  3. How many from Ontario? How many provincially regulated employers with employees in provinces other than BC, Alberta and Quebec? Your unionized employees can grieve a privacy violation But what about non-union employees? No statute. No access to arbitration. Can you run rough over employees because there’s a gap? There is certainly broader scope to manage here… engage in things like surveillance… monitoring… but don’t be too aggressive Bad facts make bad law Colwell an example… first privacy breach constructive dismissal claim Somwar was a current employee If it a medical information management issue then you may have a link to HR liability
  4. Hot, hot topic… Who does it? Collecting personal information that’s been published has very limited protection in law…. If its out there its out there eh? Only talk about need for change because of the social media phenomenon If you are federally regulated or employing in one of the three provinces there are regulatory risks -authorization -necessity and reasonableness -accuracy But the more pertinent risk is human rights risk Employers have employed structured recruiting processes to manage risk Qualify first through application form – in Ontario backed by section 23 of Code Assess in interview – More information… some employ structured interviews Check background last… - most sensitive information Protects against discrimination claims based on knowledge Think of all the crazy stuff that’s online!!!
  5. I think there are cases when you want to do it If you’re hiring someone for a position where there reputation matters a check may be necessary It may be irresponsible not to check Here’s how to do it,,,, avoid the temptation to troll! -do it at the end -think about what information is relevant to the job… what are you looking for -write it down… make it objective -ideally, give it to someone who’s not a decision-maker -get a report back -report becomes the formal record so you don’t have to deal with production disputes about internet search logs
  6. Another hot topic… electronic communications monitoring Let’s talk about the established law…. Here’s what its based on -computers were a tool to do your work -many reasons to inspect -warned of inspections No reasonable expectation of privacy Arbitrators were not even balancing interests You could do it because you said you could do it
  7. Things are changing though Look at the trends -More and more personal use (Who would prohibit online banking? Collection possible through keylogging.) -Mobile devices channel communications through network 24 hours a day -Starting to use social media applications for business purposes Natural to say that employees’ expectations rising If you talk to the person on the street they think its private This is a problem for employers
  8. So… will the law catch up? We’re seeing signs of change -Quon is a case from California -Going to the USSC -Facts show “informal policy” … -Exactly the point… policy not attuned to reality will not be enforced and therefore not enforceable In Ontario, important case going to OCA called Cole -Criminal case -Teacher at school board -Judge said no expectation of privacy -But worked very hard at it… facts were unique
  9. So here’s your choice You can say NO EXPECTATION OF PRIVACY louder May help But people (including your line managers) may not think your serious Courts may not think your serious So if you do only that … think about how to demonstrate your serious The alternative is to recognize a limited right to privacy -but we will audit… here’s how -we will investigate… here’s when… here’s who -we will extract and sort through your full e-mail file if we get into litigation -you put yourself there at your option Then stay within the boundaries… demonstrate respect for privacy should help
  10. Lots and lots of questions about this Companies running HRIS out of the US Maybe it’s our economy I hate the question Very hard to compare socio-political risks Lots of employees scared about USA Patriot Act… But is it a risk? Can get into debates amongst the uninformed (both sides uninformed) Here are the rules -Data security is important -If you’re outsourcing… put in all the same strong protections… due diligence -Be aware of socio-political conditions that may cause data risks -Notice is the key special requirement – PIPEDA yes, Alberta yes in policy (new, applies to parent corporations), Quebec yes, BC uncertain more uncertain but… (Fox case) -Cross-Canada employers might as well notify… not hiding it from anyone
  11. This is really a slide that stresses good outsourcing practices Applies if you’re giving it to a external service provider Due diligence is important… know all the details about who you’re giving it to (hire a security expert with knowledge of data centers to ask the questions) Contract is key – two key things – control plus security Assume that notice is required unless you get an unqualified legal opinion telling you you’re a-okay
  12. Designed this at the time H1N1 was at its peak Still important Before we get into the application… here’s a slide that I’ve used and that people have found helpful in determining the roles in employee medical information management In particular, its helped resolved the conflict that your contract or employed medical advisors may feel Let’s be clear… they work for you in most cases They assess, they facilitate return to work and so on They are medically trained members of human resources who also act as a privacy screen (means by which the need to know principle is respected) You need to make that clear to employees Employee health care providers have the health care relationship… fiduciary duty If you do provide health care (to ee’s) you have to be very careful about separating two roles… conflict… need to be careful… another talk
  13. Objective – keep employees who are sick out of the workplace Tactic – gate screening for H1N1 infection risk Tactic – return to work screening for H1N1 infection risk MOHLTC guide endorses screening -symptom based (generally no practical ability to rely on diagnoses) -to support a medically valid assessment Federal, BC and Alberta Commissioners said short of a state of emergency you don’t need to ask for sharing health status, including diagnosis Just say you’re sick… yikes! Slightly qualified, but a warning To protect yourself -follow the lead of your local health authority -think about the appropriate trigger for routine/gate screening (versus reasonable grounds questioning) -… and so on
  14. Objective – allow people to mitigate harm Scenario – employee living with vulnerable member of the population More aggressive Use a very case-by-case approach Implement some objective threshold – “real likelihood of exposure” Makes sense to notify the person whose information is disclosed
  15. Post frequently at slaw.ca Look for background check article that went up this morning