Jul 312011
 July 31, 2011  Posted by  Non-U.S.

Glen McGregor reports:

Federal Privacy Commissioner Jennifer Stoddart is taking the Correctional Service of Canada to court, saying the prisons department has twice refused to provide requesters with personal information it keeps about them.

In two applications filed in Federal Court, Stoddart’s office alleges the correctional service breached the Privacy Act by failing to provide the requested information in a timely fashion.

Inmates often use the Privacy Act to obtain their Correctional Service of Canada records to support grievances or legal challenges related to the conditions of their incarceration.

The law says government agencies must turn over personal information to the subject within 30 days of a request.

Read more on Vancouver Sun.

Wow. Here, the individual would have to sue in court.  There, the Privacy Commissioner goes after them? I am sooooooo envious.  Where can we get ourselves one of those activist commissioners, huh?

Jul 302011
 July 30, 2011  Posted by  Laws, Non-U.S.

Peter Brown writes:

In the United States, India is synonymous with outsourced data processing services and customer service call centers for credit card issuers, banks and retailers. The flow of data between the two countries has been unrestricted and, to a large extent, unregulated. This has now been changed.

In April 2011, India adopted new privacy regulations known as the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011. These rules apply to all organizations that collect and use personal data and information in India and are likely to affect any corporation that outsources to India or collects personal information there in its business.

One of the more important provisions relating to foreign companies is that no organization inside India may transfer sensitive personal data to a third party outside of India unless the transferee ensures the same level of protection that is required by the Indian Rules. Sensitive personal data is defined as financial information; passwords; physical, physiological, and mental health condition; sexual orientation; medical records and history; and biometric information.

Read more on Data Privacy Monitor.

Jul 292011
 July 29, 2011  Posted by  Non-U.S.

Chad Skelton reports:

B.C.’s Information and Privacy Commissioner will investigate BC Hydro’s Smart Meter program to ensure it complies with privacy laws.

In a news release Thursday, Commissioner Elizabeth Denham said she decided to launch her investigation after receiving numerous complaints that the information collected by the meters may breach personal privacy.

“The privacy and security of energy consumption data is a very real issue for citizens throughout the province,” Denham is quoted as saying in the news release. “With an increase in the frequency of the information collected from smart meters comes an increased responsibility on BC Hydro to ensure that privacy and security is built into the smart grid.”

Read more on Vancouver Sun

Jul 292011
 July 29, 2011  Posted by  Laws, Non-U.S.

As reported in BNA’s Privacy Law Watch, on July 25, 2011, Russian President Dmitry Medvedev signed a new federal law amending Russia’s personal data privacy law, “On Personal Data.” The amended law, which was made public on July 27 and is effective retroactively from July 1, 2011, imposes new rules on international data transfers. As we previously reported, and as noted by the BNA, Russia had been considering improving its data protection regime and has enacted two other laws regarding the protection of personal data in the past several weeks.

Read more on Hunton & Williams’ Privacy and Information Security Law Blog