ACCESS
AND
PRIVACY CONFERENCE DIVING DEEPER
June 14–16, 2017 | Marriott at River Cree Resort | Edmonton, AB
Congratulations to our Partner
Anne CÔté Recipient of the 2017 Information Access and Protection of Privacy Program Award for Leadership in the Field of Access and Privacy
fieldlaw.com “Field Law” is a trademark and trade name of Field LLP.
Welcome! Dear Conference Delegates, Welcome to the 2017 Access and Privacy Conference hosted by the University of Alberta’s Faculty of Extension. Our theme for this year’s conference is Diving Deeper! I wish to thank our 2017 Conference Advisory Committee for pulling together an outstanding lineup of speakers. In 2017, we celebrate 15 years of delivering Canada’s foremost information rights conference. This year our speakers will educate you on the intricacies of access to information, privacy protection, health information privacy, IT security, and private sector information rights administration. I hope you will find the days that you spend here both engaging and insightful. We are honoured to welcome Elizabeth Denham, Information Commissioner for the United Kingdom, and Brian Beamish, Ontario Information and Privacy Commissioner, as our keynote speakers. We are also here to celebrate our three 2017 IAPP Program Award recipients: Anne Côté (Field Law), Karina Guy (KPMG), and John Weigelt (Microsoft). The IAPP program is proud of its association with these private-sector thought leaders from the information rights industry. Anne, Karina, and John have all contributed significantly to advance the understanding and widen the knowledge within the everexpanding field of access and privacy. The Faculty of Extension wishes to thank them for their positive support and ongoing advice and contribution to the IAPP program and to our annual national conference. At the end of June, Suzanne Legault, Information Commissioner of Canada, will be leaving the OICC. Suzanne has been a leading supporter of our IAPP program and conference, and a tireless champion in advocating on behalf of Canadian’s rights related to access to information at a federal level. We join Commissioner Legault’s many admirers and colleagues in wishing her the very best in her next endeavours. I wish to thank our sponsors who have joined us this year. Their valuable contribution helps us to deliver the quality of conference you have come to expect. I also wish to acknowledge our talented Marketing Team who works together with the IAPP program staff to deliver an enjoyable conference experience for all of our delegates. Lastly, I thank you, our delegates, who have taken time out of your schedules to come and join us. I hope you enjoy the 2017 Access and Privacy Conference!
Wayne MacDonald Conference Chair, 2017 Access and Privacy
Your Conference Home
Edmonton Marriott at River Cree Resort 300 East Lapotac Blvd, Enoch, Alberta T7X 3Y3 Telephone: 1.780.484.2121 Fax: 1.780.930.2736
Four-star luxury awaits you at the Edmonton Marriott at River Cree Resort. During your stay, you’ll be thrilled with the sumptuous accommodations, thoughtful amenities, and excellent location near West Edmonton Mall. Set on 49 acres of picturesque property, the hotel features a full casino, two NHL-size hockey rinks, and nearly 250 luxury guest rooms and suites. All accommodations evoke a spacious and refined feel, with floor-to-ceiling windows and luxurious details like rain showers and designer bedding. Other amenities for your West Edmonton stay include a fitness centre, an indoor pool and a whirlpool, versatile venue space, and two restaurants, including the signature theatre-style Kitchen Buffet & Bistro. And if you decide to venture outside of the hotel, you’re just moments from the new Costco, as well as incredible shopping and entertainment at West Edmonton Mall.
Guest Services & Amenities • • • • • •
2
Airline reservation desk Full-service business centre Cash machine/ATM Concierge desk Evening turn-down service Foreign exchange
• • • • • •
Onsite laundry Overnight delivery/pickup Post/parcel Housekeeping service daily Room service, 6:00 am–1:00 am Valet dry cleaning
General Information Hospitality Suite Wednesday, June 14 4:30–8:00 pm Room 2011 On Wednesday, June 14, Advertising Images of Edmonton invites all delegates to join us in our hospitality suite – Room 2011 of the Marriott at River Cree Resort hotel. This is an excellent opportunity to network with fellow delegates and other partners, while enjoying complimentary beverages and snacks – a great way to relax and prepare for the next two days of the conference.
To access the hospitality suite, please visit the registration desk in front of the Enoch meeting rooms in the hotel foyer. A representative of the conference will accompany you to this card-access only suite on the second floor of the hotel.
Room Recharge
The Marriott strives to provide exceptional conference services; we ask that you kindly leave the session rooms during breaks so that staff can have time to recharge the room.
Dietary Concerns
Our delegates with dietary restrictions should receive “dietary restriction” cards in their nametag holders. They can be presented at meal times to a member of the Marriott catering staff, who will then arrange for their meal to be brought to them. If you noted specific dietary restrictions in your original online registration but have not received these cards, please visit the registration desk at any time to obtain them.
Evaluations
Your feedback is important to us. Once the conference is over, you will be asked to take part in a brief survey, the results of which will be used to inform the planning of future conferences.
Session Materials
Should presenters choose to provide them, printed information materials (PowerPoint slides, notesheets, etc.) will be made available during the sessions. Additionally, if provided, electronic copies of presentation materials will be posted on the conference website (accessandprivacy.com) at the end of the conference, as they become available. Writing pads and pens have been donated by the University of Alberta’s Faculty of Extension. Both are provided in your conference package for note-taking purposes.
Cellphones
Please ensure that your cellphone is off, silent, or on vibrate while a session is in progress.
Social Media
Join the conversation on Twitter and Instagram, using the hashtag #UAlbertaAP17.
3
Program at a Glance
Wednesday, June 14
7:00 am Registration
(Breakfast served 8:00–8:45 am)
9:00 am 10:30 am 10:45 am 12:00 pm 1:00 pm 2:30 pm 2:45 pm 4:30–8:00 pm
Morning Workshops Refreshment Break Morning Workshops (resume) Lunch Afternoon Workshops Refreshment Break Afternoon Workshops (resume) Hospitality Suite – Sponsored by Advertising Images
Thursday, June 15
7:00 am Registration
(Breakfast served 7:45–8:30 am)
8:30 am 9:00 am 10:00 am 10:15 am 11:30 am 12:30 pm 1:15 pm 2:15 pm 2:30 pm 3:45 pm
Welcome and Conference Opening Comments Keynote Address: Elizabeth Denham Refreshment Break Plenary Presentation: Suzanne Legault Breakout Sessions A, B & C Lunch Breakout Sessions D, E & F Refreshment Break Plenary Presentation: John Weigelt Commissioners’ Round Table
Friday, June 16
7:45 am Registration
(Breakfast served 8:00–8:45 am)
9:00 am 9:15 am 10:15 am 10:45 am 11:00 am 12:00 pm 1:00 pm 2:00 pm 2:15 pm 3:15 pm
Welcome Keynote Address: Brian Beamish 2017 IAPP Program Awards Refreshment Break Breakout Sessions G, H & I Lunch Breakout Sessions J, K & L Refreshment Break Plenary Presentation: Dr. Thomas Keenan Closing Remarks
4
Pre-Conference Workshops WEDNESDAY, JUNE 14 7:00 am–9:00 am
Registration
9:00 am–12:00 pm
Morning Workshops
(Breakfast
served 8:00–8:45 am)
Workshop 1 Severing Techniques: An Art and a Science...Ready, Set, Sever! Darrelle Gabinet, Joanne Gardiner, and Christine Pentelchuk
Join us for a show about what happens when dissension in the workplace meets access and privacy legislation! A real-life example presents quite a jam, as a manager tries to keep two co-workers happy despite not seeing eye-to-eye on things. Through a skit and group exercises, you will get a chance to apply your severing skills in a fun setting. Examine exceptions from the FOIP Act to figure out WHO gets WHAT! Get your tickets now as this show is definitely one you don’t want to miss!
Darrelle Gabinet is an access and privacy advisor who provides services for Service Alberta and
three other client ministries: Agriculture and Forestry; Culture and Tourism; and Seniors and Housing. Darrelle received her Bachelor of Commerce degree from MacEwan University and has been with Service Alberta since 2011. She began her career in access and privacy in 2014 and has developed a passion for it ever since. She is currently working toward completing her Information Access and Protection of Privacy (IAPP) certificate from the University of Alberta’s Faculty of Extension.
Joanne Gardiner is the manager of FOIP Services in Information Access and Protection, Service
Alberta, and manages the corporate access and privacy program for the Government of Alberta. This includes the Personal Information Protection Act (PIPA) in addition to the Freedom of Information and Protection of Privacy Act (FOIP). Joanne is currently in the role of FOIP coordinator for Service Alberta. Joanne’s educational background is in environmental sciences and computer science, and yet she ended up as a public servant for 15 years, working for some of that time with access and privacy in both British Columbia and Alberta.
Christine Pentelchuk started her career in access and privacy legislation by working as a trainer
and facilitator with the Government of Alberta in 2007. She was a part of a team that developed and delivered province-wide training on managing personal information under provincial access and privacy legislation. Christine’s prior experience as a speech language pathologist and AISH Case Worker has added depth to her experience in managing personal information in the workplace. She is passionate about access and privacy legislation and enjoys sharing her knowledge and experience with others.
5
Workshop 2 Health Information Privacy and Security: Private Sector Joan Dunlop and Rick Klumpenhouwer
This workshop will offer an intensive and comprehensive review of laws, program requirements, and implementation strategies for managing health information as a private sector employer or health provider. The workshop will look at HIA, PIPA, and electronic health information regulations. Program strategies and methods for identifying key risks and implementing compliance in a private sector setting will be presented. The workshop will be of interest to officials managing a wide range of independent health clinics, private health services, First Nations health services, and employee health programs.
Joan Dunlop joined Cenera in 2011. Previously, Joan spent several years as an analyst administering
the Alberta Freedom of Information and Protection of Privacy (FOIP) Act, which inspired her interest in the world of access, privacy, and information management. As part of a team of Privacy and Information Management experts at Cenera, Joan works in a dynamic project environment delivering Alberta’s Privacy and Access Training Program for public bodies, as well as conducting privacy gap assessments, privacy impact assessments, privacy and security investigations, and workplace investigations. Joan also works developing privacy and information security policy, and designing and delivering access, privacy, information management, and investigations training in Alberta, Saskatchewan, British Columbia, the Yukon, and in multiple private sector and health jurisdictions.
Rick Klumpenhouwer is a partner with Cenera’s Privacy and Information Management practice.
Rick has a passion for providing comprehensive and lasting solutions for his clients. He is trained as an archivist and brings over 25 years of professional information management and privacy experience to the table. With keen insight in the issues of privacy regulation and records management, Rick is able to present complex concepts in ways that allow clients to take true ownership of a solution. Rick has completed numerous privacy gap reviews, privacy-impact assessments, and records management program projects. He has applied his knowledge to such areas as information security policy and procedures and information management program design, including policy/procedure frameworks, organization schemes, retention schedules, and digital preservation. Most recently, he has participated in a number of highprofile information access and privacy protection investigations and has served as an expert witness in a landmark privacy breach class-action case.
12:00–1:00 pm
4 6
Lunch
1:00–4:00 pm
Afternoon Workshops
Workshop 3 Information Sharing Under Alberta Law
Lea Beeken, Cathy Evanochko, and Maryann Hammermeister
Come to this workshop to create a road map that will help you navigate (and avoid the potholes) when sharing children’s personal information. The Children First Act does not override other legislation; it supplements sharing of information with the Freedom of Information and Protection of Privacy Act and the Health Information Act by defining more situations when children’s information can be collected, used, and disclosed – with consent, or in some cases, without consent. What should you have in place to ensure that information is shared appropriately between individuals and organizations that plan or provide critical programs and services for children? When do you need an agreement? How do you provide guidance and support to staff when sharing information between government bodies and organizations? What records do you need to keep? All of these questions and more will be answered at this fun and informative session!
Lea Beeken, with Edmonton Public Schools (EPS), has taught mathematics to junior and senior high school students for 10 years. She holds a B.Sc., a B.Ed., and an M.Ed. Taking on the challenge of developing a records management program for the 125-year-old school jurisdiction with over 8,000 staff has been an 11-year journey (with a number of bumps in the road). Having sold, developed, and implemented electronic content management for the student record and the employee file, she continues to look for ways to improve service to students, increase efficiency, and develop an enduring consensus on the value of records. For 28 years, Cathy Evanochko has worked for the Calgary Board of Education in a variety of positions, both in schools and in administrative settings. For the past seven years, Cathy has been the FOIP coordinator and privacy officer working out of the Legal Services Department. Cathy has worked hard to change the perspective that the FOIP Act limits the ability to use technology creatively. Rather, Cathy endorses the concept of promoting the ethical and innovative use of data: “Privacy AND progress,
not privacy OR progress.”
Maryann Hammermeister has worked for Edmonton Public Schools for the past 25 years and has been the district FOIP coordinator for the past 10 years. Maryann is responsible for all aspects of managing a FOIP program in a large school jurisdiction, including responding to FOI requests and liaising with the Office of the Privacy Commissioner. Maryann is a graduate of the Information Access and Protection of Privacy program (IAPP) from the University of Alberta’s Faculty of Extension, and continues expanding her expertise in privacy and access to information issues.
7
Workshop 4 Managing and Dealing with a Privacy Breach – Alberta IPC Office Nji Lionel Nji and Christine Wagoner
It’s not a matter of if your organization will have a privacy breach; it’s when. Organizational preparedness is the key to a successful privacy breach response. This workshop will discuss the trends in privacy breaches, providing comments on the magnitude and types of reports received by the OIPC. The presenters will give practical guidance from a regulator’s perspective, based on successful – and unsuccessful – strategies that organizations have used to respond to breaches. Discussion will include the following: Developing a privacy breach response plan. Establishing a breach response team. Remediating privacy breaches with successful strategies. Identifying affected individuals and notification challenges.
Nji Lionel Nji has been on the Compliance and Special Investigations team since April 2014, when
he joined the OIPC. In addition to his work with stakeholders, he advises the office on cybersecurity matters. Prior to his role with the OIPC, he worked at Alberta Health where he helped lead the development of provincial assessment and auditing standards. He also worked at Alberta Health Services advising business areas and project teams on IT security and information privacy. In education pursuits, Nji has attained a Master of Science in physics, a Master of Information Systems Security, and a Bachelor of Science in physics and computer science. He is also a Certified Information Systems Security Professional.
Christine Wagoner joined the OIPC in April 2017, where she works on the Compliance and
Special Investigations team. Christine has a wealth of experience in public sector privacy and information security. She has worked for UAlberta’s Faculty of Medicine and Dentistry, Alberta Health Services, Alberta Cancer Board, Alberta Health, and Alberta Children’s Services. Her educational background includes a Master of Information and Security Systems Management, and certification in information system security and auditing (ISC2 and ISACA). The Compliance and Special Investigations team at the OIPC is responsible for the review of breach reports, privacy impact assessments, investigations generated by the commissioner and offence investigations. The OIPC oversees compliance with Alberta’s three access to information and privacy laws – the Freedom of Information and Protection of Privacy Act, the Health Information Act, and the Personal Information Protection Act.
4:30–8:00 pm
8
Hospitality Suite (See page 3)
2017 Access and Privacy Conference
THURSDAY, JUNE 15 7:00–8:30 am Registration
(Breakfast served 7:45–8:30 am)
Welcome and Opening Comments Dr. Katy Campbell 8:30–9:00 am
Dean, Faculty of Extension, University of Alberta
Hon. Stephanie McLean Minister, Service Alberta + Status of Women, Government of Alberta
Jill Clayton Alberta Information and Privacy Commissioner
9:00–10:00 am
Keynote Address: Elizabeth Denham
Introduction by Pamela Snively, TELUS
New Job, New Regulation, New Geopolitical Situation My First Year as the UK Information Commissioner Elizabeth Denham
United Kingdom Information Commissioner – Information Commissioner’s Office
Elizabeth Denham was appointed UK
Information Commissioner in July 2016, having previously held the position of Information and Privacy Commissioner for British Columbia, Canada. Ms. Denham was a co-author of Canada’s guidance document ‘Getting Accountability Right With a Privacy Management Program.’ The document has received international attention for its innovative and practical approach, which emphasizes privacy management programs as building blocks that must be in place before programs are implemented and systems are built. Ms. Denham has been a strong voice for public access rights. A proponent of open government and open data, Ms. Denham has called for the proactive disclosure of records and published best practices for government ministries and public bodies. In 2011, Ms. Denham was honoured as a UBC distinguished alumna for her pioneering work in archives and her leadership in the field of access and privacy. In 2013, she received the Queen Elizabeth II Diamond Jubilee Medal for her service as an Officer of the Legislature of British Columbia, Canada.
9
10:00–10:15 am
Refreshment Break
10:15–11:15 am
Plenary Presentation: Suzanne Legault
Access to Information: A Road Map to the Future Join Suzanne Legault, Information Commissioner for Canada, as she lays out a road map for Canada’s Access to Information (ATI) Act. The Information Commissioner of Canada works and takes on the challenge to improve how the ATI Act is implemented across the federal government. The Supreme Court of Canada recognizes that the “overarching purpose” of the ATI Act is to facilitate democracy. Commissioner Legault will share with delegates her bold vision for the future of ATI in Canada.
Suzanne Legault was appointed as Information
Commissioner of Canada on June 30, 2010. She was the Interim Information Commissioner for the previous year. From June 2007 to June 2009, Ms. Legault was Assistant Commissioner for the Office of the Information Commissioner of Canada, responsible for the Policy, Communications, and Operations Branch. In 2006, she participated in the Federal Public Servant in Residence Program and worked with Dr. David Zussman, Jarislowsky Chair in Public Sector Management at the University of Ottawa. Ms. Legault began her career in public service in 1996 at the Competition Bureau, where she held increasingly senior positions, including Special Advisor to the Commissioner of Competition. She then served as Legal Counsel with the Department of Justice, before returning to the Competition Bureau where she was Assistant Deputy Commissioner, Legislative Affairs, and then Deputy Commissioner, Legislative and Parliamentary Affairs. Prior to joining public service, Ms. Legault practiced law as a criminal defense lawyer from 1991 to 1996 and as Crown prosecutor from 1994 to 1996. Ms. Legault holds a Bachelor of Civil Law and a Bachelor of Common Law from McGill Law School.
10
11:30 am–12:30 pm
Breakout Sessions
Session A 2016–2017 Alberta Information and Privacy Commissioner Rulings Clark Dalton
This presentation will review some of the major orders coming out of Alberta’s Information and Privacy Commissioner’s Office and selected decisions of the Court of Queen’s Bench on judicial reviews. The presentation is important for FOIP professionals, legal experts, and users alike, as it reviews all of the important decisions and discusses how they could potentially affect your professional work.
Clark Dalton is a former director of the Alberta Justice, Legal Research, and Analysis sections.
Before his retirement in 2005, Clark provided policy advice and legislative development for over 100 civil law statutes and regulations under the administration of the Minister of Justice and the Attorney General, including the development of the Freedom of Information and Protection of Privacy Act. Clark was also a member of the Board of Alberta Law Conference of Canada. He provides semi-annual updates to the Annotated Freedom of Information and Protection of Privacy Act.
Session B Big Data: Delivering on the Promise, not the Peril TELUS Shares its Story About how it is Leveraging Data in a Respectful and Privacy-Protective Manner Shelly Blackburn and Pamela Snively
Members of TELUS Data & Trust Office will share their data analytics journey, demonstrating how understanding customer sentiment, a new data governance model, de-identification expertise, privacy, and broader ethical considerations can all come together to deliver on the promise of big data.
Shelly Blackburn is a director in the TELUS Data & Trust Office. Her primary focus is on
providing privacy guidance to internal stakeholders, reviewing privacy impact assessments, and providing oversight as the data incident coordinator. She is a TELUS Wise Ambassador and is often in the community raising awareness about internet and smartphone safety.
Pamela Snively is TELUS’ Chief Data and Trust Officer. She leads the team responsible for data
and privacy governance. Pamela also supports TELUS’ commitment to integrity through her leadership of a variety of initiatives, including the Anti-Bribery & Corruption and the Competition Law programs. Prior to joining TELUS, Pamela managed the consulting arm of Osler’s privacy and data management practices, AccessPrivacy by Osler. As a lawyer and consultant, she provided a broad range of privacy, risk-management, and compliance advice in the private, public, and health sectors. She assisted organizations in implementing enterprise risk-management programs; advising on privacy and outsourcing governance and accountability programs; designing and implementing records management programs; drafting policies, procedures, and training materials; managing data breaches and other regulatory investigations; and conducting privacy impact or risk assessments. Pamela formerly held Chief Privacy and Risk Officer roles in large business process outsourcing companies in Canada.
11
Session C An Open Dialogue With the Alberta Information and Privacy Commissioner and Senior Staff Members Moderator: Lorne Randa Panel Members: LeRoy Brower, Jill Clayton, Mary Golab, Rachel Hayward, Cara-Lynn Stelmack
Lorne Randa is a partner with Brownlee LLP. He graduated from the University of Alberta with
a Bachelor of Arts in 2000 and with a Bachelor of Laws in 2005, graduating with distinction in both. Lorne articled with Brownlee LLP and was called to the Law Society of Alberta in 2006 and to the Law Society of Saskatchewan in 2016. His preferred areas of practice include municipal law, privacy and access to information law, and administrative law, specifically: planning and development, development agreements and other infrastructure and utility cost-recovery mechanisms (including offsite levies and local improvements), telecommunications, and general municipal contracting.
LeRoy Brower has provided leadership in the areas of access to information, privacy risk assessment, and policy development for the past 20 years. He has held positions with the Alberta and British Columbia OIPC, and has worked in the Alberta ministries of Health, Municipal Affairs, Environment and Energy, and Family and Social Services. Prior to becoming involved in the fields of access to information and privacy, LeRoy was a child-abuse investigator for Alberta Social Services. In LeRoy’s role as assistant commissioner, he advises the commissioner in the development of strategic plans, priorities and procedures for the office. He also leads planning and direction for the Intake and Case Review Unit, as well as the Mediation and Investigation and Compliance and Special Investigations teams.
BROWNLEE LLP Barristers & Solicitors
Does your Public Body or Organization have: •
A FOIP Bylaw designating head of public body & authority to impose fees
•
A Policy or Guidelines on FOIP/Privacy
•
A Written Delegation to FOIP Coordinator/PrivacyOfficer
•
An Effective Records Management System including a Records Retention Bylaw/Policy
•
A Proactive Disclosure Policy
•
A Privacy Impact Assessment(s) for any projects involving personal information
•
Proper Consents & Disclaimers for collecting, using & disclosing personal information
•
A Social Media Policy
•
An Anti-Spam Legislation Policy & Practice
www.brownleelaw.com
12
Lorne I. Randa, partner (780) 497-4832
[email protected] @foipguru
Jill Clayton was sworn in as Alberta’s third Information and Privacy Commissioner on February 1,
2012. She began her career with Alberta’s Office of the Information and Privacy Commissioner (OIPC) in 2004, as a portfolio officer with the team responsible for ensuring oversight and compliance with Alberta’s Personal Information Protection Act (PIPA). She served as acting director, PIPA, from 2007 to 2008 and director, PIPA, from 2008 to 2011. In June of 2010, Jill was appointed Assistant Commissioner, being responsible for the development, implementation, and oversight of amendments to PIPA, particularly mandatory breach notification requirements. Prior to her service with the OIPC, Jill worked as a privacy consultant, providing services to public and private sector clients, primarily in the health care, oil and gas, telecommunications, and non-profit sectors. She also worked for the Bethany Care Society as manager, planning and performance measurement, from 2001 to 2002, and as records management co-ordinator from 1998 to 2000. Born in Calgary, Ms. Clayton holds degrees in history (BA) and environmental design (MEDes Planning) from the University of Calgary. For nearly 20 years, Mary Golab has been with the OIPC in a variety of positions. She has been leading the Intake and Case Review team since 2014. With a diverse range of experiences, she has in-depth knowledge about OIPC’s various functions and processes, in addition to developing expertise in access and privacy issues. Mary has a Bachelor of Arts and a Master of Library and Information Studies from the University of Alberta. She is also a graduate of the Information Access and Protection of Privacy Certificate program at the University of Alberta’s Faculty of Extension. With more than 15 years of experience in public and private sector privacy, Rachel Hayward now oversees the OIPC’s review of breach reports, privacy impact assessments, investigations generated by the commissioner, and offence investigations. Prior to her senior leadership role, Rachel managed highprofile investigations, including the office’s largest offence investigation which resulted in 38 charges under the Health Information Act and additional criminal charges. Rachel holds a Master of Public Administration, and is a Certified Privacy Professional (Canada) and Information Privacy Manager. She is also trained in risk and information systems control, and was recently awarded the status of Fellow of Information Privacy by the International Association of Privacy Professionals.
Cara-Lynn Stelmack began her career in access and privacy with the Calgary Police Service 20
years ago. She has also acted as a consultant in the public and private sectors on a variety of issues, including policy development, legal counsel, and as a privacy officer. Cara was one of the founding members of the Canadian Bar Association’s Privacy and Access Law Subsection for Southern Alberta and worked with Service Alberta in document creation regarding law enforcement and the FOIP Act. Cara has also helped developed and teach the curriculum for the Information Access and Protection of Privacy Certificate program at the University of Alberta’s Faculty of Extension. Prior to joining the field of access and privacy she practiced civil litigation. Cara has been with the OIPC since 2011. In 2014, she joined the senior leadership team where she is responsible for the mediation and investigation processes.
13
12:30–1:15 pm
Lunch
1:15–2:15 pm
Breakout Sessions
Session D Hacking the Internet of Dongs RenderMan (Brad Haines)
The Internet of Things (IoT) has exploded into our collective lives. Nowadays everything is internetconnected and very often the security and privacy implications are not fully understood until it is too late. This talk will look at one under-researched branch of IoT: The Internet of Dongs. Sex toys have become internet-connected devices and, due to their private and intimate nature, a whole host of never-before-seen risks and vulnerabilities have arose. One would think they should consider sex toy security and privacy more than any other IoT devices, but the answer is very surprising. This talk will explore the security and privacy threats posed by the latest generation of internet-connected sex toys, and how they fit within larger IoT movements in security and privacy issues.
RenderMan (Brad Haines) – the self-proclaimed Pope of the Church of Wi-Fi, Breaker of
Things, and Don of Dongs – is a Canadian born and raised hacker. He spends his days working as a penetration tester and living his dream of being the bad guy with a get-out-of-jail-free card. By night, he pursues his own projects in an effort to make the world a better place. Previously, those projects involved researching vulnerabilities in the global air traffic control system that affected millions of flights. Now, he’s hacking sex toys and quickly becoming the face of teledilonics security. As a result of his endless curiosity and desire to educate the public, RenderMan has spoken at conferences all over the world. He enjoys fighting for the user, helping people protect themselves online, and helping the public understand the threats that exist in this brave new world.
Session E Managing Complex Clients and Workplace Violence Peter D. Lemieux
On very rare occasions, employees can be exposed to a number of risks encompassing workplace violence. While human-induced intentional events are dynamic and unpredictable, they can still be mitigated to reduce potential harm – not only for the employees, but also the business or services provided. As the Director of Corporate Security Services for the Government of Alberta, Peter will share his experiences in managing workplace violence, including active shooting events. Natural disasters may be more prevalent, deadly, and costly. However, public fears, psychological distress, and trauma associated with workplace violence have become infused with a sense of fear that often outweighs all other calamities. With a more holistic understanding of the genuine risks that exist, employees are empowered and more appreciative of their requirement to have a role in fostering a safe and secure work environment.
Peter D. Lemieux has endured many years in the trenches to hone his skills and become dexterous
in his chosen vocation. With over 30 years of experience, Peter has specialized in a variety of securityrelated fields and applications, both domestically and abroad. While never fond of self-professing as any type of expert, Peter is much more inclined to simply characterize himself as an accomplished security practitioner. Peter’s proclivity to “corporate security’ started in 2007 upon retiring from the military and becoming a manager of the Commissionaires for Northern Alberta. Two years later, he started his provincial government career as a Crisis Management Officer with the Alberta Security Strategic
14
Intelligence Support Team (ASSIST). Responsibilities included developing strategies to enhance critical infrastructure protection and administering the Alberta Counter-Terrorist Crisis Management Plan. In 2013, Peter was appointed Director of Corporate Security and Recovery Services within the former Justice and Attorney General (JAG). After JAG merged with the Solicitor General and Public Security, Peter and his team joined the Sheriff’s Branch in 2014, becoming Corporate Security Services (CSS). While responsible for providing security advice to better protect government employees and facilities, CSS is further tasked to develop a cross-government security policy and framework to align with industry standards and best practices. Peter and his team also strive to ensure there is a clear definition and understanding of roles, responsibilities and functions to leverage more efficient security capabilities across government. In addition to being board-certified as a Protection Professional (CPP), Peter is a graduate of Royal Roads University and has a master’s degree in Disaster and Emergency Management.
Session F GPS and RFID Privacy Challenges Balancing Accessibility and Accountability When Using New Technologies Carrie Edwards and Cathy Evanochko
Opportunities often come with challenges. Join our expert speakers to learn how a large metro school board worked to implement new technologies to support safety for student transportation. Learn about what went right and what went wrong as the process unfolded. Gain insights into the complexities experienced by the Calgary Board of Education as they worked to mitigate risks involving student personal information.
Carrie Edwards has been an educator within the Calgary Board of Education for over 20 years. She has worked as a teacher, curriculum leader, assistant principal, and principal. She has a keen interest in second-language learning and in promoting student success through literacy. Since August 2015, Carrie has been working as the Director of Planning and Transportation, which includes work on 31 capital projects, engagement with schools regarding low enrolments due to new school openings, and transportation services for 38,000 students. The implementation of Zonar/ZPass technology has helped her build awareness of the wide-scale implications new technologies can have on privacy and student information.
Cathy Evanochko – Please see page 7 for biography. 2:15–2:30 pm
Refreshment Break
15
2:30–3:30 pm
Plenary Presentation: John Weigelt
Foundational Privacy Impact Assessment A Strategy to Assist Organizations to More Rapidly Adopt Technology Solutions Organization and government agencies will find this presentation valuable, as this approach is especially important in the era of digital transformation that organizations find themselves in today.
John Weigelt is the National Technology Officer for
Microsoft Canada, where he is responsible for driving Microsoft Canada’s strategic policy and technology efforts. In this role, Mr. Weigelt helps businesses and governments innovate with technology while avoiding the unintended consequences that might arise. He leads Canadian Outreach for Economic Development, Environmental Sustainability, Accessibility, Privacy, Security, Critical Infrastructure Protection, Government 3.0, Interoperability, and other policy-related activities. Prior to joining Microsoft, John held the position of Senior Director of Architecture, Standards and Engineering at the Chief Information Officer Branch of the Treasury Board of Canada Secretariat. John is also a board member of Supply Chain and Logistics Association Canada and a member of the Science and Technology Advisory Council of Innovacorp. John holds a master’s degree in computer and communications security engineering from the Royal Military College of Canada.
3:45–4:45 pm
Commissioners’ Round Table
Moderator: Panel Members:
Dr. Thomas Keenan Elizabeth Denham, Suzanne Legault, Brian Beamish, Jill Clayton, Elaine Keenan Bengts
Thomas Keenan – Please see page 23 for biography. Elizabeth Denham – Please see page 9 biography. Suzanne Legault – Please see page 10 for biography. Brian Beamish – Please see page 17 for biography. Jill Clayton – Please see page 13 for biography. Elaine Keenan Bengts graduated from the University of Alberta with a bachelor of arts in 1979 and a bachelor of laws in 1982. She was admitted to the bar of the Northwest Territories in 1983, Alberta in 1985, and Nunavut in 1999. For most of her career, she ran her own firm, practising mostly in the area of family law. She was appointed as the first Information and Privacy Commissioner of the Northwest Territories in 1997 and as Information and Privacy Commissioner of Nunavut in 1999, making her the longest-serving Information and Privacy Commissioner in Canada. Since January 2015, she has discontinued her family law practice and now undertakes the role of the Information and Privacy Commissioner for the two territories on a full-time basis.
16
2017 Access and Privacy Conference FRIDAY, JUNE 16 7:45–9:00 am
Registration
(Breakfast served 8:00–8:45 am)
Welcome from the University of Alberta Christie Schultz 9:00–9:15 am
Assistant Dean, Academic, Faculty of Extension
9:15–10:15 am
Keynote Address: Brian Beamish
Introduction by CSDC
Access and Privacy – The View From Ontario Brian Beamish
Commissioner – Ontario Office of the Information and Privacy Commissioner Join Brian Beamish, Ontario Information and Privacy Commissioner, as he dives deeper and shares the latest Ontario access to information and privacy protection developments with our 2017 conference delegates. This keynote will give delegates a bird’seye-view and an insider’s look at information rights trends and issues being experienced by Canada’s largest provincial oversight office.
Brian Beamish began his career at the Office of
the Information and Privacy Commissioner (IPC) in 1999, as Director of Policy and Compliance. This was followed by his appointment to Assistant Commissioner in 2005, where he directed the Tribunal Services Division, investigating privacy complaints and resolving access to information appeals. In addition to overseeing tribunal, Brian also served as an executive policy advisor, playing a key role in executing the mandate of the IPC and supporting several initiatives in the best interests of the public, such as bringing universities and hospitals under the Freedom of Information and Protection of Privacy Act and ushering in the Personal Health Information Protection Act. Prior to joining the IPC, Brian held a number of positions within the Ontario Public Service, including with the ministries of the Solicitor General and Correctional Services. He is a member of the Law Society of Upper Canada and a graduate of the University of Toronto Law School. In 2016, he was the recipient of the OBA Karen Spector Memorial Award for Excellence in Privacy Law.
17
10:15–10:45 am
2017 IAPP Program Awards
2017 IAPP Awards for Outstanding Leadership and Contribution to the Field of Access and Privacy in Alberta and Canada
Anne Côté
Karina Guy
John Weigelt
Anne Côté is a partner in the Edmonton office of Field LLP and is chair of the firm’s Privacy Group.
She maintains a practice primarily in privacy law, labour and employment law, and administrative law. Anne represents clients in inquiries before the Alberta Information and Privacy Commissioner, in professional regulatory and administrative matters, and has appeared before all levels of courts in Alberta and at the Supreme Court of Canada. Anne provides ongoing advice to a range of clients to guide them through the complex landscape of privacy policies, employment policies, outsourcing agreements, legislative compliance, and records management issues. She is also co-chair of the Canadian Bar Association’s Northern Alberta Privacy Law Section.
Karina Guy Please see page 19 for Karina Guy’s biography. John Weigelt Please see page 16 for John Weigelt’s biography.
Cyber Security in a changing world The threats from cyber adversaries are continuing to grow in scale and sophistication. Learn how to identify the unique cyber threats your organization may face and how to ensure your cyber strategy is effectively mitigating them. Visit kpmg.ca/cyber
© 2017 KPMG LLP, a Canadian limited liability partnership and a member firm of the KPMG network of independent member firms affiliated with KPMG International Cooperative (“KPMG International”), a Swiss entity. All rights reserved. 16805
18
10:45–11:00 am
Refreshments
11:00 am–12:00 pm
Breakout Sessions
Session G Privacy in the Age of Analytics Karina Guy
Both public and private sector organizations are increasingly using advanced analytics and “big data” to strive for efficiency, effectiveness, innovation, and value. Sophisticated technologies have the capability to drive client-centred and personalized services through combined analytic and identity systems. In addition, the public sector is using advanced analytics for decision-support with respect to health services, infrastructure, transportation, sustainable resources, energy, and education, just to name a few. While there are numerous examples of advanced analytics to improve the efficiency and effectiveness of public services, these models often require the use of personal information. The tension between privacy and analytics is real, but unnecessary. This tension is often based on the lack of awareness of the full scope of analytic technologies including privacy-enhancing technologies, methods, and models. This session will provide an overview of the privacy issues, opportunities, and solutions that exist in this current “age of advanced analytics.”
Karina Guy is a partner in KPMG’s management consulting practice and brings over 24 years of
experience in advisory services. Her areas of specialization include analytics and business intelligence, enterprise information management, IMT governance and control assurance, privacy, and security. Karina brings extensive experience in business and IT strategy; service-delivery and digital transformation; enterprise and solutions architecture; and technology implementation. Karina’s industry coverage includes public sector, health care, insurance, and financial services. Karina holds a postmaster’s in applied informatics from the Johns Hopkins University and a master’s degree from the School of Library, Archival and Information Studies at the University of British Columbia. Karina is also a Certified Information Systems Security Professional (CISSP), a Certified Information Privacy Professional (CIPP/C), and a Certified Information Systems Auditor (CISA).
Session H Maintaining Privacy and Confidentiality for Sexual and Gender Minority Students Kerry Maguire
Creating a school environment where students who identify as a sexual or gender minority are safe and supported requires attention at several different levels. In this session we will discuss many of the aspects that need to be addressed to ensure that a student’s sexual orientation and/or gender identity are recognized and respected, and that their confidentiality is maintained as they participate fully in any school-related activity.
Kerry Maguire has been an Edmonton Public School Board employee for the past eight years. Her
educational background is in psychology and elementary education, and she is currently working on her master’s in educational policy studies. Kerry is the district’s diversity consultant for sexual orientation and gender identity. She also works at Jasper Place High School as the department head of student leadership and as graduation coordinator. She has been a participant in the Finland-Alberta Education partnership for four years and has focused primarily on topics of diversity and student voice. Her consulting work involves supporting the startup and maintenance of gay and queer-straight alliances, providing tailored professional learning for school communities and school supports for transgender and gender diverse students, maintaining contact with and providing professional learning to each school’s safe contact staff member. She is passionate about promoting inclusive and safe school communities for students.
19
Session I Privacy and Law Enforcement From a Federal Perspective – Key Cases From the Office of the Privacy Commissioner of Canada Michael Billinger and Virginia Schwartz
The core of the Office of the Privacy Commissioner’s (OPC) mandate is to investigate complaints from members of the public regarding the collection, use, and disclosure of personal information by federal governmental departments and agencies. Perhaps the best litmus test for understanding citizen concerns over the government’s handling of personal information is through public complaints challenging legislative compliance. Over the past several years, the number of complaints received by the OPC against public sector departments has not only increased dramatically in numbers year-over-year, but the complaints have become increasingly more complex in scope and subject matter. Not surprisingly, the most challenging complaints to investigate tend to be those involving law enforcement, border security, and national defense. This presentation will highlight recent cases of significance to Canadians from a federal privacy perspective.
Michael Billinger and Virginia Schwartz are both senior advisors in the Privacy Act
Investigations Branch of the Office of the Privacy Commissioner of Canada. Virginia and Michael handle complex investigations relating to national security and intelligence, national defence, and law enforcement. Prior to joining the OPC in 2007, Virginia worked for three years at the Senate Protective Service, and five years for a private consulting firm that specialized in investigations and Access to Information and Privacy (ATIP) matters. Prior to joining the OPC in 2011, Michael spent five years with the Edmonton Police Service as both a Disclosure Analyst and Supervisor of the Freedom of Information and Protection of Privacy (FOIP) Unit.
12:00–1:00 pm
Lunch
1:00 –2:00 pm
Breakout Sessions
Session J The Latest Practical Tips for Access Coordinators: Implications of Recent Canadian Case Law David Loukidelis
In the past few years numerous commissioner and court decisions across Canada have affected how access to information laws are interpreted and applied. Drawing on more than 25 years of access to information experience, David Loukidelis will bring you up to speed on key leading decisions from across the country and will offer practical tips on how to respond to these decisions. Areas to be covered include cases on solicitor-client privilege, settlement privilege, advice and recommendations, third-party business information, and third-party personal information. This session will not overlap with the session reviewing recent decisions of the Alberta Office of the Information and Privacy Commissioner.
David Loukidelis has been active in privacy and freedom of information law and practice for over 25
years. He was British Columbia’s Information and Privacy Commissioner 1999 to 2010; at the same time, he was also serving as Registrar of Lobbyists from 2003 to 2010. In 2010, the BC Cabinet appointed David as British Columbia’s Deputy Attorney General and Deputy Minister of Justice, a post he held until 2012. He was appointed Chair of the Law Enforcement Review Board, Alberta’s independent police oversight appeal tribunal, in December 2012.
20
During his time as Information and Privacy Commissioner, David issued over 200 decisions in freedom of information and privacy appeals, as well as numerous investigation reports, policy reports, and guidance materials. He also participated on behalf of Canada in international negotiations leading to the creation and implementation of the Asia-Pacific Economic Cooperation organization’s APEC Privacy Framework, which promotes cross-border trade while protecting privacy. He was a member of the Privacy Advisory Committee of the Canadian Institutes of Health Research. He was also chair of the Website Working Group of the International Conference of Data Protection and Privacy Commissioners. During the 1990s, David acted for numerous local governments and school boards across BC, as well as major Crown corporations and private businesses, on all aspects of privacy and freedom of information law.
Session K A Dialogue With the Chief Privacy Officer at Alberta Health Services Brian Hamilton and Linda C. French
Brian Hamilton and Linda French share an informal dialogue about the next steps in the maturity of the application of privacy principles in our constantly changing world. How can organizations mature internal culture and approaches to be more proactive, and ultimately to reach a state of optimization? How do we find the balance between the need to progress organizational strategies and objectives and the need to protect the individual’s right to an expectation of privacy? Health care is an area where the expectation of privacy is paramount, but how can we balance our need for increased information sharing, research, and analytics? Is there an ability to protect privacy while enabling these public interests?
Brian Hamilton has over 15 years of experience in data privacy, as both regulator and privacy officer,
and is a nationally recognized expert in privacy impact assessment (PIA), health informatics privacy, incident response, and privacy offence investigation. Through B.W. Hamilton Consulting Inc., Brian provides advice to senior leaders on the application of access and privacy legislation, information governance, and information security. Before starting his own firm, Brian served in various positions with the Alberta Office of the Information and Privacy Commissioner, including Director of Compliance and Special Investigations and Director of Health Information Ace and Investigator. During his time at the OIPC, Brian was responsible for precedent-setting investigations involving data encryption, biometric identification, authentication, malware, and business continuity. He was lead investigator for Alberta’s first privacy offence conviction. Prior to his time as a regulator, Brian was Senior Manager of Privacy and Security at Alberta Health and Wellness, where he developed and implemented privacy and security policies for Alberta Netcare, Canada’s first provincial electronic health record system.
Linda C. French has been a lawyer for over 20 years and is currently the Chief Privacy Officer at
Alberta Health Services (AHS). She joined the AHS team with an interesting background of law, human resources, leadership training, and business integration. Linda brings a new perspective to the privacy portfolio at AHS and is pushing through barriers to develop a new and exciting culture in this area. She is leading her team and the whole organization through a transformational privacy initiative. Culture changes do not happen overnight, but this team is really turning everything on its head and making things happen. Exciting work ahead!
21
Session L Essentials for the Access and Privacy Professional: Equipping Yourself for a Career in Information Rights Administration Moderator: John Ennis Panel Members: Larry Kearley, Alexandra Kozlov, Ana Palomino, Manon Plante Are you looking for ways to move your career forward and evolve in your profession? Join our panel of experts to receive their insights and advice on what you need do to propel your information rights career forward! So participants attending this session should … carpe diem - seize the day!
John Ennis began a public service career as an intern at the Alberta Legislature. He spent five years
in Alberta and the North as a federal staffing officer. John later moved to the Government of Alberta’s central personnel agency in the early 1980s, where he spent 14 years in a progression of senior consultant and management roles, including corporate policy plans, management development, and executive search. In the early 1990s, John’s work for the Government Re-organization Secretariat took him into a leadership role in the development and implementation of Alberta’s Freedom of Information and Protection of Privacy Act. In 1995, John moved from his role as FOIP coordinator to become a start-up Portfolio Officer in the new office of the Information and Privacy Commissioner. In 2001, John advanced to OIPC/AB’s Director, Policy and Consultation role, making him responsible for stakeholder relations and legislative development. In 2006, John entered private consulting which began his threeyear posting as Executive Director for the Alberta Association of Architects, where he played a national role in establishing uniquely Canadian licensure standards. John Ennis Consulting is based in Edmonton, with interest in projects in Montreal, Ottawa, Calgary, and Victoria. Through diversity initiatives at the University of Alberta, John and his spouse Grace are dedicated to assisting youth from under-represented groups achieve success.
Larry Kearley worked as Senior Legal Counsel and as Director of Legal Services and General
Counsel with the Office of the Information Commissioner of Canada from 1998 until his retirement from the public service of Canada in January 2011. He was called to the bar of Ontario in 1974 after graduating from Osgoode Hall Law School. In 1996 he received his master’s of law degree in international law from the University of Ottawa Law School, specializing in the international protection of privacy. Larry has taught law at the University of Windsor Law School and Osgoode Hall Law School, and currently teaches privacy law for the University of Alberta’s Faculty of Extension. He is a frequent speaker on freedom of information and privacy issues. Larry is President of the Canadian Access and Privacy Association (CAPA) and Vice-President of the Canadian Institute of Access and Privacy Professionals (CIAPP).
Alexandra Kozlov is currently practicing law at Blake, Cassels & Graydon LLP in Ottawa. Prior to joining the firm, she worked for the Ontario Public Service as the Freedom of Information Coordinator at the Ministry of Energy and as Assistant Freedom of Information Coordinator at the Ministry of Finance. She is a graduate of the University of Toronto (history and criminology) and Queen’s University (law). She is currently enrolled in the Information Access and Protection of Privacy (IAPP) program at the University of Alberta, Faculty of Extension. She is also certified as CIPP/C by the International Association of Privacy Professionals.
22
When Ana Palomino joined Enterprise Rent-a-Car in Calgary in the capacity of management trainee, she gained further understanding of growing a business and developing client accounts. She moved with the firm to Ottawa and started a life in the nation’s capital. She joined Altis Professional Recruitment in 2008, where she quickly learned the art of finding that diamond in the rough in the most difficult roles. In her nine years with Altis, she moved from recruitment to client services, and then to leadership of a team of 10 consultants (the largest professional services consulting team in Ottawa). Her clients trust her because she has a deep understanding of the procurement process and because of her offering of consultative input for a host of professional consulting opportunities. Within her professional network, Ana’s specializes in placing Access to Information and Privacy Analysts, Investigators, and Privacy Impact Assessment Consultants for the Federal Government and Private Sector.
Manon Plante joined Service Alberta in September 2016 as the new ADM for the Open
Government Division. Her portfolio includes the very crucial corporate branches of Information Management, Access to Information, and Open Government. She is also the Registrar for Vital Statistics, Corporations, Companies, and Personal Property Registries. Together, these branches form the basis for openness, transparency, and information sharing. This unique division is equally diverse and challenging, with a substantial exposure to policy development and advancement. Manon joined the Government of Alberta in May 2014. She served as the ADM of the Delivery Services Division in Transportation, where she led the planning, programming, and delivery of $2B of capital provincial projects throughout Alberta, as well as the overall provincial road network maintenance. Prior to joining the APS, Manon worked with the Association of Professional Engineers and Geoscientists of Alberta as the Operations Officer. Manon retired from the Canadian Military as a Lieutenant Colonel after an extensive career spanning over 25 years. Her varied leadership roles included leading the management of the substantial army infrastructure portfolio and associated resources for Western Canada, providing direct support to deployed forces overseas (training, equipment, and infrastructure) and running the Business Planning for the Army Training System. Manon is a Professional Engineer with a degree in civil engineering from McGill University. She holds a master’s degree in defence studies and has extensive professional development in the areas of leadership, financial and operational management, conflict resolution, and ethics. She brings an array of leadership characteristics and capabilities, both professionally and through her varied volunteer and community service.
Help protect what matters most. Keeping Canadians safe and secure matters and TELUS WISE (Wise Internet and Smartphone Education) provides the resources to help keep our families safe online. ®
telus.com/wise
#TELUSWISE
© 2015 TELUS.
23
2:00–2:15 pm
Refreshment Break
2:15–3:15 pm
Plenary Presentation: Dr. Thomas Keenan
Your Rental Car Will Rat You Out and Your Fuelband Knows When You’re Having Sex Urgent and Emerging Issues in Internet of Things Privacy Our wired world is leading us on a one-way trip to the total surrender of privacy and the commoditization of intimacy. Or is it? Join Dr. Tom Keenan for an engaging dissection of privacy-eroding and life-invading technologies. He will explore how the Internet of Things has been creeping into our wired world, how it affects our privacy, and what we can do about it.
Thomas Keenan combines a deep technical knowledge with
lively insights into the social and cultural aspects of technology. He was educated at Columbia University, receiving BA, M.Sc., MA and Ed.D. degrees in philosophy, mathematics, engineering, and education. He is a popular professor of environmental design and computer science at the University of Calgary, a Fellow of the Canadian Information Processing Society and the Canadian Defence and Foreign Affairs Institute and a Research Fellow of the Centre for Military Security and Strategic Studies. Tom taught Canada’s first computer crime course in 1974, and was involved in drafting the country’s inaugural computer crime legislation. He has been an expert witness in civil and criminal cases, including one involving claimed “internet defamation” and a privacy class action. He is the author of over 500 academic papers, book chapters, presentations, and articles, and has spoken on five continents to academic audiences, major conferences, and the general public. His latest book, “Technocreep,” dissects how technology is becoming creepy in hidden ways that are difficult for most people to understand. It has recently appeared in the top ten list on Amazon.ca in categories including Civil Rights and Liberties, Technology & Society, and Social Aspects of Technology. Tom’s prolific work in the media ranges from being the National Technology Correspondent for Business Edge News Magazine to writing a syndicated Men’s Health column that appears in the Calgary Herald and other Postmedia newspapers. He is a member of the Psychology Today panel of experts and blogs regularly on the intersection between the human mind and technology. A regular guest on a number of TV and radio programs, he has been interviewed by the San Francisco Chronicle, the New York Daily News, Newsweek, Singapore Straits Times, Forbes, the New York Post, National Public Radio, CBC Television’s The National, and CTV’s Canada AM.
3:15–3:30 pm
24
Closing Remarks
Our Sponsors A sincere thank-you to this year’s conference sponsors: VIP SPONSOR
FIELD LAW is a western and northern regional business law firm listed as one of the largest firms in Canada with offices in Calgary and Edmonton (Alberta) and Yellowknife (Northwest Territories).
More than 120 lawyers work together to provide a wide variety of legal services to businesses and institutions in corporate and commercial matters, litigation and dispute resolution, labour and employment, insurance, intellectual property, energy, occupational health and safety, privacy, professional regulatory and medical malpractice issues. Additionally, the firm provides private services to individuals including estate planning services and real estate transactions. Field has lawyers called to the Alberta, Northwest Territories, Nunavut, Ontario, British Columbia, and Saskatchewan Bars.
GOLD SPONSOR
CSDC is a Toronto-based company that has been building enterprise solutions for governments since 1989 with its AMANDA Platform. AMANDA is used by over 350 public institutions and governments across the world, providing services to over 60 million people on a daily basis.
SILVER SPONSOR
BROWNLEE LLP is a mid-sized, regional law firm providing the breadth and depth of service of a BROWNLEE LLP full-service law firm across parts of Western Canada and the North. Through our offices in Calgary and Barristers & Solicitors Edmonton, we provide advice and services to clients located throughout Alberta, Saskatchewan, the Yukon, Nunavut, and Northwest Territories. With extensive and long-standing practices in almost all legal disciplines, Civil Litigation, Municipal and Administrative Law, and Corporate–Commercial Law remain the cornerstones and core strengths upon which we continue to build extensive specialized and unique practice areas.
25
SILVER SPONSOR
T E LU S is Canada’s fastest-growing national
telecommunications company, with $12.8 billion of annual revenue and 12.7 million subscriber connections, including 8.6 million wireless subscribers, 1.7 million high-speed Internet subscribers, 1.4 million residential network access lines and more than 1.0 million TELUS TV® customers. TELUS provides a wide range of communications products and services, including wireless, data, Internet protocol (IP), voice, television, entertainment, video and business process outsourcing services, and is Canada’s largest healthcare IT provider. In support of our philosophy to give where we live, TELUS, our team members, and retirees have contributed $482 million to charitable and not-for-profit organizations and volunteered more than 7.7 million hours of service to local communities since 2000. BRONZE SPONSOR
KPMG helps organizations create sustainable business value and
manage risk by optimizing their financial and operational structures, through our suite of Audit, Tax, and Advisory services. A well-managed business process and information technology foundation is necessary for a successful information management program. When correctly implemented and monitored, information technology can lead to significant gains in effectiveness and efficiency. KPMG’s Risk Consulting professionals help organizations transform risk into enduring competitive advantage while navigating your most complex business issues. Our advisers can assist with streamlining access and privacy program operations, while also providing strategic guidance with the planning, procurement, and implementation of privacy-enhancing technologies and access request case management systems. Drawing on our deep knowledge and industry insights, we can help you analyze risk, create value, and strategically manage outcomes for success. Contact a KPMG professional at one of our 40 locations across Canada or visit kpmg.ca for more information.
BRONZE SPONSOR AINS, Inc. is a leading global provider of cloud-based, adaptive case management solutions. Since 1988, AINS has empowered more than 380 organizations in 45 countries around the world to rethink how they work, and how they develop and deploy new technology, by providing innovative, agile software solutions and services to government and commercial markets. Our AINS solutions enable our customers to bring new products to market quickly, digitize customer engagement, and automate unique business processes across diverse lines of business without the constraints of custom coding. Out-of-the-box solutions such as ATIPXpress® for Open Government further accelerate time to value, while providing organizations greater flexibility to adapt as their processes change. Our powerful solutions help customers enhance productivity, reduce costs, and achieve better outcomes. For more information, visit www.ains.com.
26
BRONZE SPONSOR ADVERTISING IMAGES of Edmonton is a family-owned and operated promotional merchandise provider with several decades’ experience sourcing only the finest quality merchandise available to our dedicated client base. Our experience and our expertise give us an edge in this business; however, it is our commitment to superior service that truly distinguishes us from our many competitors. ‘FRIEND OF THE AP CONFERENCE’ SPONSOR
CENERA is an Alberta-based Human Resource and Business Consulting firm with a global reach and affiliations worldwide. Cenera is a member of Career Partners International and Cornerstone, an international executive search association. Cenera’s consultants have a deep knowledge of records and information management, privacy legislation and security standards, practices, and implementation. They have successfully applied their knowledge in both the public and private sectors. Our broad and diverse experience allows us to offer a full range of privacy and information management assessment, design, implementation and training services.
27
Conference Notes
28
AMANDA FOI “FOI, Faster.” AMANDA FOI is the most powerful enterprise solution for Freedom of Information (FOI) management. AMANDA FOI is an end-to-end solution, automating the entire lifecycle of a FOI/ATIP request from public submission, through internal processing and redaction, all the way to release.
Fully Configurable AMANDA FOI is fully configurable, which allows governments to build a solution that fits their unique and changing requirements.
Submit and Track Requests Online AMANDA FOI enables citizens to submit and track requests online through a public-facing portal. This portal can also manage a library of proactive disclosures and open data.
Flexible and Secure Deployment Options AMANDA FOI is available as a traditional on-site implementation, or in the cloud as Software-as-a-Service (SaaS) or Platform-as-a-Service (PaaS). To learn more, please visit our website:
csdcsystems.com 888.661.1933
[email protected]
Online Request Submission & Tracking
Proactive Disclosure & Open Data
Streamlined Intake & Processing
Full Suite of Redaction Tools
Automate Correspondence
Easily Generate Legislated Reports
Collaborate With Internal Agencies
Expedite Document Injection
Best-in-Class Analytics
Book a demo with us today!
Please be sure to visit our website for updates on the 2018 Access and Privacy Conference:
accessandprivacy.com
