Horizons Global Consulting
your privacy and security management partner

Horizons Global Consulting Home Page.
About Horizons Global Consulting.
Horizons Global Consulting Services.
Horizons Global Consulting Library.
Links of Interest.
Contact Horizons Global Consulting.

Links of Interest

Information Privacy

Privacy Organizations and Advocacy Groups

Daily news, information, and initiatives on privacy at www.Privacy.org. Privacy.org is a joint project of EPIC and Privacy International.

Electronic Privacy Information Center. "EPIC is a public interest research center in Washington, D.C. It publishes an award-winning e-mail and online newsletter on civil liberties in the information age – the EPIC Alert, and also reports and books about privacy, open government, free speech, and other important topics related to civil liberties."

Privacy International. "Privacy International (PI) is a human rights group formed in 1990 as a watchdog on surveillance by governments and corporations. PI is based in London, England, and has an office in Washington, D.C. PI has conducted campaigns throughout the world on issues ranging from wiretapping and national security, to ID cards, video surveillance, data matching, police information systems, medical privacy, and freedom of information and expression."

Privacy and Human Rights 2005 - "Each year since 1997, the Electronic Privacy Information Center and Privacy International have undertaken what has now become the most comprehensive survey of global privacy ever published. The Privacy & Human Rights Report surveys developments in 70 countries, assessing the state of technology, surveillance and privacy protection. The most recent report published in 2006 is probably the most comprehensive single volume report published in the human rights field. The report runs to almost 1,200 pages and includes about 6,000 footnotes. More than 200 experts from around the world have provided materials and commentary. The participants range from law students studying privacy to high-level officials charged with safeguarding constitutional freedoms in their countries. Academics, human rights advocates, journalists and researchers provided reports, insight, documents and advice."

Privacy Foundation. "The Privacy Foundation exists to educate the public, in part by conducting research into communications technologies and services that may pose a threat to personal privacy." The site offers lots of useful information, including a primer about web bugs (tracking devices which monitor your web usage), and Bugnosis, software designed to identify web bugs on sites as you surf the Internet.

BC Freedom of Information and Privacy Association - FIPA is a non-profit society dedicated to advancing freedom of information and privacy rights in Canada. Information on the site includes an explanation of your privacy rights in Canada, news and a library of information collected on privacy over the past decade.

Online Privacy Alliance - "The OPA is a diverse group of corporations and associations who have come together to introduce and promote business-wide actionsthat create an environment of trust and foster the protection of individuals' privacy online."

International Association of Privacy Professionals - IAPP was formed by the merger of the Privacy Officers Association and the Association of Corporate Privacy Officers."IAPP is the world’s leading association of privacy and security professionals. With more than 1,000 individual and corporate members, the IAPP is helping define and support the profession of privacy by being a forum for interaction, education discussion across industries." IAPP produces a monthly newsletter on privacy issues.

Privacy Information and Tools

BC's Personal Information Protection Act (PIPA) - presentation prepared by the Corporate Privacy and Information Access Branch of the BC Ministry of Management Services. This presentation clarifies Bill 38's coverage and exclusions, its applicability to employee information, and the grandfather clause, defines consent, rights of access and exceptions, and identifies tools which are or will be available to assist businesses to become compliant with the legislation, such as setting up complaint handling procedures. On the same website, you can find implementation tools such as 'Setting up a Complaint Handling Process' and 'Model Contract Language.' The Ministry also has established a hotline for information on Bill 38 - Personal Information Protection Act, at 250-356-1851. In Metro Vancouver, call 604-660-2421 and elsewhere in BC for toll free at 1-800-663-7867 and ask to be transferred to 356-1851.

Your Privacy Responsibilities - Guide for Businesses and Organizations to Canada's Personal Information Protection and Electronic Documents Act - from the Privacy Commissioner of Canada's website. Includes an overview of PIPEDA, responsibilities of business under the Act, tips and good practices. The Privacy Commissioner of Canada's website has a great deal of useful information, including FAQs, consumer guides (your customers may be reading this to see what their rights are under the Act) and the Commissioner's findings with respect to federally regulated companies since PIPEDA was passed in Jan 2001.

OECD Online Privacy Statement Generator. "The OECD has developed the OECD Privacy Policy Statement Generator in co-operation with industry, privacy experts and consumer organisations. The Generator, which has been endorsed by the OECD’s 29 Member countries, aims to offer guidance on compliance with the Guidelines and to help organisations develop privacy policies and statements for display on their web sites."

Privacy Diagnostic Tool - "A self-assessment program used to help businesses gauge their privacy readiness by comparing their information processes with international privacy principles". Prepared by the Information and Privacy Commissioner of Ontario with the assistance of Guardent and PricewaterhouseCoopers.

Recommended Reading

The Privacy Payoff, How Successful Businesses Build Customer Trust, by Ann Cavoukian and Tyler Hamilton. Ann Cavoukian is the Privacy Commissioner of Ontario. Tyler Hamilton is a technology reporter for the Toronto Star. This book is required reading for individuals who need to make the business case for privacy to their organization. The website includes useful links, and an Advocacy section which identifies companies who are not adequately safeguarding their customer's private credit card information.

Training Courses

Nymity offers online Web-based training courses in PIPEDA, and BC's PIPA and Alberta's PIPA legislation.

Information Security

Information Systems Audit and Control Association (ISACA)

International site www.isaca.org, Vancouver site www.isaca-vancouver.org

Presentations on information privacy and security by Susan Johnson include:

Training workshop for the Surrey Chamber of Commerce on the business impact of privacy legislation, and practical strategies for compliance.

Presentation to the Wired Woman Society on the impact of the privacy legislation on information security.

Presentation to the Information Systems Audit and Control Association on the impact of the privacy legislation on information security and audit.

Chaired a panel on Privacy and E-Commerce at the Freedom of Information and Privacy Association conference on private sector privacy legislation.

Panel on privacy for the Canadian Information Processing Society Vancouver Security Group.

Vancouver Board of Trade Lunchbox Workshop on privacy legislation.

Horizons Global Consulting principals are available to present on information privacy and security to business, schools and non-profit groups, as part of our community awareness programs.

Contact us for details.