#CyberFLASH: Regulatory guidance for online and mobile environments

G3-Nov16-20Canadian Privacy Commissioners have recently published guidance for compliance with privacy laws as applicable to online and mobile environments. The guidance explains how organizations can obtain meaningful, informed consent to the collection, use and disclosure of personal information provided by users of online services and mobile apps. The guidance emphasizes the need for transparency and meaningful consent.

Guidelines for Online Consent

In May 2014, the Office of the Privacy Commissioner of Canada and the Offices of the Information and Privacy Commissioners of Alberta and British Columbia jointly published Guidelines for Online Consent to address consent requirements under private sector privacy laws and to explain the privacy commissioners’ expectations regarding meaningful consent in online and mobile environments. Following is a summary of some important aspects of the Guidelines:

  • Personal Information: Personal information is information that can be used, alone or in combination with other available information, to identify an individual. For example, location information (e.g. GPS data), device identifiers (e.g. IP and MAC addresses), click stream data, browser history and user generated social network data.
  • Meaningful Consent: Privacy laws require organizations to obtain an individual’s meaningful consent to the collection, use and disclosure of the individual’s personal information. Consent is meaningful when an individual understands what the organization will do with the individual’s personal information. The key to meaningful consent is openness and transparency – easily accessible, complete and understandable explanations of the organization’s personal information management practices.

Read more here

About canux
© 2013 CyberTRAX Canada - All Rights Reserved.
Sponsored by C3SA Corp.