September 14-15: Macdonald Block, Queen's Park, Toronto Ontario

The Freedom of Information and Protection of Privacy Act is divided into two main sections: access and privacy. In this session you will learn the main concepts for Ontario's access scheme, including the exemptions, definitions and their importance. This session will greatly benefit newcomers to the legislation.

Speaker(s):

Rafael Eskenazi, Director FIPPO, University of Toronto

For the first time in many years, significant changes have been made to both Acts. First, on June 10th of this year, significant changes to FIPPA brought in under the Budget Bill, introduced universities as institutions and redefined many sections that affect both colleges and universities. On June 22, the Good Government Bill received royal proclamation and ushered in changes in both FIPPA and M/FIPPA regarding disclosure of personal information for compassionate reasons. These changes will impact your business so don't miss out.

Speaker(s):

Priscilla Platt, Counsel, Heenan Blaikie

As an institution, you are required to describe or list your records in a Directory of Records (DoR). Frequently this requirement is viewed as a necessary evil and the result is a document of poor quality and minimal value both to you and to the public. Would your institution be willing to invest more effort if there were benefits to be reaped? Learn about how the Government of Ontario is modernizing its DoR, making it a tool for information discovery.

Speaker(s):

Alana Boltwood, Information Architect, Ministry of Government Services

This session will benefit those who are new to submitting the IPC's annual MFIPPA or FIPPA statistical report.

Speaker(s):

Judith Goldstein, Legal Counsel, Office of the Information & Privacy Commissioner/Ontario

Valerie Via, Research Coordinator, Office of the Information & Privacy Commissioner/Ontario

How is "personal information" defined in the Act? Once a finding is made that a record contains personal information, how are the invasion of privacy exemptions applied to it? What is the analysis required to determine whether the exemptions apply? The presentation will include a step-by-step primer on how to apply the components of the exemptions to the information under consideration.

Speaker(s):

Don Hale, Adjudicator, Office of the Information & Privacy Commissioner/Ontario

This year, the Access & Privacy Workshop is attempting something new. In order to encourage students to consider the fields of Access & Privacy and other IM related disciplines for future careers, we have invited them to submit research papers in these areas. The successful candidates have been selected to present their research in a special session and to attend the Workshop. We hope you will take the time to chat with these students, attend their session and generally make them feel welcome at the Workshop.
a) Health Information Privacy in Canada: A Comparison of Legislation and Public Opinion
b) The PIPWatch Toolbar: Combining PIPEDA, PETs and market forces through social navigation to enhance privacy protection and compliance.
c) Data Archiving of Publicly Funded Research in Canada

Speaker(s):

Wilhelm Peekhaus, Faculty of Information & Media Studies, University of Western Ontario

David Ley, Faculty of Information Services, University of Toronto

Carol Perry, Faculty of Information & Media Studies, University of Western Ontario

Did you ever wish for your very own access or privacy expert to answer all of your questions no matter how big or small? This session is your chance to get into the details of your biggest problems and to give and receive feedback in a large group. The session will be as structured or unstructured as you like.

Speaker(s):

Geoff Bell, Freedom of Information & Privacy Coordinator, Regional Municipality of Waterloo

Ron Ward, Freedom of Information & Privacy Coordinator, Archives of Ontario

Ontario's Access and Privacy legislation should play an important role in determining how an institution operates on a daily basis. Learn how privacy is defined, what the legislation says about privacy and how this should be applied to your institutions day-to-day activities. Privacy tools like the MGS and IPC websites, and MGS Directives and Guidelines will also be discussed. This session will appeal to those who are new to the field and who will be applying privacy principles in their organization.

Speaker(s):

Rafael Eskenazi, Director FIPPO, University of Toronto

Information Management. We're being asked to practise it but do we know exactly what that means? Like any other discipline, IM requires proper preparation before one can successfully take the plunge. Each is institution is on an IM readiness continuum with its own particular gaps. Come discover what is required for IM readiness, where you fit in the continuum, the next steps required to optimize the information resources in your institution, and how to make sense of the assessment results you produce.

Speaker(s):

Stuart Bailey, Policy Analyst, Ministry of Government Services

Marianne Nikolic, Policy Analyst, Ministry of Government Services

Every institution works to prevent privacy breaches. Develop and implement a breach protocol to minimize harm and prevent future occurrences.

Speaker(s):

Mona Wong, Manager of Mediation, Office of the Information & Privacy Commissioner/Ontario

Jacquie Gallacher, FOI & Privacy Specialist, Office of the Premier and Cabinet Office

Howard Jones, Freedom of Information & Privacy Coordinator, Office of the Premier and Cabinet Office

The threat of terrorism has given rise to an era of new security measures that encroach upon areas within the realm of individual privacy. Many of these security practices have provided authorities with unprecedented access to what has traditionally been considered the sphere of private and personal information. This session explores the challenges inherent in attempting to strike a balance between upholding individual privacy rights and protecting the public-at-large from terrorist acts.

Speaker(s):

Dan Farr, Vice President of Investigative Services, Corporate Investigation Services

One of the many challenging and formidable risk management issues faced by organizations today is protecting the privacy of customers' and employees' personal information. Conducting a privacy review mitigates this risk. Ontario Shared Services staff will highlight their experience in conducting what was probably the largest public sector privacy review ever conducted in Canada. Participants in this session will hear a step by step overview of what the review entailed, how it was conducted and finally, how the findings and recommendations have moved the organization from crisis to confidence in the area of protection of personal information.

Speaker(s):

Estella Cohen, Ontario Shared Services, Ministry of Government Services

Dave Jackson, Project Coordinator, Information Security & Privacy, Ministry of Government Services

This is a 3-hour hands on session that takes you through a PIA case study, allows you to work through some difficult questions and provides you with some of the experience you need to get started on PIAs in your own organization. Even PIA experts give this session "two thumbs up". Make this one a priority, as space is limited!

Speaker(s):

Peter Hope-Tindall, Chief Privacy Architect, dataPrivacy Partners Inc.

Eric Lawton, Policy Advisor, Ministry of Government Services

Attend both or just one, the two "expert" sessions will be as different as the attendees, the experts and the "issues" on the table.

Speaker(s):

Mary Lou Daniels, Manager, Ministry of Community & Social Services

Kathy O'Brien, , City of Thunderbay

A primer on processing and managing access requests, including fees, voluminous records, third parties, request file organization, and request tracking. This session will provide practical advice and tips for new coordinators and those who receive few requests.

Speaker(s):

Rafael Eskenazi, Director FIPPO, University of Toronto

Many of us have experienced that sinking feeling that occurs when we first become aware of a privacy breach involving our institution. Learn from people who have "been there" and benefit from their real life experiences in a session that will provide practical advice and actual case studies on managing privacy breaches, and will also examine shocking examples of breaches both nationally and internationally.

Speaker(s):

Rob Candy, Manager of Training & Compliance, Corporate Access & Privacy Office, City of Toronto

John Searle, Senior Policy & Compliance Analyst, Corporate Access & Privacy Office, City of Toronto

It's true, what you don't know can hurt you. Laws such as M/FIPPA and others have made it increasingly important for institutions to have accurate, complete and secure records of their everyday transactions. It is often not just a question of how long records are kept but how and perhaps even what and where (in response to the USA PATRIOT Act (for example)) your records are kept. Come to this session to have your eyes opened, and to learn some practical approaches to compliance with legislative requirements.

Speaker(s):

Carolyn Heald, Information Policy Advisor, Archives of Ontario

Oriana Sharp, Corporate Resources IM, Regional Municipality of Waterloo

Information is one of government's most valuable resources. It needs to be managed and protected throughout its lifecycle from creation through active use to its ultimate preservation or destruction. Information Security & Privacy Classification (ISPC) is a tool that safeguards information based on an assigned sensitivity level (high, medium, or low), based on:
* the value of the combination of the business requirements to protect and maintain the information's confidentiality, integrity and availability, and
* the harm and injury that could result due to unauthorized disclosure of the information.

Speaker(s):

Muriel Petersen, Business Manager, Ministry of Government Services

This is a 3-hour hands on session that takes you through a PIA case study, allows you to work through some difficult questions and provides you with some of the experience you need to get started on PIAs in your own organization. Even PIA experts give this session "two thumbs up". Make this one a priority, as space is limited!

Speaker(s):

Peter Hope-Tindall, Chief Privacy Architect, dataPrivacy Partners Inc.

Eric Lawton, Policy Advisor, Ministry of Government Services

Ontario faces some real privacy challenges in its future. Under those circumstances even if advice is free, it shouldn't be easily dismissed. When the advice is coming from a privacy expert who has insider knowledge from both the public and the private sector, we should all listen hard. In this session two of Ontario's biggest issues: Health Information and Identity Management will be outlined and discussed. One of the keys to success is the ability to move privacy from a policy discussion into a technology discussion. What does Ontario need to be doing more of? What should we be doing less? Come and join the debate on how the course should be set.

Speaker(s):

Mike Gurski, Privacy Strategist, Bell Security Solutions Inc.

The session examines some of the most significant orders of the Information and Privacy Commissioner's Office, and further, discusses outcomes of precedent setting court decisions, and the impact these have had on the interpretation of specific key sections of Ontario's Freedom of Information and Protection of Privacy Act. This is an introductory-level session focused on the access to information side of the Act and is recommended for those who wish to acquire further knowledge of the Act's application and interpretation.

Speaker(s):

Karen Rudner, Legal Counsel, Ministry of Agriculture - Food & Rural Affairs

Shirley Senoff, Legal Counsel, Office of the Information & Privacy Commissioner/Ontario

Electronic discovery refers to any process in which electronic data is sought, located, secured, and searched with the intent of using it as evidence in a civil or criminal legal case. In the process of electronic discovery, data of all types can serve as evidence – including (especially network data) that which has been "destroyed". From the point of view of any information manager or access coordinator, e-discovery raises many issues. Learn how to prepare your institution for such an event.

Speaker(s):

Don Fawcett, Counsel, Ministry of Government Services

In the fall of 2005 a privacy breach that made the news blew the lid off a records disposal problem that was waiting to occur. As so often happens, once the IPC began investigating, it became apparent that this is an issue almost no one takes sufficiently seriously. The result: a Secure Records Destruction Fact Sheet. That was not the end of the matter though, because the Ontario Government has taken up the baton and is now involved with a project that will alter records destruction as we currently know it . Intrigued? Attend this session to learn more.

Speaker(s):

Stephen Gilbey, Strategic Sourcing Analyst, Ministry of Government Services

Janet Money, Policy Analyst, Office of the Information & Privacy Commissioner/Ontario

Since the implementation of PHIPA in 2004, government institutions, as well as municipalities have been struggling with the interaction of FIPPA, M/FIPPA and PHIPA. As time goes on and the basic issues are mastered, the problems are becoming more complex. The fascinating and sometimes stressful balancing act between the two privacy statutes can really give your brain a work-out. Come and join a couple of very fine legal minds as they attempt to sort things out and provide suggested solutions.

Speaker(s):

Lise Hendlisz, Counsel, Ministry of Health & Long-term Care

Jane Speakman, Senior Solicitor, City of Toronto

Building privacy into new projects leads to increased overall privacy protection and awareness in an organization. Learn how a project can successfully build privacy into its IT design and project life cycle beginning at the initial concept stage. Learn where it is critical to include privacy considerations and when disregarded privacy issues can turn into deal breakers. This is a session Project Managers and IT professionals need to attend.

Speaker(s):

John Weigelt, Privacy Compliance Officer, Microsoft Canada

Personal Information and Databases are a heady mix. There are a lot of opportunities for great services and programs, however there are also many risks for serious personal harm. A lot of thought and preparation must go into doing it right.

Speaker(s):

Jane Dargie, Director of Privacy, Smart Systems for Health Agency

A fundamental principle of privacy is informed consent but how do you know when some one is competent to give it? What about implied or express consent? What is the difference and when does it matter? The law contains specific guidance for minors. More interesting issues are raised by the situation of some seniors and others whose capacity may be limited. Get advice on how to navigate a safe course.

Speaker(s):

Laurie Redden, General Counsel, Ministry of the Attorney General

Achieving an effective and completely functional Record/Document Management System requires thorough preparation. Because R/DMS's allow many choices and will change the nature of your business you'll want to plan your implementation carefully to fit your organization's needs. You'll also need well-designed file plans and records schedules even if you aren't adopting an R/DMS. Do it right, and you'll reap the pay-offs. Learn what you need to do and the tools being developed to help you.

Speaker(s):

Don Macleod, Information Policy Advisor, Archives of Ontario

Katherine Willson, Team Leader, Archives of Ontario

Gerry van Houten, Information Policy Advisor, Archives of Ontario

Elspeth Shtern, Director, Ministry of Municipal Affairs & Housing

Information Management is many things to many people. In this session you will hear from some of the many related disciplines, about similarities and differences in practice and how these disciplines work together to achieve a common goal. This is important in understanding the key components of an information management program.

Speaker(s):

Guy Herriges, Manager, Ministry of Government Services

Gila Pyke, Senior Analyst Risk Management, Smart Systems for Health Agency

Heidi Ritscher, Manager Corporate Services Unit, Ministry of the Environment

Doug Green, Manager, Business Solution Services, Ministry of Agriculture, Food and Rural Affairs

IPC mediators are excited to showcase our new educational training DVD * Get Together - Win Together - Mediation at the IPC*. Come learn more about our more direct approach where the parties to mediation discuss the issues together, facilitated by an IPC mediator, as well as our best practices in mediating appeals

Speaker(s):

Andrea Schwartz, Mediator, Office of the Information & Privacy Commissioner/Ontario

Shaun Sanderson, Mediator, Office of the Information & Privacy Commissioner/Ontario

Maria Tzimas, Mediator, Office of the Information & Privacy Commissioner/Ontario

Identity theft is often in the news these days. It is a phrase that is frequently scattered about in reference to many different situations. What exactly is meant by the term? From both a personal and professional perspective, it is important to understand what it is, how and why it occurs, and what measures can be taken to protect against it. In this age of automated information and instant access, once an identity has been stolen or compromised, it is difficult to reconstruct. Attend this session to reduce your risk.

Speaker(s):

Nancy Sills, Senior Counsel, Ministry of Government Services

Scott Tod, Detective/Inspector, Anti-Rackets Section, Ontario Provincial Police

You are the privacy expert in your organization and this is an election year. Every election brings a slate of new politicians with ideas and ambitions but no understanding of the access and privacy rules. There are going to be a lot of demands for their attention so your message will have to be brief and forceful. What are the important points to get across to these people and how do you make your points stick so that your officials will remember what to do when it really counts?

Speaker(s):

Heather Cassis, Records & Information Supervisor, City of Barrie

Craig Sumi, Manager, Office of the Premier and Cabinet Office

This popular session examines recent IPC decisions with a focus on new interpretations and significant clarifications or restatements of the law. This session is intended for those who use the legislation regularly and need to understand the latest trends in interpretation.

Speaker(s):

Kate Corban, Adjudicator, Office of the Information & Privacy Commissioner/Ontario

Wendy Lawrence, Counsel, Ministry of Government Services

You're working in the access & privacy field and considering your next move. Are you searching for ideas and opportunities that could take your career to the next level? This interactive session will describe some of the roles available to people with access and privacy experience, discuss the skills you've acquired along the way, and suggest some areas to develop in order to break into related fields and professions. We will provide you with our first-hand experience and career paths, and challenge you to share your own experiences with others in the session.

Speaker(s):

Lindsay McWilliams, Policy Advisor, Ministry of Government Services

Kathryn Sykanda, Information & Privacy Policy Analyst, Ministry of the Environment

Holly Big Canoe, , Ministry of Children & Youth Services

This part of the presentation will focus on changes in the IPC's approach to supplier and consultant contracts. We will review the requirement that the information was "supplied" to the institution and the need for "detailed and convincing evidence" to demonstrate a reasonable likelihood of harm.
What is the analysis required to determine whether the exemptions apply? The presentation will include a step-by-step primer on how to apply the components of the exemptions to the information under consideration.

Speaker(s):

Don Hale, Adjudicator, Office of the Information & Privacy Commissioner/Ontario

In 2004, the USA PATRIOT Act grabbed the attention of Canadians when BC public sector unions voiced their concern over their personal information heading south for processing as part of their collective bargaining. Since then, this issue has been on the radar screen of all level of governments. Find out what is at the bottom of this issue. What Ontario is planning to do and why? What are the potential implications for all governments and businesses across Ontario and Canada?

Speaker(s):

Mark Robinson, Policy Advisor, Ministry of Government Services

Dave Douglas, Freedom of Information Coordinator, Ministry of Government Services

Stella Luk, Faculty of Law, University of Toronto

Radio Frequency Identification is a technology that has been around for some time. Suddenly the private sector and government are finding many applications- some of which could be privacy invasive. Come to this session to learn about the technology, its issues and what you can do to be prepared.

Speaker(s):

Joseph Chan, Manager Breakthrough Technologies, Ministry of Government Services

Fred Carter, Policy & Information Technology Officer, Office of the Information & Privacy Commissioner/Ontario