PIPEDA

Great Essays
The Purpose of this extended analysis will be to examine the degree of compliance of Toronto-Dominion Bank’s (TD) privacy policy with that of the Personal Information Protection and Electronic Documents Act (PIPEDA). This paper will discuss course concepts such as the dignity vs property approach when discussing safeguard recommendations. The focus of this paper will be PIPEDA, but other notions such as the privacy vs secrecy debate will be introduced and explained throughout this paper. Certain privacy legislations such as Directive 95/46/EC (European privacy law) will be used to better recommend safeguards and accountability measures for Canadian Privacy Laws.
First Impressions. To answer if this is a good privacy policy depends on through who’s lens it is being looked upon. From the perspective of the bank, this policy is necessary to help operate its daily functions and protect against fraud and other crimes; but from the perspective of the individual, it overextends its power and violates privacy laws. It puts the onus on the individual to know what consent really means, along with vague sections, it only exists to manipulate PIPEDA and abuse its power. Compliance with PIPEDA. Accountability: Section 4.1.3 of PIPEDA states an organization is responsible data transferred to third parties is done so with high standards and the responsibility of its use falls on the company sending it. TD’s policy violates this section; once data is transferred, the bank then has no authority over the matter. PIPEDA’s section also states that if data is transferred, it is the responsibility of the sender to protect it while ‘it is being processed by third parties’. The recent CBC investigation delivers a blow to TD’s compliance measures with regards to s. 4.1.4© and (d). section (c) states staff of the organization must be trained about the company’s policies and procedures on how to protect data. Section (d) states staff must be able to properly explain these policies as well. The CBC investigation has shown that TD has violated these two sections to the extreme. The investigation unveiled every time an individual entered his PIN at a teller’s counter, a popup would appear on the teller’s screen exposing confidential information about the customer. The teller would then try to persuade him into getting services he does not need. As mentioned before in part I, TD stated in its privacy policy that any customer data collected will only be used for purposes mentioned and access to it is only open to certain employees. More specifically, in the sub-section ‘how we protect your information’, it is stated no agent of TD can have any unauthorized access to data, nor can they misuse it anyway. But there is no clear distinction in the policy as to what bounds the employees to these codes, or more importantly what the code is. As can be seen here, TD does not uphold the accountability
…show more content…
This right here is an issue because ‘fair’ is a subjective term that TD can use any way it wants. Since the bank has the power to decide what is fair, then it is automatically lawful as well. Thus, this section is nothing more than a paper tiger. This issue is also seen in s. 4.4.1 of PIPEDA as it states the information collected must only fulfill the purposes identified. While TD does state what the information gathered is being used for, the also add subjective and vague reasons such as ‘to help the company grow’ or ‘to serve you better’; while this is not a direct violation of PIPEDA, we can see how TD works around it by not stating what is the purpose of the information gathered. While this section is also in violation of clause 4.8 – the openness principle, it will be discussed later in this …show more content…
4.5.2; the bank does not have a minimum or maximum retention period with respects to personal information. TD’s policy claims it can hold consumer data for as long as it wishes even after the original purpose has expired. However, PIPEDA also asks organizations to keep consumers data that has been used to make a decision about him ‘long enough’ for an individual to access in the future. This passage of PIPEDA is highly controversial because ‘long enough’ could mean from one day to five years. This vague language of PIPEDA thus allows banks to hold onto consumer data for as long as they

Related Documents

  • Improved Essays

    HIPAA Summary

    • 935 Words
    • 4 Pages

    The Health Insurance Portability and Accountability Act (HIPAA) passed in 1996 to help set a national standard to protect certain patient health information (Gartee, 2011). The major goal of HIPAA is to ensure a patient’s Health Information (PHI) is utilized by the correct individuals at the correct time to perform a certain job. In addition, HIPPA sets the standards by which PHI can be shared with covered entities and family; plus allowing the patient to receive notice on how their PHI will be utilized. In addition, HIPPA is a complete and comprehensive guide to protect the public’s health and well being while striking a balance that permits important uses of PHI to share information (“Summary” n.d.). The Health Insurance Portability and Accountability act includes three categories of security safeguards and how covered entities will communicate PHI.…

    • 935 Words
    • 4 Pages
    Improved Essays
  • Great Essays

    Dues to modern technological advances, research has now crossed over any privacy that may protect any donor ’s right of privacy. This discussion calls up the question on whether policies regarding privacy should change as technology advances.…

    • 1480 Words
    • 6 Pages
    Great Essays
  • Superior Essays

    1.Examine the types of decisions financial managers make. How are these decisions related to the primary objective of financial managers? There are three major decisions that financial managers have to take on a regular basis. One of them is the investments decision, the financial manager has to decide where to best invest the funds of the company. It is beneficial for the company to invest their funds to keep growing.…

    • 1110 Words
    • 4 Pages
    Superior Essays
  • Improved Essays

    Dbq Privacy

    • 800 Words
    • 4 Pages

    Privacy should be kept intact even for sake of security. One of the main supporting arguments for security is that if an individual has nothing to hide, then they have nothing to fear. In The Accountability Matrix by David Brin, Brin highlights the fact of having tools…

    • 800 Words
    • 4 Pages
    Improved Essays
  • Improved Essays

    Why Privacy Matter Even If You Have “Nothing to Hide” In the article “Why Privacy Matter Even If You Have ‘Nothing to Hide,”’ Daniel J. Solove, talking about the government governed the information to analyze without the permission. Many people didn’t realize how many problems by let the government take their information to analyze. Solove does a great job to persuade the readers that we deserve more the privacy by using the appeal to authority and anecdote.…

    • 704 Words
    • 3 Pages
    Improved Essays
  • Great Essays

    There are rules put in place that banks have to follow that requires them to hold a certain percentage of funds in…

    • 1453 Words
    • 6 Pages
    Great Essays
  • Improved Essays

    The Privacy Act Of 1974

    • 173 Words
    • 1 Pages

    According to HHS.gov.,” The Health Insurance Portability and Accountability Act of 1996 (HIPAA) contains privacy protection provisions that apply to health information created or maintained by health care providers who engage in certain electronic transactions, health plans, and…

    • 173 Words
    • 1 Pages
    Improved Essays
  • Superior Essays

    HIPAA mandates certain privacy and security protections to encourage the realization of administrative efficiencies through healthcare information technologies (Withrow, 2010). The HIPAA Privacy has been controversial but Health and Human Services (HHS) has continued to clarify the complicated privacy rule through the…

    • 945 Words
    • 4 Pages
    Superior Essays
  • Improved Essays

    Farrow's Bank Case Study

    • 1002 Words
    • 5 Pages

    The bank was registered as a ‘credit Bank”. As a result, book keeping standards placed on the Bank was not as strict as in joint stock banks. Legally, it also meant that the bank directors did not have to hire for external audits. Secondly, the manager, Mr. Thomas Farrow isolated himself from the rest of the staff. This means he made most of the company decisions alone.…

    • 1002 Words
    • 5 Pages
    Improved Essays
  • Great Essays

    Why Collect HR Data

    • 1110 Words
    • 5 Pages

    Data Protection Act This act applies to all organisations that process data relating to their staff and customers. It is the main legal framework in UK that protects personal data. The act contains 8 data protection principles which are: Personal data should be processed fairly and lawfully, this can be achieved by asking the employees to use their information, on the employment contract.…

    • 1110 Words
    • 5 Pages
    Great Essays
  • Improved Essays

    The communication privacy theory focuses on privacy boundaries and what information one chooses to withhold from another person. This privacy management system is focused on three parts: privacy ownership, privacy control, and privacy turbulence. Privacy ownership is our private information that only we know and others do not. This also encompasses our personal privacy boundaries. Depending on the person, our privacy boundaries could either be thin and porous, or thick and hard to break through (Griffin p. 151).…

    • 1200 Words
    • 5 Pages
    Improved Essays
  • Improved Essays

    Many companies have and will share consumer financial information with their affiliates. The information that is released can be very sensitive and personal about the consumers. Sine the year of 1991 there has been financial occurrences with banks that have created troubles for consumers. As a result of shared consumer financial information, congress passed the Gramm-Leach-Bliley Act (GLBA) to protect consumer financial privacy that requires companies that are classified as financial institutions that offer consumers financial products or services to explain their information-sharing policies and practices to their customers. The GLBA applies to all businesses that provide financial products or services co-consumers such as check cashing businesses,…

    • 902 Words
    • 4 Pages
    Improved Essays
  • Improved Essays

    Loo1 Unit 2 Research Paper

    • 1344 Words
    • 6 Pages

    Blackboard Name: Sanya Murgai PSID: 1264832 LO1: Discuss information privacy and methods for improving the privacy of information. LO2: Explain the effects on information privacy of e-mail, data collection, and censorship. In today’s day and age, privacies definition can be manipulated to personal preferences. Once we put something on the internet, it will be accessible forever even if we delete it.…

    • 1344 Words
    • 6 Pages
    Improved Essays
  • Improved Essays

    In our daily lives, we relinquish some of our private information ignorantly. As human beings, many of us tend to simply hand out our information in exchange for other items or free services. Many times, online shopping offers better prices but at what cost? Sometimes, better prices means relinquishing your private information that could be obtained by anyone at anytime. In the article, The Convenience-Surveillance Tradeoff, the author makes compelling points on how our society is unaware of the repercussions that come with relinquishing our…

    • 1456 Words
    • 6 Pages
    Improved Essays
  • Great Essays

    Jpmorgan Chase Case Study

    • 1518 Words
    • 7 Pages

    JPMorgan Chase is an American multinational bank and holding company. That provide the financial services to different sectors of the country. Headquarter of the bank in in New York City. This bank is the largest bank of United States that extends its operations in different cities of the state. By comparing its assets with the all the banks of the world, this ban ranks in 16th position.…

    • 1518 Words
    • 7 Pages
    Great Essays