Information that is not personally identifiable information is generally considered to fall outside of the scope of privacy legislation and may be shared without consent. In most cases, postal code information at the FSA level is unlikely to lead to the identification of a buyer. However, for certain low-population FSAs, there is a serious possibility that a buyer may be identified. For these FSAs, FSA information should be considered as personally identifiable information and companies should obtain consent to share this information. According to Ann Cavoukian, Ontario’s former privacy commissioner,
There are several [FSAs in Ontario] under 500 [people]. The potential to identify someone exists — and you don’t want to take that risk, because it’s not your information — the data subjects, the individual, in this case, haven’t been informed of this practice. There’s no notice, there’s certainly no consent[.]”
For more information, please see Global News’ website here.
Summary By: Jae Morris
Disclaimer: This Newsletter is intended to provide readers with general information on legal developments in the areas of e-commerce, information technology and intellectual property. It is not intended to be a complete statement of the law, nor is it intended to provide legal advice. No person should act or rely upon the information contained in this newsletter without seeking legal advice.
E-TIPS is a registered trade-mark of Deeth Williams Wall LLP.