Information & Ethics committee  I've already mentioned the breach notification provisions which can be improved, in my view. I haven't yet done a thorough review of it, but certainly, the area of enforcement, as I mentioned in my comments, is one where I think there could be more that could be done to, for exam

Information & Ethics committee  I have no idea what's being done by the organizations that suffered from Heartbleed in terms of proactive reaching out to victims. This is why security breach notification laws are so important. They would require exactly what you are suggesting. They would require notification t

Information & Ethics committee  Chair, I'd just like to make one point on that. I think it can be helpful to separate two different categories of identity fraud here. First are these mass market credit cards where the industry has basically made a decision to risk more fraud in exchange for more transactions. T

Information & Ethics committee  Yes, I would totally agree with your comments in that respect and I'm glad to hear they will be coming before you. I think you should be asking them a lot of questions, including why they're not offering credit freezes to Canadian consumers while they are in the United States. T

Information & Ethics committee  Could I add to that?

Information & Ethics committee  On the issue of collecting data, information on financial identity fraud exists. It's in the hands of financial institutions and credit bureaus. So I think the government should be looking at ways to get that data from industry.

Information & Ethics committee  Yes, I think that is problematic. There is a strong incentive for organizations not to report security breaches. So the law, in order to be effective, needs to address that incentive, needs to provide a counter-incentive, and I think that counter-incentive has to be an objective

Information & Ethics committee  Thank you, and good morning, Mr. Chair and committee members. Thank you for inviting me to address you today on the issue of identity theft. I have been studying and working on this issue from the consumer and victim perspective for over 10 years, first with the Public Interest