Industry committee  I have a point on that, and again it's something that I'm not understanding. In this regime, the federal government is supposed to be leading and the provinces are supposed to be passing substantially similar legislation. If the provincial legislation is substandard and not achie

Industry committee  Well, I pointed out something in Alberta's legislation that people seem to be ignoring, but I think you've heard from Dr. Geist about problems at the provincial level. We're simply not hearing about it because there's no transparency.

Industry committee  Chair, thank you very much. I guess it's just a minor point, because I think I didn't make it in my submission. I agree entirely with the comments of my colleagues about the need for a dual standard for breach notification, with more breach notification to the Privacy Commission

Industry committee  Well, it decides to treat breach.... Yes. I mean, effectively yes; it treats breach notification in the same category as everything else.

Industry committee  Yes.

Industry committee  That's right. In the present writing, the subsection overrides the confidentiality.

Industry committee  I agree, and I like the section for that reason. It provides the clarification that the industry needs. However, the point I'm making is that those additional words that are not in the formulation from Bill C-12 actually restrict the application of this. They do not expand it; th

Industry committee  If you're looking at the protection of children, in the United States there's specific legislation called the Children's Online Privacy Protection Act. It may be a good place to start if what you want to achieve is the protection of children. I don't think that proposed section

Industry committee  It does help clarify generally what you need for consent.

Industry committee  If I could just quickly jump in, if there's no requirement to report a certain class of security breaches, there's no incentive for the company to avoid them.

Industry committee  Yes.

Industry committee  Do you mean proposed subsection 20(1.1)?

Industry committee  It reads: Subject to subsections (2) to (6), 12(3), 12.2(3), 13(3), 19(1), 23(3) and 23.1(1) and section 25, the Commissioner or any person acting on behalf or under the direction of the Commissioner shall not disclose any information contained in a report made under subsection

Industry committee  I'm sorry...?

Industry committee  The only difference is that proposed subsection 20(1.1) just adds the breach notification.