Information & Ethics committee  I would refer back to my depository insurance comment to say that, if we're actually going to roll out biometric authentication for government services, there has to be that buffer zone where citizens believe that if there were some compromise, there's a way to fix it. How do yo

Information & Ethics committee  Yet maybe you can if we're trying to learn from the private sector and look at one of the more elegant authentication methods that exist today. On a smartphone, it's made biometrics and now face ID just ubiquitous. It is heavy-handed to do a scan of your face every time you want

Information & Ethics committee  I think if you flip that around and say that you can have security with varying levels of privacy, it's more aligned to what we're talking about here. The reason that companies driven by advertising revenue are so popular is that it allows them to be better at the provision of

Information & Ethics committee  When I say “pilot”, I mean more that the capability should be piloted, but it should be available to all Canadians. I don't think it should be necessarily a pilot group, or one province or group. The capability should be piloted to a specific-use case. With the CRA example, you c

Information & Ethics committee  But if the information is anonymized, where is that consent? If we had said we're embracing open data and we want certain aggregated, anonymized information to make the provision of services cheaper, better and more focused, a lot of people would have been really excited about i

Information & Ethics committee  That's a big question. I think Canadian privacy legislation is not something we should just say is insufficient. There are some good privacy frameworks here. It's a question of what are those definitions? What is “real risk of significant harm”? What does that mean to a company

Information & Ethics committee  —consultants making a lot of money on it, and all of that. We shouldn't go all the way in that direction, but we need to make it easier for Canadian business to consume that type of regulation in Canada. We need to keep that strong privacy framework, but make it easier for busi

Information & Ethics committee  I think we should look at the services that are already online and the capability that's already in the federal government. The Canadian Centre for Cyber Security was a huge step forward in bringing that capability together. There is immense capability there, even if Canadians ar

Information & Ethics committee  Good afternoon. My thanks to the chair and vice-chairs and the members of the committee for the opportunity to speak today. My name is Ira Goldstein. I'm the senior vice-president of corporate development at the Herjavec Group. I've spent the last decade working in information s