Media CentrePIPEDA in relation to retail loss prevention techniquesRetail Loss Prevent ConferenceSeptember 19, 2006 Address by Kris Klein IntroductionThank you for the opportunity to be here today. This is a good opportunity for the Office of the Privacy Commissioner to reach out to an industry that can obviously advance privacy interests in Canada. While the immediate gut reaction to the topic of privacy law and the need to prevent retail loss might conjure images of competing interests, I am going to argue that the two can actually work hand in hand, and actually, each interest can help the other out to positively affect your organization’s bottom line. I’m going to do this by explaining where the privacy law comes from – by understanding where it comes from, you can better understand how it fits into what it is you want to do. I’ll also take three broad areas that I identified as being relevant to your conference today. That is, I am going to try and address two issues that I’m sure you have thought of when it comes to trying to prevent retail loss: the first issue I’ll tackle is the use of the “new” technology referred to as RFIDs. The second issue I will look at is the use of video surveillance to prevent loss. History of legislation, why it’s here.The enactment of PIPEDA is part of a broader international movement to give individuals better control over their personal information in the hands of business. Since the 1970s, several countries of the European Union have passed legislation regulating the collection, use and disclosure of their personal information. International bodies such as the United Nations, the Organisation for Economic Cooperation and Development and the Council of Europe have also produced international agreements on the protection of personal information in the hands of the private sector. In Europe, the European Union Data Protection Directive requires countries that are members of the European Union to limit the sharing of information about citizens of EU countries with businesses in other countries. In general, the Directive requires EU countries to refuse to allow transfers personal information to countries outside the EU unless those countries adequately protect the information. That, in part, is why PIPEDA was enacted – to assure the European Union that Canada was serious about protecting personal information from Europe that comes into the hands of Canadian businesses. Unless Canada was able to give this assurance, businesses in the European Union would have great difficulty sharing personal information with Canadian organizations. This could have seriously hurt these Canadian organizations, including organizations in the retail sector. Fortunately, the European Commission decided in 2001 that PIPEDA provided an adequate level of protection to personal information. As a result, EU countries and businesses are free to transfer personal information to organizations in Canada that are subject to PIPEDA, various public sector laws provincially, and some provincial private sector laws. PIPEDA helps both organizations and consumers in another way. Clear rules to protect the handling of personal information will build consumer trust and confidence in participating with traditional and on-line retail stores in Canada. For example, retail customers want to know that their privacy is protected when they're shopping on-line – not to mention when they pop into their favourite electronic store to pick-up those double AA batteries required for their child’s latest “must-have” gizmo. PIPEDA will help the marketplace – both the old bricks and mortar one as well as the new, virtual, on-line one – by increasing the confidence of consumers that their privacy is being protected. The privacy protections in PIPEDA are largely based on a code for the protection of personal information that was developed by Canadian businesses, academics, consumers and government through the Canadian Standards Association. That code was called the Model Code for the Protection of Personal Information. We call this the CSA Model Code for short. PIPEDA therefore reflects the consensus of several business groups within Canadian society. In fact, the CSA Model Code forms the most critical part of PIPEDA and is found in the Schedule to the Act. Loss prevention techniques:Before moving on to the two techniques I want to talk about I want to emphasize the following:
RFIDThe idea of "smart chips" or radio frequency identification (RFID) isn't new. More than three years ago, the microscopic electronic tags – that emit signals and can be embedded into everything from clothes to cereal boxes – were being touted as an innovative way to keep track of inventory, make sure shelves are stocked with popular items and even prevent shoplifting. At that time, we raised concerns about RFIDs as a form of technology that could be open to potential abuse. We argued that the chips would have the potential to be easily linked to credit card numbers or other personal ID. That could lead to the creation of consumer profiles that would tell stores what you buy and where you shop. RFIDs could also be used to track your whereabouts. Today, some have advocated for the use of the chip to track their individual products. In response the Commissioner has publicly stated: "One of the primary concerns of this office is the deployment of RFID technology in Canada because it has such an implication to be integrated into daily life, in clothes, in objects, in food and things we take from the supermarket to our home." In some ways, RFIDs are an extension of the bar codes that are now commonplace on nearly everything we buy, but the ability of smart chips to monitor an individual's movements and buying habits is more akin to something out of Big Brother. RFIDs, of course, can do this because they supply information back whenever they’re read and because they can be used to get information about individual products – not just pallets of inventory. In fact, they could also be embedded surreptitiously into not only a product, but an animal or even a person. Specifically, Privacy Commissioner Stoddart is concerned that since consumers may not even be aware the chips are embedded in products, it may allow individuals to be monitored without their knowledge. As well, items purchased in a store could be linked to your credit card number or loyalty card and, from there, a profile could be created about your buying habits. And information compiled through RFIDs about your preferences and even details about your personal health could be passed along to a third party. What it boils down to is this: RFIDs have the ability to reveal personal information about an individual. Once this is admitted and recognized, then a responsible organization will be able to tailor its use of RFIDs to make sure the technology does not end up being used in a way that violates privacy. Video CamerasVideo surveillance of public places subjects everyone to scrutiny, regardless of whether they have done anything to arouse suspicion. At the very least it circumscribes, if it does not eradicate outright, the expectation of privacy and anonymity that we have as we go about our daily lives. The medium’s very nature allows retailers to observe and monitor the movements of a large number of persons, the vast number of whom are law-abiding citizens, where there aren’t necessarily any reasonable grounds to be capturing a record of their activities. When video surveillance was done live, or even when the system used tapes, an operator had to watch each event to make a judgement about an individual. The result was that the volume of work kept misuse down to a minimum. Now we have digital systems. These systems have facial recognition ability and pattern recognition software that can massage the vast stream of images, so the actual use of the data increases, even if it is not by human operators. The likelihood of images being retained for further data mining increases simply because the workload is now potentially manageable. The risk of systematized observations of groups or persons now exists, simply because it is technically feasible. On top of all this, fear of terrorism and street crime has driven the numbers of cameras up, as public officials seek to assuage the fears of citizens and gain control of the uncontrollable. Proliferation of video-surveillance raises a concern that inferences will be drawn about people, that the data will be used for trivial or discriminatory purposes. People are well aware of the presence of cameras, in fact there is a brisk trade in fake cameras because they are promoted as being as effective as real ones in deterring bad behaviour. For these reasons, there is good reason to believe that video surveillance of public places by the police, other law enforcement authorities and now even retailers has a chilling effect on behaviour – and by extension on rights and freedoms. All that to say, does PIPEDA prevent the use of video cameras outright? No. Instead, the law provides guidance on when it is appropriate to use this type of loss prevention technique. Our office has developed guidelines on the issue of the use of video cameras to monitor people in public places. While they were originally designed as a tool for law enforcement, I suggest that they are mostly applicable to any organization that is contemplating using video cameras. 1. Video surveillance should only be deployed to address a real, pressing and substantial problem. 2. Video surveillance should be viewed as an exceptional step, only to be taken in the absence of a less privacy-invasive alternative. 3. The impact of the proposed video surveillance on privacy should be assessed before it is undertaken. 4. consultation with employees/unions and customers might be appropriate prior to any decision to introduce video surveillance. 5. The video surveillance must be consistent with applicable laws. 6. The video surveillance system should be tailored to minimize the impact on privacy. 7. The public (or whomever is being watched) should be advised that they will be under surveillance. 8. Fair information practices should be respected in collection, use, disclosure, retention and destruction of personal information. 9. Excessive or unnecessary intrusions on privacy should be discouraged. 10. System operators should be privacy-sensitive. 11. Security of the equipment and images should be assured. 12. The right of individuals to have access to their personal information should be respected. 13. The video surveillance system should be subject to independent audit and evaluation – particularly in cases where the implementation is on a large or systemic scale. 14. The use of video surveillance should be governed by an explicit policy.
The policy should identify a person accountable for privacy compliance and privacy rights associated with the system. The policy should require officers, employees and contractors to adhere to it, and provide sanctions if they do not. It should provide a process to be followed in the event of inadvertent privacy and security breaches. Finally, it should provide procedures for individuals to challenge compliance with the policy. 15. The public should have a right to know about the video surveillance system that has been adopted. Conclusion – the 4 most important things to remember:
|
Date published: 2006-11-28 |
Important Notices |