News

The CIPPIC Summer Internship Program offers outstanding law students an unequaled opportunity to work on cutting edge research and advocacy issues related to law and technology. CIPPIC advocacy typically involves submission of briefs to government and other policy-makers, intervention in precedent-setting cases before judicial and quasi-judicial tribunals, provision of public legal education resources, publication of reports, participation in multi-stakeholder policy-making forums, provision of expert testimony before parliamentary committees, and advising under-represented organizations and individuals on relevant public interest issues.

Working closely with CIPPIC lawyers, interns learn how to be effective researchers, policy analysts, and advocates while contributing to public interest policy and law reform in such areas as copyright law, privacy, online consumer protection, telecommunications regulation, net neutrality, free speech and civil liberties on the Internet.Interns may additionally have opportunities to attend conferences and workshops such as the CIPPIC summer speaker series and to participate in other aspects of the Centre for Law, Society, & Technology.

Data Privacy Day (a.k.a. Data Protection Day) 2015 marked a range of developments - some good, some bad, all significant. Data Privacy Day is celebrated annually to commemorate the world's first data protection treaty: the Council of Europe's Convention 108. This year, the day began with a series of startling revelations from CBC, which released documents acquired through former NSA Analyst Edward Snowden detailing a comprehensive electronic surveillance program that monitored various file upload sites around the world. The program, implemented by Canada's foreign intelligence agency, CSEC, involved combing through its comprehensive meta-data-bases in order to identify individuals uploading or accessing 'questionable' documents on sites such as MegaUpload and Rapidshare. Visitors to such documents are then subjected to intense meta-data-scrutiny in order to find their identity through such things as Facebook and email login cookies. Aside from the millions of documents tracked by the program daily, the program demonstrates an immensely invasive capacity that can emerge from mere analysis of the metadata held by CSEC and its Five EYEs partners. Far from acknowledging these concerns, we expect more of the same, with State promises to introduce expanded lone wolf surveillance powers this Friday.

Some tentatively promising developments from APEC also came this week. CIPPIC had endorsed a letter sent by a number of privacy groups in late December pointing to several issues with APEC's certification of TRUSTe as an accountability agent capable of overseeing compliance with APEC obligations for the purpose of receiving personal data transfers from other APEC member states such as Canada. This week, APEC and TRUSTe addressed a number of the concerns, but left a few (particularly those relating to conflicts of interest between TRUSTe board members and some of the commercial organizations it is tasked with overseeing) outstanding. In brighter news, the Mexican data protection authority announced it would be officially signing the International Principles on the Application of Human Rights to Communications Surveillance (IPAHRCS-es for short!), designed to provide comprehensive suggestions on how to conduct electronic surveillance in a targeted and privacy respective manner. The IPAHRCS have now been endorsed by over 480 international organizations, experts and government officials. An eventful data privacy day, for better or worse!

• Vol. 1 
• Vol.

CIPPIC attempted to intervene in Equustek Solutions Inc. v. Google Inc., an appeal from an order of the British Columbia Supreme Court that addressed the use of innocent third party intermediaries (in this instance Google) as rights enforcement tools. The decision set a new standard for when such intermediaries can be used as enforcement tools, as well as with respect to the global reach of resulting enforcement remedies. It involved an order mandating Google to remove access to content not just from its Canadian sites, but globally, in effect imposing Canadian law onto the world. The impact of this ruling, if upheld, is far-reaching. In its application to innocent third parties who have done no wrong, it places Internet intermediaries (entities such as ISPs, search engines, websites hosts, social networking sites, domain name registrars - the infrastructure of the Internet) at the disposal of any party looking for a shortcut to enforcing its rights. This case involved a trade secrets dispute, but it is clear this new takedown/censorship power is intended to be of general application and will be available in copyright disputes, defamation disputes, or any other lawsuits.

Second, the global reach of the order is similarly problematic. The actions in question may well have contravened Canadian trade secret laws, but this cannot be presumed to be the case for all jurisdictions around the world. More importantly, the court held that jurisdiction over Google is equivalent to jurisdiction over the intermediary's global activities in spite of the fact that 95% of its Canadian search traffic occurs through the google.ca portal. As a matter of comity, issuing such an order implies that a Canadian court must respect a similarly constituted foreign order (and, by extension, that foreign courts are encouraged to issue similarly constituted orders). This will mean, in effect, that Canadians could well be deprived of access to content that is legal under Canadian law, but not under foreign law. It will be left to Canadians to then go to foreign courts and attempt to seek an exemption for Canada - a costly process that is unlikely to be undertaken with any degree of regularity. CIPPIC was denied intervention status.