The Canadian Privacy Law Blog: Developments in privacy law and writings of a Canadian privacy lawyer, containing information related to the Personal Information Protection and Electronic Documents Act (aka PIPEDA) and other Canadian and international laws.
The author of this blog, David T.S. Fraser, is a Canadian privacy lawyer who practices with the firm of McInnes Cooper. He is the author of the Physicians' Privacy Manual. He has a national and international practice advising corporations and individuals on matters related to Canadian privacy laws.
For full contact information and a brief bio, please see David's profile.
Please note that I am only able to provide legal advice to clients. I am not able to provide free legal advice. Any unsolicited information sent to David Fraser cannot be considered to be solicitor-client privileged.
The views expressed herein are solely the author's and should not be attributed to his employer or clients. Any postings on legal issues are provided as a public service, and do not constitute solicitation or provision of legal advice. The author makes no claims, promises or guarantees about the accuracy, completeness, or adequacy of the information contained herein or linked to. Nothing herein should be used as a substitute for the advice of competent counsel.
This web site is presented for informational purposes only. These materials do not constitute legal advice and do not create a solicitor-client relationship between you and David T.S. Fraser. If you are seeking specific advice related to Canadian privacy law or PIPEDA, contact the author, David T.S. Fraser.
Sunday, August 22, 2004
It is not only in British Columbia where unions are using privacy legislation to prevent offshoring of data processing jobs:
Lloyds TSB in data protection battle over offshore outsourcing
18 August 2004 - UK bank Lloyds TSB has been threatened with legal action by its staff union over the transfer of call centre jobs to outsourced processing centres in India on grounds that the move breaches the Data Protection Act.
An unnamed customer is mounting the legal challenge, backed by The Lloyds TSB Union (LTU).
The union claims the bank is breaching the Data Protection Act by transferring customer financial data to overseas centres without their consent. LTU says according to European law, personal data can only be transferred outside the European Economic Area with the written consent of customers.
The government-appointed Information Commissioner is expected to decide on the union's case in the next few weeks.
Lloyds TSB announced in October last year that it was closing its customer contact centre in Newcastle, leading to the loss of 986 UK jobs, and would transfer the work to its operations in India. Additionally, in April this year, the bank's Scottish Widows division opened a new office in Bangalore India to pilot the offshoring of back office functions.
The union has been actively campaigning against the offshoring of jobs and says if the challenge is successful, it would have wider implications for the whole of the financial services industry.
Earlier this year British members of the European Parliament called for new data protection laws to prevent unauthorised access to customer data by offshore workers. The MEPs, backed by British trade union Amicus tabled plans for European regulations to prevent unauthorised access of personal details being processed abroad.
See also this article from Personneltoday.com:
Customer's data protection fears hinder Lloyds TSB's offshoring plans
Lloyds TSB's plans to transfer work to India are being challenged by one of the bank's customers on the grounds that they infringe legal requirements concerning data protection.
The case against Lloyds TSB is that India does not have the same stringent standards of data protection that are legally required by the Data Protection Act 1998.
European legislation requires that sensitive personal data can only be transferred outside of the European Economic Area with the express consent of customers.
India is not included on the European Union's list of countries that offer adequate levels of protection for personal data.
The government-appointed Information Commissioner is being asked to rule on whether Lloyds TSB is acting legally when transferring sensitive personal data abroad.
Steve Tatlow, assistant general secretary at Lloyds TSB Group Union, said: "This is an important case. If successful, it could force Lloyds TSB to drop its offshoring policy for fear of losing many customers.
"Concerns over data protection are yet another reason why Lloyds TSB should now listen to its customers and commit itself to the UK."
Labels: bc, information breaches
The Canadian Privacy Law Blog is licensed under a
Creative Commons Attribution-Noncommercial-No Derivative Works 2.5 Canada License.