OIPC's IT Security and Employee Privacy: Tips and Guidelines

The Office of the Information and Privacy Commissioner for BC (“OIPC”) released a guidance document outlining issues employers should consider before implementing IT security tools that collect employee personal information. To ensure an employer’s IT security system is not running afoul of the Freedom of Information and Protection of Privacy Act ("FIPPA") through the unauthorized collection of personal information of employees, the OIPC offered some tips in its guidance document:

It is important for local governments to be proactive and review their IT security system and policies rather than fixing the issues when they become the subject of a complaint or investigation by the OIPC. Our offices can assist in identifying compliance challenges, completing privacy impact assessments, and ensuring workplace computer and network technologies and policies are in compliance with FIPPA.