There’s an interesting post on IT.Can Blog / Blogue de IT.Can on the collection of information by law firms. In two cases, law firms collected credit information on people their clients were considering action against, and the people investigated complained to the Privacy Commissioner. According to PIPEDA Case Summary #340, the Assistant Commissioner decided that the complaints were well-founded and made the recommendations that “the firm[s] implement a policy that prohibits conducting credit checks without appropriate consent, unless for a permissible purpose. The firm[s] responded by refusing to accept the recommendation[s].” The report notes further that:
For both complaints the Assistant Commissioner also indicated that she would pursue the matter in accordance with the Act and referred the cases to her litigation counsel. Shortly after being contacted by the Commissioner’s counsel, both law firms agreed to implement the recommendations thus avoiding the need to follow through with an Application in the Federal Court.
No challenge to the jurisdiction of the Commissioner was successful at this level.
To a non-practising lawyer, this seems like a considerable hindrance.