Case Report – NSCA says “Crown” must be implicated in search to be liable for costs

On January 18, the Nova Scotia Court of Appeal issued a significant judgement on Crown liability for costs on an application to quash a search warrant.

The Court held that the Crown in Right of Canada ought not to be liable for costs of on an application to quash an “ill-conceived and poorly executed” search warrant obtained and executed by the Canada Revenue Agency. It reached this conclusion because a Crown Attorney was not involved in the impugned investigation but, rather, had simply responded to the application to quash.

The Court also said that it did not matter the CRA is a deemed agent of the Crown under the Canada Revenue Agency Act because the basis for an award of costs is rooted in the special role of the Crown as prosecutor:

The basis of this general rule is not that the prosecutor might be an agent of the Crown and that an investigator might not be. The general rule is not based on the law of agency, but on strong reasons of public policy which I have already described, and which have been set out in the cases on many occasions: see, for example, Foster, supra at ¶ 62-65; and Ciarniello, supra, at ¶ 31-36. Whether by virtue of ss. 4(2) of the CRAA, the investigator here was or was not an agent of the Crown (a point I need not decide) does not change the general legal principle applicable to costs against the Crown in criminal matters.

The underlying facts involved a search based on a flawed Information and in which the CRA had seized records subject to solicitor-client privilege contained on computer and electronic storage devices.

R. v. Taylor, 2008 NSCA 5.

Case Report – BCCA says confidentiality agreement strict

Yesterday, the British Columbia Court of Appeal held that it ought not relieve B.C. Ferries from a confidentiality agreement it had entered into with the Canadian Transportation Investigation and Safety Board as a condition of receiving data from its own hard drive that had been recovered from its sunken vessel and seized by the Board. So it could respond to the Board’s draft investigation report on the sinking, B.C. Ferries agreed to the following confidentiality covenant:

The [data] will be kept in confidence by BC Ferries and is to be used only for the purposes of responding to the draft report subject to the parties’ agreement to permitted uses prior to the release of [the Board’s] final report or order of the court.

B.C. Ferries argued that the Board did not exercise its discretion to grant relief from the confidentiality covenant in good faith. The majority, in a fact-specific judgement written by Mr. Justice Lowry, held that the clause did not grant a discretion subject to an implicit good faith requirement, but rather, was simply an agreement “subject to further agreement.” Mr. Justice Hall adopted the majority’s reasons and added that the public interest in the safety of the traveling public might have otherwise justified an order of relief, but that there was insufficient evidence of such an interest on the record.

British Columbia Ferry Services Inc. v. Canadian Transportation Accident Investigation and Safety Board, 2008 BCCA 40.

Information Roundup – January 27, 2008

Not bad for a dead of winter weekend. A monochrome out and back paddle from the famous R.C. Harris Water Filtration Plant to the not-so-famous Ashbridges Bay Water Filtration Plant on Saturday. On Sunday, a nice brunch with Seanna and Hugo and then another paddle with just me and the long-tail ducks that winter on the lake.

Here are my good reads of the week.

Ronald K. Perkowski, Coping With the EDD Drumbeat. There are lots of articles on controlling the cost of electronic discovery, but I’d call this one “contrarian” and even “radical” in that it shoots hard at consultant, vendor and external counsel practices. By in-house counsel at Haliburton Company. (Law.com)
Stewart Weltman, Lean Litigation Practice. I like the ideas here: avoid the lawyer as firefighter syndrome; analyze the case in advance; develop your best case story; create a roadmap and a budget; and litigate with the goal of winning, not settling. (ABA Section of Litigation)
Jennifer Stoddart, Response to Industry Canada’s PIPEDA Consultation. A letter from the Privacy Commissioner of Canada. Includes an interesting request for a new discretion to decline to hear complaints that are frivolous or (confining her mandate even further) not in the public interest. (Privacy Commissioner of Canada)
David Fraser, US Department of Commerce privacy incident response plan. David links to the Department’s risk assessment matrix for breach notificaiton. I like the concept of having a tool for rapid risk assessment for supporting breach response. You’re sometimes forced to make big dollar decisions on gut without one, and finding an expert to put him or herself on the hook is hard. This is about the most practical model I’ve seen, but I wonder how valid it is. If anyone knows of any other risk assessment models please let me know. (Privacylawyer.ca)

I’ve been listening to the Great Lake Swimmers all weekend too. Just a great indie-folk band from Toronto. You can listen here. See ya!

British Columbia MOE agrees to reform its FOI practices

On January 22, the British Columbia OIPC released an investigation report dealing with a complaint brought by eight environmental organizations which alleged three ministries were suffering from systemic flaws in their processing of FOI requests. Commissioner Loukidelis held that further analysis would be required to make a firm finding, but that there was some basis for an allegation of a “systemic problem” at the MOE. This was enough to make the MOE agree to a remedial plan with six core tasks.

Investigation Report FO8-01, [2008] B.C.I.P.D. No. 5 (QL).

Paper on RFID in Health Care Released

The Ontario IPC and Hewlett-Packard have released a joint-paper entitled, “RFID and Privacy – Guidance for Health-Care Providers.” The report discusses the privacy issues associated with RFID health care applications as grouped into three types:

those involving tagging things
those involving tagging things linked to people and
those involving tagging people.

It identifies the latter two types as being privacy sensitive, with tagging “things linked to people” being more sensitive if the the link is strong, as is the case with tags affixed to individually-prescribed vials of medicine. As with most IPC reports of this type, the authors have generally guarded against making potentially binding statements on specific issues. While the authors note many new applications and comment generally on their potential benefit, the report neither endorses nor denounces any specific application. The most strong statement in the report was made about an application totally unrelated to health care. On the use of contactless identification cards for employee identification purposes, the authors said:

RFID-embedded (“contactless”) Identification cards are a special category of health care RFID use. Here we must distinguish between employee identification (and access) cards (whether “smart” or not), and patient identification cards. Employee Identification cards are increasingly being equipped with RFID technologies in order to identify and authenticate the bearer and facilitate access to physical spaces and other (e.g. computer) resources, as well as for process control and audit purposes. Dual or multi-purpose employee identity cards can serve differing functions at different times, according to context. Such a multi-purpose card and the data it contains, if not properly controlled, invites over-identification for some functions, function creep, and unwanted employee profiling.

While making this strong statement on employee identification, the report said that an RFID patient identification program may be acceptable where it…

…responds to a defined problem or issue in a limited, proportional and effective manner, and is deployed in a way that minimizes privacy and security risks, at least as effectively as any alternative solution.

I sense the two pull quotes above were the subject of considerable discussion. And while employers in Ontario should take heed of the report’s warning, the IPC has a very limited jurisdiction to enforce employee privacy rights in Ontario, even on behalf of employees who work at hospitals.

Sedona Canada Principles launched

The Sedona Canada Principles were launched yesterday and are available on LexUM’s E-Discovery Canada portal (now RSS enabled!). The Principles should play an important role in advancing e-discovery practice in Canada.

Case Report – Ireland Supreme Court on creating records and proportionality

On December 5th, a 2-1 majority of the Supreme Court of Ireland held that it was not improper to order a defendant to create and produce a special report from a database. However, a separately constituted majority held that, in the circumstances, the costs of such an order would be disproportionate to its benefit until and unless the plaintiff proved the defendant was liable.

The impugned order was made in the context of a competition law dispute. The plaintiff was a domestic seller of calling cards who claimed that the defendant network owner engaged in a discriminatory pricing practice that favoured foreign providers. It requested production of records of specific calls from one or more archived database files in order to prove liability and damages.

The parties argued the merits of the production request in light of another set of records that was also ordered to be produced. When it became apparent that the disclosure of the other set of records would not provide evidence the plaintiff felt it needed to meet its burden of proof, it pressed for production of the call records. The defendant only then strongly raised its proportionality concerns and made a factual admission which it claimed would render production unnecessary. It also claimed that the impugned order would require it to compile, analyze and present information in a form in which it never existed.

The defendant ultimately prevailed at the Supreme Court based on its proportionality argument. Fennelly J. and Kearns J.’s reasoning arguably turned on the plaintiff’s factual admission, which they held made production unnecessary to proof of liability and disproportionate in light of the cost of production (claimed to require the purchase of hardware costing approximately of €150,000 and significant other cost outlays to be made over a six month period). Both recognized the potential necessity of production to proof of damages, and held that the plaintiff may file a fresh application for discovery should it first prove liability. In reaching his finding Fennelly J. said:

I have come to the conclusion that the very unusual burden and heavy cost of the discovery in this case requires the Court to have a clear view of the litigious benefit to the plaintiff from obtaining the extremely detailed breakdown of information which is the only remaining issue.

Geoghegan J., dissenting on the proportionality issue, took the opposite view on the burden of proof, making comments that favoured a strict burden of proving disproportionate costs once evidence is shown to be relevant and necessary. He noted that the defendant had raised cost as a barrier to production well into the dispute and then had argued cost in its submissions without adducing supportive evidence. He said:

My overall impression is that essentially, the appellant was trying unsuccessfully to frighten the court by the mention of what superficially at least would be large figures but figures unsupported by solid evidence.

While the bifurcation of production in response to cost is novel and the dispute on burden of proof significant, the Court’s treatment of the “creating records” issue was dealt with on a more broadly-reasoned basis. Fennelly J. endorsed Geoghegan J.’s reasoning, and Kearns J. did not make comment. Geoghegan J. reasoned that the form in which data is stored is not relevant to the form in which its produced. He said:

It is common knowledge that a vast amount of stored information in the business world which formerly would have been in a documentary form in the traditional sense is now computerised. As a matter of fairness and common sense the courts must adapt themselves to this situation and fashion appropriate analogous orders of discovery. In order to achieve a reasonable parity with traditional documentary discovery it may well be necessary to direct a party “to create documents” within the meaning of the notice of appeal. It may indeed also be necessary to direct a party “to create documents” within the meaning of the notice of appeal even if such “documents” “do not exist at the time the order is made”. I am deliberately using quotation marks because I do not intend to adjudicate on the quasi-metaphysical argument of Mr. Paul Anthony McDermott, counsel for the respondent, that the “documents” do in fact “exist”. At any rate that matter can probably be argued both ways but I would be firmly of opinion that an order of discovery can be made which involves the creation of documents which do not exist, made in the kind of context in which it is sought in this case. Otherwise, potential litigants could operate their business computers in such a way that they would be able to evade any worthwhile discovery. In expressing the above views, I accept that superficially I am perhaps going a step further than the English authorities have done in so far as their rule of court can apparently be interpreted to cover computer discovery. I have no hesitation, however, in making that extension.

Dome Telecom v. Eircom, [2007] IESC 59.

Information Roundup – January 20, 2008

No paddling this weekend. You’d be surprised how warm today’s wetsuits are. They can take you to minus ten centigrade comfortably, but in fresh water you get a lot of ice-up below minus five and if its windy getting in and out of the water can be pretty unpleasant. To rub my landlocked status in, I got surf reports (with pictures) from my friends Alex in Nova Scotia, Jean-Luc in Santa Barbara and Jan in Raglan, New Zealand. Can you tell that I get cranky when I don’t get in the water?!

Anyway, I came back to the law on the basis that pursuits of the legal kind can be as good a means of finding enlightenment as the aquatic. On that note, here’s what I read of interest this week.

Randy Cohen (The Ethicist), Anonymity Breach. An ethical (and legal dilemma) on investigating the identity of a student who writes discriminatory teaching evaluation under a promise of confidentiality. (New York Times)
Ellen Nakashima, In Child Porn Case, A Digital Dilemma. Covers an appeal that addresses whether a decryption order in furtherance of a child pornography investigation would violate the right against self-incrimination. (Washington Post)
Pete Yost, White House Missing CIA, Iraq E-Mails. The Washington Post has had the leading coverage on the allegations that the White House has failed to comply with the Presidential Records Act, now scheduled for a February 15th hearing by the Committee on Government Oversight and Reform. (Washington Post)
Ellen Perlman, Delete at Your Own Risk. Food for thought for freedom of information coordinators and government records managers. I agree with the basic premise, but disagree to the extent the article suggests that retention beyond statutorily-mandated retention periods is necessarily a good risk-management practice. (Governing.com)

Enjoy!

Case Report – Alberta reference checker benefits all by taking notes

On January 2nd, the Alberta OIPC dismissed a complaint alleging that an employment reference had been given in violation of the Alberta PIPA.

The complaint was against both the prospective and former employer. It alleged that both breached the Act by communicating a negative reference that included irrelevant and inaccurate personal information – namely, that the complainant had been married three times and that she was a liar and a thief. To simplify, the Act authorizes the non-consentual collection, use and disclosure of personal information in the reference checking process, but the personal information given and received must be relevant to the hiring decision. The Act also imposes a requirement to “make a reasonable effort” to ensure that any information given or received is accurate and complete.

In this case, the complainant said she had a telephone conversation with the reference giver in which he admitted conveying the irrelevant information. The reference giver disputed this allegation, and the Commissioner held that his version of events was more likely to be true because it was corroborated by notes taken and produced by the the reference giver. The Commissioner also held that the employer giving the reference had conveyed an accurate assessment of the complainant’s performance.

There is also a point of some technical significance in the decision. The Commissioner held that “personal employee information” includes the employment information of former employees, thereby departing slightly from his analysis in earlier decisions.

Thank you to David Fraser for bringing this to my attention through his Canadian Privacy Law Blog.

George Byma Real Estate Team (Re), [2008] A.I.P.C. No. 2 (QL) (Alta. OIPC).

Case Report – Ontario court says spoliation inference doesn’t hinge on bad faith

In this product liability case, the Ontario Superior Court of Justice dismissed a defendant’s motion for a spoliation inference brought because the plaintiff destroyed a ventilation fan that it later argued had caused the damaging fire.

The plaintiff ultimately failed in making its claim that the defendant breached a duty to warn them of the inherent dangers in using the fan and the need to address these dangers through regular maintenance. The plaintiff did, however, meet its first evidentiary hurdle – proof that the fan actually caused the fire, a point disputed by the defendant partly based on the plaintiff’s destruction of the fan.

The fire occurred in mid-September. The fire inspector from the local fire department concluded the fan had caused the fire, and in early October the plaintiff’s insurer retained an expert who reached the same conclusion. In February of the following year the expert disposed of the fan after receiving an instruction from the plaintiff’s insurance adjuster. The plaintiff filed its claim over three and a half years later. Given the missing evidence, the defendant produced an expert report that was based on a review of photographs and other documentary production rather than the fan itself.

The Court made a number of broad statements in disposing of the spoliation motion. Most significantly, it held that in Ontario (as opposed to the approach seemingly favoured British Columbia) proof of bad faith is not required to support an inference that the evidence destroyed would have been favourable to the party who destroyed it. There are other elements of the spoliation decision that are more difficult to decipher but, in the end, the Court decided for the defendant on other grounds.

Dickson v. Broan-NuTone Canada Inc., [2007] O.J. No. 5114 (Q.L.) (S.C.J.).