Privacy rights in the workplace

Privacy rights in the workplace

If you’re like me, you’ve read many e-mail and other records management policies stating that an employee should not expect any privacy when using a workplace computer (i.e. a computer owned by his/her employer).

Many organizations are likely revising their policies to prohibit the personal use of workplace computers as a result of a recent Supreme Court of Canada decision (R. v. Cole) stating the workplace environment diminishes – but does not completely remove – an employee’s reasonable expectation of privacy.

This criminal case involved a high school teacher (Richard Cole) who was provided with a school-issued laptop computer that he could also use for incidental personal purposes.  After a technician performing routine maintenance discovered nude photos of a female student on the computer, the school copied the images and turned them (and the computer) over to police who charged the teacher with possession of child pornography and unauthorized use of a computer.  The trial judge refused to admit the files into evidence on the basis that they were obtained without a search warrant in violation of the Canadian Charter of Rights and Freedoms which guards against unreasonable search and seizure.  However, the Ontario Court of Appeal partially overturned that decision.  For more information on these decisions (and the Supreme Court decision), click here.

The legal issue before the Supreme Court was whether the police conducted a warrantless search of the computer in violation of the Charter.  After assessing whether the employee had a reasonable expectation of privacy, the court ruled that employees have limited rights to privacy for personal information on workplace computers, as long as personal use is “permitted or reasonably expected.”  The court also ordered the teacher to face a new trial.

While the implementation of revised policies prohibiting the personal use of workplace computers will simplify things on a day-forward basis, organizations which previously allowed incidential personal use of workplace computers will have to grapple with a backlog of work and personal content on those devices for the foreseeable future.  And that backlog will pose a challenge in e-discovery, as stated in Zblog (the blog of the WortzmanNickle law firm): “This decision will impact on the collection practices of organizations engaged in the discovery phase for litigation, regulatory investigation or audit.  The right of an employer to simply collect all information on workplace digital devices, once believed to be unfettered, will have to be examined in light of this decision.”

Leave a Comment

Your email address will not be published.

Related Posts

collaboration

Internal Social Collaboration: More Records to Manage

I’ve been reading a lot recently about social media and collaboration tools and came across an interesting article in a Harvard Business Review blog (HBR Blog Network) about social collaboration within organizations. Brad Power, a consultant and

Read More »
  • About the Author

  • Sheila Portrait
    Sheila Taylor
  • Sheila Taylor is a well known consultant, educator, speaker and writer with more than 25 years of experience in the information management (IM) field.

  • Recent Tweets

  • Company News

  • Search Site

  • Archives By Date

  •  Telephone

     

    (905) 702-8756
    1-877-857-7111

     

    Email

     

    info@eimc.ca

    Request A Call

    Case in Point

    That's A Lot of Records!
    Often the requirement for a needs assessment is driven by a specific initiative being considered or an immediate problem to be solved, rather than a general desire to establish a corporate (or organization-wide) IM program. We had a client wanting to improve its management of a specific group of critical records – thousands of member files in paper, microform and digital formats containing hundreds of unique document types.
    Assess, Plan and Schedule
    Ergo reviewed the organization’s current practices for managing those records, compared those practices to best practices, and identified risks and areas for improvement. From there we developed a strategic plan with a focus on records storage and retention. The plan identified the operational, financial and technological requirements for implementing the recommended changes, improvements and enhancements in the lifecycle management of the member records. Activities in the plan were classified as short term (next 6-12 months), medium term (next 12-24 months) and longer term (next 25+ months).
    Step by Step Success
    Implementation of the strategic plan enabled this organization to ensure its member records are properly identified, organized, accessible, protected and retained as long as necessary to meet operational and other requirements.
    Previous
    Next