Decisions/Federal (Canada)/Personal Information Protection and Electronic Documents Act/Executive Summary: Privacy Commissioner of Canada v. SWIFT

Federal (Canada)Office of the Privacy Commissioner of CanadaPersonal Information Protection and Electronic Documents ActExecutive SummaryNot well-founded

Executive Summary: Privacy Commissioner of Canada v. SWIFT

Organization: SWIFT SCRL (Society for Worldwide Interbank Financial Telecommunication)

Decision: Apr 2, 2007Published: Apr 2, 2007

Official Decision ↗Bookmark View Governing Law

Plain-Language Summary

This investigation concerned allegations that SWIFT inappropriately disclosed personal information from Canadian financial institutions to the US Department of the Treasury (UST) via administrative subpoenas. The Privacy Commissioner of Canada determined that SWIFT was subject to PIPEDA due to its operations in Canada and its commercial activities involving Canadian banks. While SWIFT disclosed data held in the US to the UST in response to a subpoena, the Commissioner found this disclosure was permissible under the Act's exceptions to consent.

Key Issues

Whether SWIFT is subject to PIPEDA
Whether SWIFT inappropriately disclosed personal information to the UST
Applicability of PIPEDA exceptions to disclosure in response to a subpoena

Outcome

Complaint not well-founded

Reasoning

The Commissioner found that SWIFT was subject to PIPEDA and that the disclosure of personal information to the UST in response to a subpoena was permissible under exceptions to consent, as SWIFT ensured the UST abided by privacy protections for the data.

AI-generated summary for reference only. Always verify against the official decision ↗