Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Nora Young
Host & Creator, Spark
CBC
Nora Young is the host and the creator of Spark, CBC’s national radio show and podcast about
technology and culture. She was the founding host of the CBC Radio show, Definitely not the
Opera, where she often focused on new media and technology.
As a journalist, author, and speaker, Nora explores how new technology shapes the way we
understand ourselves and the world around us. Her book, The Virtual Self, on the explosion of
data about our behaviours, opinions and actions, is published by McClelland and Stewart. She is
an occasional blogger, and has been an avid hobby podcaster since 2005. Her favorite technology
is her bicycle.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Derrick Westhaver
Business Development Manager
GoSecure Inc.
Mr. Westhaver has over 30 years of experience in the Information Technology sector. He first
launched his career as a consultant, servicing clients in Canada and the US. He delivered
complex IT projects to Nova Scotia Provincial Government, Irving Oil, LASMO UK, GE Aircraft
Engines, Tupperware, CIBC, and many others.
In 1997, he transitioned to vendor representation joining Compaq Computer Corporation. For the
next 20 years, he held several positions at Compaq, Dell, Bulletproof Solutions and Hitachi Data
Systems all the while focusing on the delivery of complex IT solutions in the Atlantic Canadian
Market.
In 2017, he joined GoSecure to head up the Sales and Marketing activities for Atlantic Canada
and Eastern US. Based in Dartmouth, NS where the GoSecure Managed Service: Advanced
Adversary Protection solution was founded, developed and is serviced from. He is responsible for
delivering a balance of partner products (Check Point, Symantec, CA, etc.), associated
professional services, and managed services for GoSecure’s client base.
Mr. Westhaver is a widely known and reputable figure in the Atlantic Canadian IT landscape. He
has successfully built a strong trust with his clients based on honesty, integrity and a collaborative
winning approach.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Travis Barlow, CISSP
Vice President, Advanced Security Services
GoSecure Inc.
Mr. Barlow has over 20 years of IT security experience developing technology security solutions for
a variety of clients, including government, military, education, and fortune 500 companies. Prior
to joining GoSecure, Mr. Barlow worked as the Director of Advanced Threat Response for an IT
security firm wherein he designed and established an incident response framework and was
responsible for all incident response actions for a global base of clients.
Mr. Barlow has become a leader in his industry, and has been influential in raising IT security
awareness and education through founding the annual Atlantic Security Conference (AtlSecCon),
Halifax Area Security Klatch (HASK) and participating in various conferences throughout North
America both as a speaker and keynote.
Mr. Barlow is very active within his community in creating opportunities for fellow IT professionals
to learn both from each other and leaders within the IT security industry. Always on the cusp of
advancements in IT security, Mr. Barlow has proven himself to be an innovative and forward-
thinking leader.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Donovan F. Molloy, Q.C.
Information and Privacy Commissioner
Office of the Information and Privacy Commissioner (OIPC)
Donovan F. Molloy, Q.C. was born and raised in Marystown. He received a Bachelor of Laws
degree with distinction from the University of New Brunswick in 1992 and a Bachelor of Science
degree from Memorial University in 1995.
His career has primarily focused on public service. He began work as a prosecutor in 1993 at the
then Marystown office of the Department of Justice’s Public Prosecution Division. Mr. Molloy
transferred to the St. John’s office in 2002. In 2004 he moved to Alberta, where he worked as a
prosecutor with Alberta Justice.
After returning to Department of Justice’s Public Prosecution Division in 2007, Mr. Molloy became
the Senior Crown Attorney (Eastern Region) in 2008. In 2010 he became the Assistant Director of
Public Prosecutions and in 2012 the Director of Public Prosecutions/Assistant Deputy Minister.
He held that position until July 22, 2016 when he was appointed as the Information and Privacy
Commissioner of Newfoundland and Labrador.
Mr. Molloy has served as a Bencher with the Law Society of Newfoundland and Labrador since
2010 and was appointed as Queen’s Counsel in 2014.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Susanna Duke
Director of Information Management
Service NL
Sue is Director of Information Management for Service NL. She has over thirty years’ experience
as an information professional in both libraries and information management.
She holds a B.A. from Memorial University and an M.L.S. from Dalhousie University.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Alison Randell
Director, Information Management & Protection
Memorial University of Newfoundland (MUN)
Alison Randell has 20 years’ experience in the private and public sectors in the areas of
information technology, information management and information protection. A graduate of
Memorial University, Alison holds a Bachelor of Commerce degree. Upon graduation, Alison
began working with xwave Solutions as a programmer and systems analyst for over seven years
then moved on to the Provincial Government where she assumed the role of Information
Management Consultant with the newly formed Office of the CIO. In 2008, she became Director,
Information Management and Protection with responsibility for the Information Management
Program for the Office of the CIO and for the creation and development of a Government-wide
Information Protection Program. In 2015, Alison moved into the position she holds today as
Memorial University’s first Director, Information Management and Protection with a university-
wide mandate.
Alison’s experience spans across many areas but specifically in developing information
management and protection programs, eBusiness, transforming from paper-based to digital
systems, developing IT asset /system management resources (CMDB), developing security
architectures, assessing cloud-based solutions, and implementing and optimizing electronic
content management solutions.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Gillian Sweeney
Vice-President, Clinical Information Programs & Quality
Newfoundland and Labrador Centre for Health Information (NLCHI)
Gillian Sweeney leads the team at NLCHI responsible for providing oversight, leadership and
governance of HEALTHe NL, the provincial electronic health record (EHR), eDOCSNL, the provincial
electronic medical record program, and the provincial Telehealth and Telepathology programs.
Ms. Sweeney has a clinician-based background with extensive management experience. She
holds a Bachelor of Nursing and Masters in Business Administration from Memorial University.
She is currently a Director on the Digital Health Canada Board of Directors.
With over 15 years’ experience in private industry and healthcare, she provides expertise and
leadership in the areas of electronic health record management, change management, and digital
health programs.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Mike Bannister
Director of Information Management
Department of Health and Community Services
Mike Bannister is the Director of Information Management for the Department of Health and
Community Services. His team is responsible for providing advice and direction on eHealth and
health innovation; offering leadership and direction for the PHIA; ensuring compliance with
ATIPPA; and delivering efficient IM services. Joining the Provincial Government in 2005, and Mike
has held a variety of senior positions with the OCIO and Child Youth and Family Services. Before
returning home in 2005, Mike worked in Ottawa as a consultant specializing in metadata and
system design with Bell Security Solutions Inc. and ONCE Corporation. This keen interest in
standards led him to pursue ventures at the international level. Recognized by the Standards
Council of Canada as a subject matter expert, Mike is currently a member of two national
committees that report to the International Organization for Standardization (ISO) on Data
Management and Information Management. As a Canadian delegate, Mike has served on several
ISO working groups including a recently published technical report on risk assessment for records
processes and systems along with offering Canada’s contribution to the newly published ISO
15489-1.
Mike holds a Bachelor of Arts Degree, Certificate of Public Administration and Library Studies
along with Professional Facilitation from Memorial University. He also has a Masters in Library and
Information Science from the University of Western Ontario. Mike is heavily involved with Hacking
Health, an international association dedicated to breaking down the barriers to innovation in
healthcare. In 2017, he led his MetaClinic team to be one of two teams that took first place in the
first Hacking Health Hackathon in NL. At this year’s hackathon, he volunteered as a mentor and
continues to support the broader health innovation community.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Sean Murray
Director of Research and Quality Assurance
Office of the Information and Privacy Commissioner (OIPC)
Sean Murray worked in education and the non-profit sector for several years prior to 1999 when
he joined the Provincial Public Service as an Investigator with the Human Rights Commission. He
moved to the Office of the Information and Privacy Commissioner shortly after it was established
in early 2005, where he has been involved in leading and carrying out all aspects of the Office’s
mandate. Over the past 10 years he has served as the Commissioner’s deputy, which he
continues to do in his present role of Director of Research and Quality Assurance.
Sean holds a BA (Honours) in English from Acadia University, a BEd from Memorial University, and
a Master of Philosophy in the Humanities from Memorial University.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Donna Roche, Ph.D.
Manager of Health Analytics
Newfoundland and Labrador Centre for Health Information (NLCHI)
Donna Roche, Ph.D. is the Manager of Health Analytics at the Newfoundland and Labrador Centre
for Health Information (NLCHI). Donna holds a Ph.D. from Memorial University. She has a strong
knowledge of research ethics, privacy legislation, and has subject area expertise on data access
and the secondary use of personal health information. She is the chair of NLCHI’s Secondary Uses
Committee which is an advisory committee that provides guidance and recommendations to
NLCHI’s Chief Information Officer on the access, use, and disclosure of personal health
information.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Sandra Veenstra, MBHL
Ethics Director
Health Research Ethics Authority of Newfoundland and Labrador
Sandra Veenstra, MBHL is the Ethics Director for the provincial Health Research Ethics Authority
(HREA) of Newfoundland and Labrador (NL). Sandra has held this position since the HREA’s
inception in 2011. In her role, Sandra provides policy advice to the Health Research Ethics
Boards (HREB) and provides guidance to researchers to understand the ethics review
process. Sandra holds a Master of Bioethics and Health Law (MBHL) degree with a specialization
in research ethics from the University of Otago in New Zealand. Prior to moving to NL, Sandra was
the Senior Ethics and Legal Advisor for the Health Research Council of New Zealand. Sandra is
also a professional associate to the Faculty of Medicine (FOM) to recognize her teaching in
research ethics for students, faculty and staff at Memorial University.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Ashley Dinn
Program Manager, Telehealth and the Registry Integrity Unit
Newfoundland and Labrador Centre for Health Information (NLCHI)
Ashley Dinn is the Program Manager of Telehealth and the Registry Integrity Unit with the
Newfoundland and Labrador Centre for Health Information (NLCHI). Ashley has a Bachelor of
Business Commerce Degree and a Bachelor of Nursing Degree. Prior to working in Telehealth, she
worked as a Registered Nurse in acute and long-term care.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Lori Collins
Instructor – Information Management
College of the North Atlantic (CNA)
Lori Collins has worked in the information management (IM) field for over 20 years in a variety of
roles including archivist, records manager, IM consultant, business analyst and project manager.
From 2008 onward, Lori led the development of the Government of Newfoundland and Labrador’s
IM Education and Awareness program. She currently teaches a post-graduate diploma in IM at the
College of the North Atlantic. She has extensive academic and professional training in IM including
a Master of Information Studies from the University of Toronto, a Masters Certificate in Project
Management, the GARP Essentials Certificate form ARMA and has been a certified Project
Management Professional since 2006.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Donna O’Toole
Information Management Consultant
Office of the Chief Information Officer (OCIO)
Donna O’Toole is the Information Management Consultant responsible for the Capacity
Development portfolio at the Office of the Chief Information Officer (OCIO), Government of
Newfoundland and Labrador. The Capacity Development portfolio along with Education and
Awareness, Government Records Lifecycle Management and IM Advisory Services supports
OCIO’s ability to administer the Management of Information Act (MOIA) and fulfill the roles and
responsibilities outlined within.
Donna began her career in 1999 as the IT support for Labatt Breweries Newfoundland adding
responsibilities of logistics and production planning to her skill set before moving on to achieve a
well-rounded private sector career through start-ups, consulting firms and marketing agencies. In
2011 Donna moved into the public sector as part of the implementation team for the previous
crown corporation, Research and Development Corporation, and was the prime IT and IM resource
for the organization. Donna continued to work with government as an external contractor for a
large-scale information asset move before joining the OCIO as an IM Consultant in 2012.
Donna’s most recent work with OCIO has included delivery of a number of programs and services
engineered to support the growth of IM capacity throughout government and its public bodies.
Information Management Capacity Assessment Tool (IMCAT)
Content and Collaboration Program (Intranets and Extranets)
Information Management Self-Assessment Tool (IMSAT)
IM Check-Up (soon to be released)
Business Analysis and Process Development
Asset Management
Donna holds a Bachelor of Arts Degree, a Criminology Certificate and Post Graduate Information
Technology Diploma from Memorial University of Newfoundland.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Dr. Gerard Farrell
Associate Professor / Director eHealth Research Unit
Memorial University of Newfoundland (MUN)
Gerard Farrell graduated Memorial University's Medical School in 1984. In 1986, he bought his
first computer and found something useful to do with it shortly thereafter. He has been trying to
replicate the experiment ever since, with mixed success. He was a founding member of the Board
of the Newfoundland and Labrador Centre for Health Information. He lectures on Medical
Informatics in the Faculty of Medicine and has co-supervised graduate students in Computer
Science, Psychology and Pharmacy. He was the Associate Dean for Undergraduate Studies with
the Faculty of Medicine at MUN, responsible for the four year MD Education Programme. He is the
Director of the eHealth Research Unit, Faculty of Medicine, investigating what works and what
doesn't when computers are used in health education and care delivery. He is also a General
Practitioner in Oncology, developing a cancer aftercare programme.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Stacey Pratt
Access and Privacy Analyst
Office of the Information and Privacy Commissioner (OIPC)
Stacey Pratt is an Access and Privacy Analyst with the Office of the Information and Privacy
Commissioner of Newfoundland and Labrador. Stacey joined the OIPC in 2009. During her career
at the OIPC she has been involved with file investigations, research, advocacy and she is currently
focused on providing education and training in relation to the ATIPPA, 2015 and PHIA.
Prior to her work in access and privacy, Stacey spent 5 years in private practice at an Atlantic
Canadian law firm.
Stacey was born and raised in Mount Pearl. She received a Bachelor of Laws degree from the
University of New Brunswick in 2005 and a Bachelor of Arts from Memorial University in 2002.
She also has a Certificate in Information Access and Protection of Privacy (IAPP) from the
University of Alberta.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Jennifer Taylor
Senior Privacy Analyst
ATIPP Office, Department of Justice and Public Safety
Jennifer Taylor is a Senior Privacy Analyst with the Access to Information and Protection of Privacy
(ATIPP) Office. While she only joined the ATIPP Office in 2017, Jennifer has been working with the
ATIPP legislation in some form since coming to Government in 2008. Before coming to the ATIPP
Office, she worked in planning and policy with a responsibility for ATIPP requirements, with the
Department of Tourism, Culture and Recreation, the Department of Seniors, Wellness and Social
Development, and the Department of Children, Seniors and Social Development. While in these
positions, she processed many requests and provided privacy services, such as undertaking
training, privacy impact assessments and privacy breach reports. Since coming to the ATIPP
Office, her focus has been primarily on training, privacy breach tracking, privacy impact
assessments, drafting of policies and guidance documents, and providing advisory services.
Jennifer holds a B.A. (Hons) and M.A. from Memorial University and a CIPP/C Certification from the
International Association of Privacy Professionals, and is currently working towards a certification
in Information Access and Protection of Privacy from the University of Alberta.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Blaine Edwards
Manager of Privacy and Information Security
Department of Health and Community Services (HCS)
Blaine and has 10 years’ experience in the access and privacy field. During his time with the ATIPP
Office he assisted with the both the 2010 and 2015 ATIPPA statutory reviews. He entered the
health privacy field in 2016 as the Manger of Privacy and Information Security for the Department
of Health and Community Services and has helped coordinate the first legislative review of the
Personal Heath Information Act. He has CIPP-C and HCISPP (HealthCare Information Security and
Privacy Practitioner) designations and is also currently completing his master’s degree in
management at the business faculty of Memorial University.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Ruth Marks
Access and Privacy Analyst
Office of the Information and Privacy Commissioner (OIPC)
Ruth is currently an Access and Privacy Analyst with the OIPC NL, where she works on
investigations, conducts research and offers general guidance to custodians and public bodies.
During her privacy career, Ruth has utilized a variety of tools, including privacy impact
assessments, audits, policies, education, and privacy management programs, to better ensure
legislative compliance and appropriate protection of personal information.
Prior to her work in privacy, Ruth spent 10 years in communications, working for advertising
agencies and both the provincial and federal governments. Ruth has a Certificate in Information
Access and Protection of Privacy (IAPP) from the University of Alberta, a Masters of Employment
Relations from Memorial University of Newfoundland and Canadian certification from the
International Association of Privacy Professionals.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Katie Dicker
Senior Aboriginal Patient Navigator, Aboriginal Patient Navigator Program
St. John’s Native Friendship Centre
Katie Dicker is the Senior Aboriginal Patient Navigator of the Aboriginal Patient Navigator Program
(APN), and was implemented as a pilot program in April 2009. The APN program will assist any
Aboriginal patients who are referred to Eastern Health for medical treatment. Katie has helped to
create and develop the program, watch it grow, and most importantly to ensure the needs are met
of those requesting the services.
Prior to moving to St. John’s, Katie has worked 14 years with Labrador Grenfell Health in Nain, the
first 8 years as a Personal Care Attendant, and the remaining 6 years as a Booking Clerk. She
loves to meet new people and support patients and their families, to help better understand,
assist, and guide them to make their stay in St. John’s to be more comfortable, less stress, and to
feel supported.
“Every day is a different day, and so very rewarding.”
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Solomon Semigak
Aboriginal Patient Navigator
St. John’s Native Friendship Center
Solomon Semigak is an Aboriginal Patient Navigator for the St. John’s Native Friendship Center in
partnership with Eastern Health. He has been working for the St. John’s Native Friendship Center
for 10 years and of those 10 years, 6 years with the Aboriginal Patient Navigator Program.
Solomon was born and raised in Makkovik, Nunatsiavut and glad to say that he is fluent in
Inuttitut, taught by his parents. Solomon kept his language by speaking to elders and other
community members, plus reading and writing in Inuttitut. He is an Inuttitut interpreter for the
APN program.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Iris Power
Director of Information Management (IM) Services
Office of the Chief Information Officer (OCIO)
Iris Power is the Director of Information Management (IM) Services for the Government of
Newfoundland and Labrador. As a member of the Office of the Chief Information Officer’s senior
management team, she coordinates the administration of the Management of Information Act.
This includes growth of IM capacity in the public sector through the development and support of
IM policy instruments and tools.
Iris is involved in the planning and implementation of strategic IM initiatives including the
Information Management Self-Assessment Tool (IMSAT) program as well as electronic content and
collaboration technologies. She serves as the Chair of the Government Records Committee, the
legislated body that oversees public sector IM standards and practices and is directly responsible
for the operation of the Provincial Records Centre.
On a national level, Iris is the Government of Newfoundland and Labrador’s representative on the
Canadian Federal, Provincial and Territorial Records Council as well as the Public Sector CIO
Council Information Management Sub-Committee. She has participated in numerous national and
international conferences and professional associations on IM, particularly Electronic Document
and Records Management Systems. With more than 20 years of experience in the information
management field Iris has held positions with the City of St. John’s, the Labrador Hydro Project
and the Department of Justice.
Iris holds a Bachelor of Arts Degree from Memorial University of Newfoundland and a Master of
Library and Information Studies from the University of Western Ontario.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Dave Morgan
Principal Consultant
Morgan Privacy Consulting
Dave Morgan is the principal consultant for Morgan Privacy Consulting, a full-service privacy
consulting firm based in St. John’s. A scientist by education, Dave has experience in technology,
healthcare, research ethics, government, and the community sector.
Following his time in privacy software, Dave led the privacy portfolio at the NL Centre for Health
Information, where he contributed to the development of the provincial Electronic Health Record.
While at the Centre for Health Information, Dave co-chaired the Canada Health Infoway Pan-
Canadian Health Information Privacy Group which won the International Association of Privacy
Professionals (IAPP) Privacy Innovation Award in 2014 for its work developing pan-Canadian
common understandings for health information privacy.
Following a brief period working as a sea ice engineering researcher, Dave returned to information
privacy as a consultant, establishing Morgan Privacy Consulting. Through Morgan Privacy
Consulting, he recently chaired the statutory review of the NL Personal Health Information Act.
Dave holds the Fellow of Information Privacy (FIP), Certified Information Privacy Manager (CIPM),
and Certified Information Privacy Professional (CIPP, Canada and US) designations from the IAPP,
and has a Ph.D. in Computing Science from the University of Alberta. Dave is a member of the
International Data Sanitization Consortium and is also an active contributor to the privacy
community, having authored academic and professional articles, spoken at provincial, national,
and international conferences, and served on advisory boards of the IAPP.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Rosemary Thorne, CIPP/C
University Access and Privacy Advisor
Memorial University of Newfoundland (MUN)
As Memorial University’s lead on access and privacy since 2005, Rosemary provides leadership
and strategic advice on information access and privacy and oversees the university’s Information
Access and Privacy Office.
The IAP Office has two access and privacy analysts and a junior ATIPP coordinator. The office is
responsible for developing and implementing access and privacy policy, procedures, best
practices and compliance tools. Her office conducts privacy impact assessments for projects and
programs, negotiates vendor and other agreements, and manages privacy complaints and privacy
breaches. Rosemary oversees the processing of all access to information requests to the
university and manages appeals and complaints under the Access to Information and Protection
of Privacy Act, 2015. She delivers tailored classroom privacy instruction to employees and builds
awareness through targeted educational and outreach opportunities.
Rosemary has worked exclusively in access and privacy for 16 years, having begun her work in
that field as manager in the provincial ATIPP office. She was in the very first cohort of graduates in
2004 from the University of Alberta’s Information Access and Privacy Protection program. As a
volunteer with the International Association of Privacy Professionals, she is past KnowledgeNet
chair for the St. John’s area.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Erin Drover
Senior Privacy Analyst
ATIPP Office, Department of Justice and Public Safety
Erin Drover is a Senior Privacy Analyst with the Access to Information and Protection of Privacy
Office. Erin has been working in access and privacy for four years. Her work has included
developing materials and training for municipalities, providing advice to a variety of public bodies
on access and privacy issues, and completing privacy assessments.
Prior to working for the ATIPP Office, Erin’s work included policy analysis for the Provincial Advisory
Council on the Status of Women, and working with the Law Society of Scotland in the area of law
reform.
Erin holds a B.A. (hons) from Memorial University, an LL.B. from the University of New Brunswick,
and CIPP/C certification from the International Association of Privacy Professionals.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Janet O’Reilly
Senior Access & Privacy Analyst
Office of the Information and Privacy Commissioner (OIPC)
Janet O’Reilly is the Senior Access and Privacy Analyst with the Office of the Information and
Privacy Commissioner of Newfoundland and Labrador. Janet joined the OIPC in 2010. During her
career at the OIPC she has been involved with file investigations and education and she is now
leading the investigative and advocacy and compliance arms of the OIPC. Prior to her work in
access and privacy, Janet spent 9 years in the insurance industry with Unifund Assurance as their
Corporate Examiner for Accident Benefits. Janet received a Bachelor of Laws degree from
Dalhousie University, a Master’s degree in Drama from the University of Toronto and a Bachelor of
Arts from Memorial University. She also is an active member of the local theater community.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Ken March
Director of Infrastructure, Information Protection and Operations
Newfoundland and Labrador Centre for Health Information (NLCHI)
Ken March is the Director of Infrastructure, Information Protection and Operations at the
Newfoundland and Labrador Centre for Health Information. The NLCHI is a crown corporation of
the Government of Newfoundland and Labrador, with a vision of improved health through quality
health information.
Ken graduated from Royal Military College in 1997 with a Bachelor's degree in Engineering, spent
more than a decade in Ontario working in IT and IT security, including 5 years with the
Communications Security Establishment of Canada (CSEC). Ken returned to NL in 2008, as a
Technical Architect with the Centre, where he has also held the position of Manager of Security
and Architecture, and temporary Privacy Manager.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Brittany Tibbo, CIPP/C, CIPM
Manager of Privacy and Information Management (Temporary)
Newfoundland and Labrador Centre for Health Information (NLCHI)
As a member of the Newfoundland and Labrador Centre for Health Information Privacy and IM
team, Brittany has provided privacy guidance and expertise to Provincial eHealth Projects and
Services since 2014. In her most recent capacity, she has overseen enhancements to the IM
Program and has provided overall direction for the Privacy team.
Brittany completed her undergraduate studies at Memorial University in St. John’s and is a
graduate of the Masters of Public Policy and Management Program at the University of York, UK.
Brittany is an active member of the community and is currently a member of the IAPP Canadian
Advisory Board. Since 2014, she has been a member of the National Board of Directors for YWCA
Canada and is the Vice-Chairperson of YWCA St. John’s.
Control–Alt–Delete: Control Data, Use
Alternatives, and Delete Risks
APRIL 30 – MAY 2, 2018
Heather Youden, CIPP/C
Privacy Officer
Newfoundland and Labrador Centre for Health Information (NLCHI)
Heather Youden is a Privacy Officer at the Newfoundland and Labrador Centre for Health
Information (NLCHI). NLCHI is a crown corporation of the Government of Newfoundland and
Labrador, with a vision of improved health through quality health information.
Heather graduated from Memorial University in 2001 with a Bachelor of Commerce, Co-operative
Degree and spent a number of years working in the field of finance. In 2008, Heather began her
career path into Privacy and Access to Information. She has been employed at Memorial
University as an Access and Privacy Analyst and has been a Privacy Officer with NLCHI since
2015. Heather has completed the Information Access and Protection of Privacy Certificate from
the University of Alberta and the Certified Information Privacy Professional/Canada (CIPP/C)
Certification.