In dealing with the many privacy challenges that are universal to privacy regulators around the world, it is important for data protection authorities to work together to find global solutions. This year, the Privacy Commissioner ("the Commissioner") and his staff had worked actively with major international and regional privacy networks in keeping Hong Kong's protection of personal data compatible with international privacy standards.

International Conference of Data Protection and Privacy Commissioners

At the 29th International Conference of Data Protection and Privacy Commissioners held in Montreal, Canada in September 2007, over 600 privacy commissioners, academics, privacy professionals, advocates, government officials and IT specialists from around the world discussed a wide range of privacy issues. Resolutions were made on the urgent need for global standards for safeguarding passenger data, development of international standards, international co-operation, and the working group on conference organizational arrangements. The Commissioner was honoured to be appointed a member of the Credential Committee together with France and the Netherlands responsible for dealing with membership applications.

APEC ECSG Data Privacy Subgroup

This year, the Data Privacy Subgroup ("DPS") of the Electronic> Commerce Steering Group set up by the Asia Pacific Economic Co-operation ("APEC") focused its work on Data Privacy Pathfinder projects. The APEC Data Privacy Pathfinder was endorsed by APEC Ministers at their meeting in Sydney, Australia in September 2007.

There are nine pathfinder projects covering the following aspects:-

1. Self-assessment guidelines for business;
2. Trustmark (accountability agent) guidelines;
3. Compliance view process of Cross Border Privacy Rules;
4. Directories of compliant organizations;
5. Contact directories for data protection authorities and privacy contact officers within economies,as well as with accountability agents;
6. Templates for enforcement cooperation arrangements;
7. Templates for cross-border complaint handling forms;
8. Guidelines and procedures for responsive regulation in Cross Border Privacy Rules system; and
9. A pilot program that can test and implement the results of the projects leading to the testing of a complete system.

Fourteen economies have agreed to participate in the Pathfinder projects. They are Australia, Canada, Chile, Hong Kong China, Japan, Republic of Korea, Mexico, New Zealand, Peru, the Philippines, Chinese Taipei, Thailand, the United States and Viet Nam.

The Commissioner continues to participate actively in the work of the DPS. He attended meetings of the DPS held in June 2007 and February 2008 in Cairns, Australia and Lima, Peru as well as the APEC Technical Assistance Seminar in Vancouver, Canada in September 2007.

Asia Pacific Privacy Authorities

Asia Pacific Privacy Authorities (APPA) is the principal forum for privacy authorities in the Asia Pacific Region. This year, APPA broadened its membership from seven to nine authorities welcoming the Information and Privacy Commissioner of British Columbia and the Privacy Commissioner of Canada. At its two bi-annual meetings, reports from members' jurisdictions on privacy developments were received and a wide range of topical privacy issues were discussed.

At the 27^th APPA Forum held from 22 to 23 June 2007 in Cairns, Australia, commissioners shared their views on Queensland's smartcard driver's license, biometric privacy concerns, internet leakage, statutory cause of action, anti-money laundering and progress on Australia and New Zealand's privacy law reform. Members also agreed to make a concerted effort to raise privacy awareness by organizing publicity campaign, Privacy Awareness Week 2007, in August 2007 in different places including Hong Kong.

At the 28^th APPA Forum held from 30 November to 1 December 2007 in Wellington, New Zealand, commissioners learned from other stakeholders' experiences including private industry, civil society and law reform bodies how the use of GPS and RFID impact upon privacy, how to keep young children safe online, and the development of security breach notification. Having reviewed the success of the first Privacy Awareness Week, commissioners agreed to organize a second Privacy Awareness Week in 2008.

The Commissioner Mr. Roderick Woo (2nd from left, first row) attended the 28th APPA Forum at Wellington, New Zealand from 30 November to 1 December 2007.

Overseas Visitors

In the year under review, the PCPD received the following distinguished overseas visitors and guests:

• 13-14 June 2007 – Mr. Malcolm Crompton, Managing Director of Information Integrity Solutions Pty Ltd. (ex-Australian PC) visited our office and gave a talk to our colleagues.
  
  
• 27 June 2007 – Dr. Nasser Al Saidi , Data Protect ion Commissioner of the Dubai International Financial Centre visited our office.
  
  
• 31 October 2007 – Dr. Attila Peterfalvi, the Ombudsman for Data Protection in the Hungarian Parliament and Mr. Janos Chalupa from the Hungarian Consulate, Hong Kong visited the PCPD.

Dr. Attila Peterfalvi, the Ombudsman for Data Protection in the Hungarian Parliament (left) and the Commissioner Mr. Roderick Woo.

• 27 February 2008 – The Commissioner invited Mr. Richard Thomas, the Information Commissioner of the UK and Mr. David Loukidelis, the Information and Privacy Commissioner for British Columbia (Canada) to come to Hong Kong to share knowledge and information in data protection from a regulatory perspective. Their views on data breach notification and on data user registration had become useful reference for us to further consider these matters for Hong Kong. Both visitors also visited the Immigration Department's Smart ID Card Office.

The Commissioner Mr. Roderick Woo (left) accompanied Mr. David Loukidelis (second from right) and Mr. Richard Thomas (right) to visit the Immigration Department Smart ID Card Office on 27 February 2008.

• 12 March 2008 – the Commissioner met with the delegation from the Bank of Thailand.
  
  
• 28 March 2008 – Ms. Chan Hoi Fan, the Coordinator of the Office for Personal Data Protection of Macao, and colleagues visited the PCPD and exchanged views on privacy protection with the Commissioner.

Ms. Chan Hoi Fan met with the Commissioner.