Skip to content

Tag: privacy breach

Published on

The February meeting of the Gabriola Fire Protection Improvement District trustees saw some disagreements, but on the whole proceeded civilly and efficiently. We are summarizing matters and providing transcripts only where there are areas of contention or details that we believe are of interest.

Signal to noise ratio (good/bad/ugly) = good

Relevant content in the February 13th edition of the Sounder:

Table of Contents

Call to order, housekeeping items.

FINANCIAL REPORT

COMMITTEE REPORTS

  1. Finance Committee
  2. Communications Committee
  3. Hiring Committee
  4. Website Committee
  5. Freedom of Information Committee
  6. Policy and Bylaw 97 Review Committee
  7. HR Committee
  8. Meeting Safety
  9. Performance Management Framework
  10. Privacy Breach Committee

REPORTS

BUSINESS ARISING AND UNFINISHED BUSINESS

  1. Privacy Management Program
  2. Bylaw XXX: Fire Department Establishing Bylaw
  3. Records and Information Management Bylaw

NEW BUSINESS

  1. Disclosure of Conflict of Interest
  2. Election
  3. Adoption of Code of Conduct
  4. Governance

QUESTION PERIOD

...continue reading "2026-02 GFPID meeting"

Published on

The January meeting of the Gabriola Fire Protection Improvement District trustees was delayed from the usual first Wednesday to the second Wednesday of the month.

Because most of the meeting proceded civilly and efficiently, we are summarizing matters and providing transcripts only where there are areas of disagreement or details that we believe are of interest.

Signal to noise ratio (good/bad/ugly) = good

The January 21st 2026 Sounder has three articles reporting on this meeting:

TABLE OF CONTENTS

Call to order

Introduction of late agenda items and adoption of agenda

GUEST SPEAKER

Adoption of minutes

Correspondence - none

Financial report - none

COMMITTEE REPORTS

  1. Finance Committee
  2. Communications Committee
  3. Hiring Committee
  4. Website Committee
  5. Freedom of Information Response Committee
  6. Policy and Bylaw 97 Review Committee
  7. HR Committee
  8. Privacy Breach Committee

REPORTS

  1. Corporate Officer
  2. Fire Chief
  3. Deputy Chief
  4. Association

BUSINESS ARISING FROM THE MINUTES and UNFINISHED BUSINESS

  1. Privacy Management Update
  2. Bylaw XXX: Fire Department Establishing Bylaw
  3. Respectful Workplace Policy Due to WorkSafe BC
  4. Records and Information Management Bylaw

NEW BUSINESS

  1. Election
  2. Capital reserve management
  3. Motion related to capital reserve management
  4. Safety assessment
  5. Use of ceiling projector
  6. Performance management framework

QUESTION PERIOD

  1. Privacy breach
  2. Deadlines on applying for advances on tax levy
  3. Select committee to review legislation and develop a strategy for psychological safety at meetings – offer to facilitate
  4. Fire extinguishers – refilling on island

...continue reading "2026-01 GFPID meeting"

Published on

This is the sixth post in our series about the Gabriola Fire Protection Improvement meeting that took place on December 3rd, 2025.

The first post about the 2025-12-03 meeting provides an introduction, links, and useful background information. Our transcription of the meeting itself begins in the second post of this series and is completed in this, the sixth and final post.

TABLE OF CONTENTS

BUSINESS ARISING continued

NEW BUSINESS

QUESTION PERIOD

...continue reading "2025-12 GFPID meeting – Part 6"

Published on

The November 12th issue of the Sounder contains an ad notifying Gabriolans about a privacy breach, reproduced below. Based on what it says, it appears that an office computer that had not been properly wiped somehow ended up in the hands of a community member, and has now made its way back to the GFPID. Clearly someone made a mistake somewhere.

Presumably this is the privacy breach referenced during the New Business part of the November 5th meeting. Ironically, during that meeting there were disagreements as to whether Microsoft’s OneDrive or a self-managed server was the most secure way to protect data.

This incident illustrates the common adage that the biggest vulnerability any organization has is not technology, but people.

We commend the GFPID on its transparency with regard to this issue. We also look forward to updates as to how this happened and what remedial measures are being put into place, in terms of training, policy and practice, (perhaps including compliance checklists) to ensure that such data security breaches do not happen again.