The coffee chain Tim Hortons is the subject of a canadian investigation regarding the collection and use of personal information of its customers via its mobile application which is used for the commands.
According to an article in the Financial Post, the application of Tim Hortons could “collect and use data on the movements of people as they go about their daily business”.
On Monday, the Office of the privacy commissioner of Canada (OPC) has indicated that the investigation will be conducted jointly with the office of the information Commissioner and the privacy of Alberta, the office of the information Commissioner and the privacy of British Columbia and the Commission d’accès à l’information du Québec.
These four organizations will verify in particular if this division of Restaurant Brands International complies with the laws on the protection of personal information and electronic documents.
The OPC will also check if the sign has obtained a valid consent of the user of the application to collect and use their geolocation information “for purposes that could include hoarding and the use of user profiles in detailed,” and ” if “the collection and use of data are appropriate in the circumstances”.
The direction of the CPVQ, which has refused to grant interviews on this subject, is of the opinion that the geolocation can reveal information “very sensitive” on the habits of life of the people.
For its part, the management of Tim Hortons, told the Financial Post have made changes to its application.
In an article in the media, we can read that consumer data would have been recorded every three to five minutes and that the company’s Radar Labs was responsible for the analyze. Moreover, the information were collected, and this, even if the application was closed.