Organizations collect more and more personal data these days—from customers and employees. With all of this new data in their hands, organizations may be tempted to hold onto it without an express purpose, or they may be unsure what to do with it once it has served its original purpose.
Whenever data leaves the control perimeter of a company, there is a risk that the data will not be protected at the same level of security that is required by company policy. It is essential that data created, stored, manipulated or transmitted by a third party on the company’s behalf be accorded the level of protection that is defined by the company’s standards and policies.
When a support worker at an evangelical Christian organization that runs homes for persons with developmental disabilities entered a same-sex relationship, the organization found the worker had breached its "Lifestyle and Morality Statement," which prohibited homosexual relationships. The organization, Christian Horizons, eventually terminated the employee on that ground, and the worker complained of discrimination to the Ontario Human Rights Tribunal.