Home > Security > Security News

Canada’s TD Bank Deploys WorkiQ Surveillance Software Amid Privacy Gaps

Published
Written by:
Lore Apostol
Lore Apostol
Cybersecurity Writer
Employee Workspace - Activity Dashboard - Office - Workflow - Employee Tracking - Surveillance
Summarize with:
ChatGPT logo ChatGPT Claude.ai logo Claude.ai Google AI logo Google AI Grok logo Grok Perplexity logo Perplexity
Google logo Add as preferred source on Google
Key Takeaways
  • Software Deployed: TD Bank told some staff that it will use WorkiQ software to track time spent on browsers and internal communication applications.
  • Weak Protections: Canadian employees have few legal safeguards against workplace monitoring, with privacy laws weaker than the EU's GDPR.
  • Bill Gap: Canada's privacy bill before the House of Commons does not address the electronic monitoring of employees.

TD Bank, Canada's second-largest company by market cap, has told some employees it will deploy WorkiQ software to track work activity, reigniting debate over consent and privacy in workplace surveillance. Several TD employees posted anonymously on social media, expressing concerns about layoffs, micromanaging, AI replacement, and pressure to perform.

TD Bank Defends WorkiQ Deployment

TD said the rollout was "standard practice across the industry," adding that "the tool allows managers to more accurately manage workflows, team capacity and performance," according to Reuters. The bank declined further comment. 

According to a recorded team call and a document TD shared with staff, the tool monitors time spent on browsers and internal chat and meeting applications.

Six Canadian legal experts said the country's privacy laws are weaker than those in the European Union, where privacy is a fundamental right, and companies must justify monitoring tools. Lawyers noted that intent must be defined: if a company says itmonitors only for productivity, the data cannot be repurposed for performance reviews. 

"The employer could say outright that they're using it for performance evaluations, and as long as they're upfront about it, there's nothing the employees can do about it," said Brent Arnold, a partner at Toronto-based INQ Law.

Privacy Bill Omits Surveillance

Canada is updating its privacy laws in a bill before the House of Commons that draws on the EU's General Data Protection Regulation (GDPR). University of Ottawa law professor Michael Geist said the bill does not cover workplace surveillance, and it includes no notice or consent requirements for tracking software or keylogging

Valerio De Stefano of York University's Osgoode Hall Law School said monitoring "has not been on the government's radar," leaving "basically no specific safeguard" for employees.

Recently, Meta paused its plans to collect employee mouse movements and keystrokes for AI training data after staff resistance.

Add a Comment
Related
whitefly_espionage
Gamaredon 2025: New Tools, Turla Alliance, Cloud Exfiltration
Polymarket Confirms Crypto Hack, Refunds User Stolen Funds After Third-Party Vendor Breach
Adblock for YouTube Chrome Extension Hides Dormant JavaScript Injection
Red Codes on Robot
Kaspersky 2026 SMB Threat Report: Fake AI Tools Used in 33,000+ Attacks
Cellebrite UFED Used by Russia Against Activist Andrey Pivovarov Despite 2021 Cutoff
ASIO Reveals Nation-State Hack of Australian Critical Infrastructure
Most Popular
whitefly_espionage
Gamaredon 2025: New Tools, Turla Alliance, Cloud Exfiltration
Polymarket Confirms Crypto Hack, Refunds User Stolen Funds After Third-Party Vendor Breach
Adblock for YouTube Chrome Extension Hides Dormant JavaScript Injection
Red Codes on Robot
Kaspersky 2026 SMB Threat Report: Fake AI Tools Used in 33,000+ Attacks
Vulnerability Prioritization is Not Just About Severity, But Exploitability in Context
Cellebrite UFED Used by Russia Against Activist Andrey Pivovarov Despite 2021 Cutoff
Gamaredon 2025: New Tools, Turla Alliance, Cloud Exfiltration
Polymarket Confirms Crypto Hack, Refunds User Stolen Funds After Third-Party Vendor Breach
Adblock for YouTube Chrome Extension Hides Dormant JavaScript Injection
Kaspersky 2026 SMB Threat Report: Fake AI Tools Used in 33,000+ Attacks
Vulnerability Prioritization is Not Just About Severity, But Exploitability in Context
Cellebrite UFED Used by Russia Against Activist Andrey Pivovarov Despite 2021 Cutoff

Most Popular
whitefly_espionage
Gamaredon 2025: New Tools, Turla Alliance, Cloud Exfiltration
Polymarket Confirms Crypto Hack, Refunds User Stolen Funds After Third-Party Vendor Breach
Adblock for YouTube Chrome Extension Hides Dormant JavaScript Injection
Red Codes on Robot
Kaspersky 2026 SMB Threat Report: Fake AI Tools Used in 33,000+ Attacks
Vulnerability Prioritization is Not Just About Severity, But Exploitability in Context
Cellebrite UFED Used by Russia Against Activist Andrey Pivovarov Despite 2021 Cutoff
Gamaredon 2025: New Tools, Turla Alliance, Cloud Exfiltration
Polymarket Confirms Crypto Hack, Refunds User Stolen Funds After Third-Party Vendor Breach
Adblock for YouTube Chrome Extension Hides Dormant JavaScript Injection
Kaspersky 2026 SMB Threat Report: Fake AI Tools Used in 33,000+ Attacks
Vulnerability Prioritization is Not Just About Severity, But Exploitability in Context
Cellebrite UFED Used by Russia Against Activist Andrey Pivovarov Despite 2021 Cutoff

TechNadu keeps you informed with the latest in cybersecurity, VPNs, and technology. From expert guides to in-depth reviews, we provide the knowledge you need to stay secure and connected in the digital world.

© 2026 TechNadu. All Rights Reserved. TechNadu is a part of Leaprove Media LLP.

Close lightbox
Facebook
Twitter
Linkedin
Reddit
Email
Copy Link
For a better user experience we recommend using a more modern browser. We support the latest version of the following browsers: For a better user experience we recommend using the latest version of the following browsers: