Executive Summary: Key Legal and Evidentiary Issues

• Scope of damages under s. 1 of the British Columbia Privacy Act for a statutory privacy tort that is expressly “actionable without proof of damage”
• Characterization and role of “nominal” versus general non-pecuniary damages where no class-wide consequential harm is proved
• Use of aggregate damages in a class proceeding under the Class Proceedings Act, and whether common issues can justify a uniform per-member award
• Determination of whether risk of harm and loss of control over personal information, even where some class members were unaware of the breach, can support more than trivial damages
• Interaction between privacy tort damages and Charter-style concepts of compensation, vindication, and deterrence for quasi-constitutional privacy rights
• Extent of appellate deference owed to a trial judge’s assessment of general damages once no error of law is found

Background and factual context

The litigation arises from a systemic privacy breach at the Insurance Corporation of British Columbia (ICBC), the province’s public automobile insurer. A former ICBC employee, Candy Elaine Rheaume, improperly accessed the personal information of 78 ICBC policyholders and related individuals. Her access was not for business purposes but for “nefarious” reasons. She sold the information of at least 45 policyholders to criminals, and between 2011 and 2012, 13 of those 45 were targeted in arson and shooting attacks at their residences. The case proceeded as a class action. The class was broadly defined to include all natural persons whose personal information had been accessed by Ms. Rheaume for non-business purposes, together with their family members and other residents at the same residences. A sub-class was also defined for those who resided at premises that sustained property damage in attacks linked to the criminal misuse of the stolen data. At the liability phase in the Supreme Court of British Columbia, the court found ICBC vicariously liable for Ms. Rheaume’s serious, deliberate and improper privacy breaches. The Court of Appeal later affirmed that liability ruling, describing the misconduct as exposing the property and personal safety of class members to risk. Those liability decisions established that ICBC was responsible for intentional privacy violations carried out by its employee; the later decisions concern how damages should be assessed across the class.

Legal framework for the privacy tort and class-wide damages

The statutory cause of action is grounded in s. 1(1) of the British Columbia Privacy Act, which makes it “a tort, actionable without proof of damage” for a person, wilfully and without a claim of right, to violate another’s privacy. The Court of Appeal emphasized that this tort is “complete” upon the intentional interference with the privacy right itself; consequential loss, whether pecuniary or non-pecuniary, is not an element that must be proved for liability. This reflects the legislature’s recognition that violation of privacy is a harm to personal autonomy and dignity in its own right. Because the case is a class proceeding, the damages phase is structured under s. 29 of the Class Proceedings Act. That provision allows the court to make an aggregate monetary award where: monetary relief is claimed on behalf of the class; only questions about assessment of monetary relief remain; and the defendant’s aggregate liability can reasonably be determined without proof from individual class members. The aggregate step addresses harms or losses common to all class members, while an “individual issues” phase is reserved for any additional consequential harm—such as mental distress, lost income, or property damage—that can only be proved person by person.

Positions of the parties on damages

At the aggregate damages stage, the plaintiff, Mr. Ari, on behalf of the class, sought $25,000 in general non-pecuniary damages per class member for loss of privacy. Importantly, the plaintiff did not adduce evidence of individual harms or personal losses suffered by particular class members at this phase, because those matters were left to be addressed in the later individual issues phase. ICBC, the defendant and appellant, argued that without proof of class-wide consequential harm (such as psychological injury or economic loss) the court could award no more than “nominal” damages for the breach of privacy. ICBC proposed $500 per class member as a baseline nominal figure for “the mere fact” that privacy had been violated, contending this was the only amount permitted in law absent proof of actual loss. It further argued that risk of harm, by itself, could not ground compensatory damages in tort, and that the trial judge erred by considering the need to make such actions “financially worth pursuing” as a justification for a higher award. On appeal, ICBC accepted that if its strict point of law on nominal damages failed, there was no other basis to overturn the trial judge’s $15,000 assessment. The plaintiff class, in turn, argued that the Privacy Act’s wording and the broader Canadian jurisprudence on privacy and Charter-type rights permit general damages for injury to intangible privacy interests, even without proof of consequential loss. They contended there was no rule restricting the court to a token award where a serious, intentional privacy breach is proven.

Nominal damages, general damages, and quasi-constitutional privacy rights

The Court of Appeal’s reasons focus heavily on the nature and function of nominal versus general damages. In a technical sense, nominal damages are awarded when a plaintiff proves a breach of a legal right but cannot establish any loss caused by the wrong. They are purely symbolic and non-compensatory—essentially “damages in name only”—awarded to mark the legal infraction without addressing any actual damage. Such awards are possible for “per se” torts, like trespass to land, which are actionable without proof of loss. However, the Court rejected ICBC’s attempt to convert the availability of nominal damages into a rule that only nominal damages can ever be awarded where specific loss is not shown. Drawing from Canadian damages law and Charter jurisprudence (in particular, Ward v. Vancouver (City)), the Court explained that general damages can serve three related functions: compensation, vindication of rights, and deterrence of future wrongdoing. In the constitutional context, courts have recognized that even in the absence of proven personal loss, damages may be appropriate to vindicate the right and deter future breaches, especially where the right has fundamental or quasi-constitutional status. Privacy in Canada has been recognized as such a quasi-constitutional interest, protecting physical and moral autonomy. The Court aligned the Privacy Act’s statutory tort with this approach, emphasizing that the violation of privacy itself constitutes an injury to an intangible but real interest: the individual’s control over personal information. That loss exists whether or not the person is aware of the breach or can demonstrate psychological or financial consequences. As a result, the Court held that general damages—beyond merely nominal sums—can be awarded for the injury to the privacy interest itself, particularly where the breach is serious, deliberate, and for an improper purpose. The law presumes some damage flows from the invasion of privacy, and it is open to a judge to assess a meaningful amount to reflect that harm.

Use of comparative privacy jurisprudence and Manitoba statutory factors

In affirming the trial judge’s framework, the Court approved his reliance on Jones v. Tsige, a leading Ontario decision recognizing the common law tort of “intrusion upon seclusion.” Although Jones is a common law case and this matter involves a statutory tort, both are intentional privacy torts actionable without proof of pecuniary loss. In Jones, the Ontario Court of Appeal adopted a set of factors drawn from Manitoba’s Privacy Act to guide the assessment of damages, including: the nature, incidence and occasion of the breach; its effect on health, welfare, social, business or financial position; the relationship between the parties; distress or embarrassment suffered; and post-breach conduct, including apologies or offers to make amends. The British Columbia Court of Appeal confirmed that these factors could be usefully applied to Privacy Act claims, and that not all factors must be present to justify more than a nominal award. Some factors speak specifically to consequential losses, but others go to the inherent seriousness of the privacy violation and the need for vindication and deterrence. The Court rejected ICBC’s suggestion that consequential harm was a prerequisite to significant damages, finding that such a reading was inconsistent with the statutory text and the broader jurisprudence on privacy rights. The trial judge had found that the breach in this case was more serious than in Jones: it was motivated by personal financial gain, involved distribution of confidential data to criminals, and resulted in a level of risk to personal and property safety whose full extent would never be known. Those shared features of the breach, and ICBC’s vicarious responsibility for its employee’s conduct, were common to the class and thus properly formed the basis for an aggregate assessment.

Assessment of aggregate damages and the role of class procedures

Having rejected ICBC’s legal position on nominal damages, the Court turned to the actual assessment made by the trial judge. The trial judge had concluded that a $500 baseline would trivialize the privacy interest and would not adequately serve the public purpose of the Privacy Act in encouraging respect for privacy and accountability for breaches. He also noted that a very low ceiling on recovery for a serious statutory tort actionable without proof of damage would, in practical terms, make such claims uneconomic to pursue and could undermine the utility of class proceedings as an access-to-justice mechanism. On appeal, the Court of Appeal read those comments as a rejection of ICBC’s proposed rule, not as an attempt to inflate damages simply to make litigation financially attractive. The key basis for the $15,000 per-member award lay in concrete features of the breach: the deliberate and commercial nature of the misconduct; the involvement of criminals; the exposure of all class members to physical and property risks, regardless of their awareness; and the lack of transparency about the full extent of data dissemination, much of which was within ICBC’s control. The Court stressed that this aggregate award is confined to the injury to the privacy interest itself. It does not compensate for mental distress, upset, property damage, loss of income, or other consequential harms. Those items remain open for proof and assessment at the individual issues phase, where the court will have to avoid any double recovery by ensuring that any further award for consequential loss is distinct from the already-granted privacy-interest damages.

Policy terms, insurance context, and absence of specific contractual clauses

Although ICBC is an insurance corporation and the underlying data was collected in the context of automobile insurance and vehicle ownership, the appellate decision does not turn on any specific insurance policy wording or contractual clauses. The court’s analysis is driven almost entirely by statutory provisions: s. 1 of the Privacy Act and s. 29 of the Class Proceedings Act, as well as comparative reference to other provincial privacy statutes and Charter jurisprudence. The essential “policy” discussion is therefore legislative, not contractual. The court underscored that members of the public, including the class members in this case, were effectively compelled to provide personal information to ICBC as a precondition of owning or operating a vehicle, which heightens the public interest in ensuring that such information is properly safeguarded. However, there is no discussion of particular ICBC insurance policy clauses, exclusions, or coverage terms in the judgment. The key “terms at issue” are statutory: the characterization of the tort as actionable without proof of damage, and the mechanisms for aggregate damages in class proceedings.

Outcome of both the liability and damages appeals and overall result

Synthesizing the earlier liability decisions and this latest damages appeal, the overall trajectory of the case is as follows: first, the Supreme Court of British Columbia found that ICBC was vicariously liable for its employee’s intentional privacy breaches affecting a class of customers and related individuals. The British Columbia Court of Appeal then affirmed that liability finding, emphasizing the serious, deliberate, and improper nature of the privacy violations and the risks they created. Next, at the aggregate damages phase, the trial judge awarded $15,000 in general, non-pecuniary damages to each class member to compensate, vindicate, and deter injury to the privacy interest itself, leaving all consequential harms to be determined individually. In the present decision, the Court of Appeal dismissed ICBC’s challenge to that award, confirming that the Privacy Act does not restrict recovery to nominal damages where no class-wide consequential harm is proven and that meaningful general damages may be granted for serious violations of quasi-constitutional privacy rights. As a result, the successful party across the appeals is the plaintiff class represented by Ufuk Ari, and the courts have ordered aggregate general damages of $15,000 per class member for breach of privacy. The exact total monetary award and any costs or additional damages cannot be determined from this decision alone because the judgment does not specify the final number of class members or any quantified costs or individual consequential awards.