Ransomware – Privacy law, sanctions, and the pandemic
It is trite to say that no matter the sector, size, or location of an organization, cyberattacks can be devastating. As we have seen throughout 2020 and this year in Canada and elsewhere, data breaches and operational interruptions caused by […]
“Made in Canada” – What is happening to Privacy by Design under the CPPA?
“Privacy by Design” has long been understood as the “gold standard” of data protection and at the core of how to sustain privacy rights in the digital age. It is a concept that can be said to have been “made […]
Canadian privacy law 2.0: Artificial intelligence (AI) and Bill C-11, the Consumer Privacy Protection Act
In a recent announcement, the Canadian federal Privacy Commissioner of Canada (“OPC”) released a report containing recommendations on how AI should be treated under Canadian privacy law, and what protections need to be in place to ensure AI applications reach […]
Privacy Law & Data Protection
The federal Digital Charter Implementation Act was introduced for First Reading on November 17, 2020 as Bill C-11. If enacted, the new Consumer Privacy Protection Act will replace the privacy portions of the current Personal Information Protection and Electronic Documents Act (“PIPEDA”), […]
The dawn of Canadian Privacy Law 2.0: The Consumer Privacy Protection Act introduced
The long-awaited overhaul of federal private sector privacy law, as outlined in our previous blog post, is finally here. The Digital Charter Implementation Act was introduced for First Reading on November 17, 2020, as Bill C-11. If enacted, the new […]
M&A and cybersecurity – top nine ways to mitigate risk through due diligence
The authors would like to acknowledge the contribution of Iain Paterson, Chief Executive Officer at Cycura, a global team of leading cybersecurity experts headquartered in Toronto, Ontario. While the COVID-19 pandemic[1] is by no means over, increasing M&A activity and […]
40% of data breach records insufficient – Canadian Privacy Commissioner releases findings on data breach register inspections
As the Canadian Office of the Privacy Commissioner (“OPC ») signaled it would do at the end of 2019, it completed a targeted investigation of data breach registers at a select number of organizations. The OPC released has now released a […]
Tragic death of patient in German cyberattack a reminder of vital importance of cybersecurity in healthcare
On September 10, 2020, a large university hospital in Dusseldorf, Germany, experienced a major cyberattack, apparently caused by a security vulnerability of an off-the-shelf software that allowed hackers to infiltrate the hospital’s systems. The hospital treats approximately 350,000 patients per […]
David Krebs comments in IT World Canada article on data breach class action lawsuit
IT World Canada, “B.C. appeal court green-lights data breach class action lawsuit”
The article discusses a recent decision from the British Columbia Court of Appeal that upholds a lower court decision certifying a data breach class action lawsuit against a trust company: The decision caught the eye of Saskatchewan privacy lawyer David Krebs of […]
British Columbia Court of Appeal upholds certification of data breach class action
Following in the footsteps of Jones v. Tsige from the Court of Appeal for Ontario in 2012, the recent British Columbia Court of Appeal decision in Tucci v. Peoples Trust Co. (2020 BCCA 246) appears to be solidifying the future […]
