top of page
Reporting Privacy Breaches is Mandatory under the Law
Privacy breaches must be reported - large and small businesses - prosecution by A-G of Canada.
Feb 91 min read
Does your Organization need a Privacy Policy?
Organizations shall implement policies and practices to give effect to the principles of the Act.
Jan 191 min read
BC Privacy Class Action Certified against Home Depot
Home Depot retained a history of the purchases made using a particular email address and information about those purchases.Â
Jan 92 min read
Privacy commissioner announces investigation into sports organization
Privacy Commissioner investigates sports organization.
Nov 12, 20241 min read
Canada set to One-Up the EU with fines of 5% or $25 Million
Canada has tabled legislation that would go farther than the European Union with fines.
Oct 20, 20241 min read
Age Assurance – Screening users for age
Intended to increase the safety of young people online, Canada is considering laws
Oct 10, 20241 min read
Do you have a Designated Privacy Professional or Officer in your organization?
Federal law (PIPEDA) requires that companies designate an individual(s) to be accountable for the company’s Privacy compliance.
Sep 15, 20242 min read
Your company has been hacked – now what?
Section 10.1 of PIPEDA requires your company to report “any breach of security safeguards involving personal information. There are caveats
Sep 2, 20241 min read
B2B and Privacy Laws – Does PIPEDA apply to information collected in Business to Business transactions?
Let’s say you are a Business, and your sales and customers are with other Businesses. Are you subject to Privacy Laws?
Aug 18, 20241 min read
Privacy 'Sweep' by Global Regulators
Privacy authorities from around the world (Global Privacy Enforcement Network - GPEN) conducted a "sweep" of websites and mobile apps.
Jul 10, 20241 min read
If you're Hacked, will the circumstances become public
LifeLabs was caught in a catch-22. companies cannot defeat responsibilities by placing facts about a breach inside privileged docs.
Jul 4, 20242 min read
Is Consent required to use personal information available on-line?
AI and search scraping of personal information - is it legal?
May 27, 20241 min read
OPC Findings on Agronomy Company Data Breach and the Importance of Digital Security
Discover the critical findings by the Office of the Privacy Commissioner (OPC) on the Agronomy Company data breach.
Jul 31, 20232 min read
Facebook vs OPC
British consulting firm had accessed the personal information of Facebook users
Apr 13, 20231 min read
OPC Rebukes Home Depot for Sharing Customer Data with Facebook
Discover how Home Depot violated customer privacy by sharing data with Facebook, leading to a rebuke from the OPC.
Jan 26, 20232 min read
Failure to Report breach of Personal Information - MGM Resorts
MGM did not report the 2019 breach to the OPC and did not notify affected Canadian residents
May 19, 20221 min read
OPC Assessment on Voiceprint Authentication: The Rogers Communications Case Study
Discover how the Rogers Communications case study navigates the intersection of biometric privacy, consent practices, and technology.
Mar 30, 20222 min read
Short term lender taking banking access infromation from customers
collecting and using banking login credentials
Mar 12, 20212 min read
Investigation of Clearview AI
Clearview had amassed a database of 3 billion images of faces and other biometric identifiers
Feb 2, 20211 min read
OPC Decision on TD Canada Trust’s Outsourcing Practices
Discover the implications of the OPC Decision on TD Canada Trust’s outsourcing practices. Learn about the nuanced decision in this blog post
Aug 4, 20202 min read
bottom of page