What Businesses Need to Know About Their Legal Obligations When Outsourcing Data Processing to Third-Party Service Providers

Did you know that Canadian businesses have legal obligations under Canada’s federal privacy law, the Personal Information Protection and Electronic Documents Act (“PIPEDA”), when they engage third-parties to process personal data? By now, Canadian businesses should be aware of their mandatory data breach reporting obligations under PIPEDA. In short, those obligations require Canadian businesses to: [...]

By |2020-02-14T08:26:03-08:00November 14th, 2019|Blog, Privacy Law|

New Mandatory Data Breach Obligations Under Canada’s Privacy Law

Canada’s federal privacy law the Personal Information Protection and Electronic Documents Act, or PIPEDA for short, just got an upgrade. Effective November 1, 2018, organizations regulated under PIPEDA have mandatory reporting obligations if they experience a security breach involving personal information. Failure to comply with the reporting obligations can result in fines of up to [...]

By |2019-07-11T13:27:47-07:00December 4th, 2018|Privacy Law|