OBA.org - Articles 2022

Foreign Companies Should Assess Breach Impact on Canadians as Part of their Initial Assessment

October 28, 2022
Kirsten Thompson and Jaime Cardy (Dentons)

The Office of the Privacy Commissioner of Canada (OPC) recently issued PIPEDA Findings #2022¬004, which underscores the need for a timely risk assessment that includes Canadians’ personal information. With this Report, the OPC is setting the expectation that while this timeline is flexible, it is not infinitely elastic.

Quebec Privacy Law: Is Your Organization Ready for New Rules in Force this September?

September 21, 2022
Ronak Shah, Wendy Mee, Ellie Marshall

On September 22, 2022, the first set of amendments from Bill 64 will come into force. Although most amendments will come into force in September 2023, below we highlight significant changes in force this September.

No Coffee Breaks from Privacy Compliance - A Cautionary Tale for App Developers

July 07, 2022
Roland Hung and Ida Sherkat

Mobile applications have become synonymous with organizations’ outreach initiatives. The recent joint investigation by federal and provincial privacy authorities into the Tim Hortons app emphasizes the need for companies to consider Canadian privacy laws when designing their apps.

Divisional Court Affirms High Bar in Data Breach Class Actions

April 22, 2022
Shalom Cumbo-Steinmetz and Alina Butt

Shalom Cumbo-Steinmetz and Alina Butt discuss key takeaways from a recent Divisional Court decision overturning certification in a data breach class action involving private health information.

ESG as the Next Frontier in Privacy and Data Governance: Moving Beyond Regulatory Compliance

April 11, 2022
Ronak Shah and George Boynton Payne

Ronak Shah and George Boynton Payne discuss a growing trend among organizations to include privacy and data governance metrics and disclosure as part of their environmental, social and governance (ESG) reporting framework, and highlight practical steps an organization can take to move beyond a traditional regulatory compliance approach to privacy and security.

Practising in the Metaverse: Business Opportunities; Cyber and Privacy Risks

March 31, 2022
Brent J. Arnold

The Crypto Evolution Continues: An overview of client onboarding, virtual law offices, video conferencing and privacy/security considerations of practicing in the metaverse.

Ukraine Invasion Increases Cyber Risk for Canadian Business

March 31, 2022
Brent J. Arnold and Kavin Sivasothy

An overview of cyber risks faced by Canadian businesses as a result of the Russian invasion of Ukraine.

Changing Tides for the Use of Intrusion upon Seclusion in Data Breach Class Actions

February 14, 2022
Chloe Snider and Hala Abdul Ghani

The common law tort of intrusion upon seclusion continues to develop, as does its use in the class action context. Chloe Snider and Hala Abdul Ghani explore four recent decisions that demonstrate a shift in the use of this tort in large data breach cases.

B.C., Alberta and Quebec Privacy Regulators Issue Binding Orders Directing Clearview AI to Comply with Recommendations

January 21, 2022
Ellen Xu

On December 14, 2021, the British Columbia, Alberta and Quebec privacy regulators issued separate legally binding orders directing Clearview AI to comply with recommendations made in their recent Report of Findings coauthored with the Office of the Privacy Commissioner of Canada. Ellen Xu explores the practices that gave rise to the investigation against Clearview and the recommendations with which Clearview has been ordered to comply.

China's New Privacy Legislation: The Personal Information Protection Law

January 21, 2022
Nicholas Wall

On November 1, 2021, the new law governing privacy in the People's Republic of China (PRC) came into effect. The Personal Information Protection Law (PIPL) contains substantive privacy obligations and has the potential to significantly impact organizations operating both within and outside of the PRC. Nicholas Wall provides an overview of PIPL's scope of application, central principles and restrictions on cross-border transfers.

Tracking Preferences

Articles 2022