PIPEDA provides that any entity which collects, stores or discloses personal information and proposes to disclose that information to a third party must ensure that (i) the original consent acquired ...

While it’s applied to federally-regulated companies since 2001, only as of Jan. 1, this year — when the Personal Information Protection and Electronic Documents Act (PIPEDA) stretched to cover most ...

Seasoned privacy and cybersecurity lawyer Alex Cameron on compliance and client advice. 2018 was a crucial turning point for privacy legislation, from the EU’s GDPR ...

The GDPR applies to natural or legal person, public authority, agency or other body that has an establishment in the EU. The GDPR has extraterritorial effect; it applies to any natural or legal person ...

On June 18, 2015, significant portions of the Digital Privacy Act received Royal Assent. This Act, amends the Personal Information Protection and Electronic Documents ...

The federal government’s long awaited introduction of a bill to amend the Personal Information Protection and Electronic Documents Act is a constructive step forward in keeping Canada’s private-sector ...

The legislative behemoth known as the Health Insurance Portability and Accountability Act of 1996 (HIPAA) finally staggered into the offices of American physicians this April, demanding compliance ...

Front Lines is a guest viewpoint section offering perspectives on current issues and events from people working on the front lines of Canada's technology industry. Tom De Rosa is the National ...

Once the mandatory provisions of PIPEDA dealing with breach reporting, notification and recordkeeping come into force, any organization that knowingly fails to report to the OPC or notify affected ...