Safeguarding Your Business Data
State AGs Unite: New Privacy Task Force Signals Shift in Regulatory Power Dynamics — Regulatory Oversight Podcast
Constangy Clips Ep. 10 - 3 Ways the GDPR Is Evolving with Today’s Tech Landscape
State AG Pulse | Massive Google Settlement Shows AGs Serious About Privacy
Podcast - What Healthcare Providers Should Be Telling Students and Interns About HIPAA and Snooping
State AGs Unite: New Privacy Task Force Signals Shift in Regulatory Power Dynamics — The Consumer Finance Podcast
Innovation in Compliance: Navigating Regulatory Changes and Compliance in Trade and Data Privacy with Stephanie Font
Top Healthcare Compliance Priorities for 2025
AI Legislation: The Statewide Spotlight - Regulatory Oversight Podcast
Podcast - Who Owns Your DNA? Lessons Learned from 23andMe
AI Legislation: The Statewide Spotlight — The Consumer Finance Podcast
Business Better Podcast Episode: Bridging Campuses: Legal Insights on Education Industry Consolidation – Privacy and Data Security
The Next FCRA Frontier: Identity Theft and CFPB Updates — FCRA Focus Podcast
Episode 366 -- DOJ Issues Data Security Program Requirements
The Privacy Insider Podcast Episode 13: Preserving Privacy and Social Connection with Christine Rosen of the American Enterprise Institute
AI in Employment: Navigating the Legal Landscape with Lessons from I, Robot — The Good Bot Podcast
FCPA Compliance Report: AI, Data Compliance, and Ownership - A Conversation with Andrew Hopkins
Innovations in Compliance: Data Collection & Cybersecurity with ModeOne’s Matt Rasmussen and Ryan Frye
Fintech Focus Podcast | Responding to a Cyber Attack – Key Considerations for GCs and CISOs
A Blueprint for Efficient SRRs: Mastering Your Subject Rights Workflow
The past year has introduced some uncertainty for institutional defendants facing privacy breach class actions in Canada. While Ontario’s Court of Appeal has been consistent in its approach to class actions against “database...more
When we are retained by clients to guide them through a cyber-attack in which information has been stolen by a threat actor, we almost always find that the client has unnecessarily stored sensitive information far beyond the...more
Le 26 mars 2025, le Commissariat à la protection de la vie privée du Canada (le « CPVP ») a déployé, à l’intention des organisations, un outil d’autoévaluation du risque réel de préjudice grave à la vie privée (l’« outil »)....more
On March 26, 2025, the Office of the Privacy Commissioner of Canada (OPC) released a privacy breach real risk of significant harm assessment tool (Tool) for organizations....more
The tightening of privacy and data protection compliance obligations in Canada and the United States, has led to increasingly comprehensive “data security and privacy” representations and warranties in purchase agreements, as...more
As in previous years, our team marks Data Privacy Week with a summary of important privacy developments in Canada in 2024 and highlights what a busy electoral year could mean for Canadian privacy law in 2025....more
On November 6, 2024, the Alberta government introduced Bill C-33 and Bill C-34 which aim to replace the Freedom of Information and Protection of Privacy Act with: (1) the Protection of Privacy Act; and (2) the Access to...more
Le 22 septembre 2024, un nouveau droit individuel à la portabilité des données est entré en vigueur en vertu de la législation québécoise sur la protection de la vie privée applicable dans le secteur privé, soit la Loi sur la...more
On September 22, 2024, a new individual right to data portability came into force under Quebec’s privacy legislation applicable in the private sector (the Act respecting the protection of personal information in the private...more
The review of Alberta's Personal Information Protection Act (PIPA) currently underway by the Alberta Standing Committee on Resource Stewardship (the Committee) continues, with the Privacy Commissioner of Canada recently...more
In a pair of decisions released on July 5, 2024, the B.C. Court of Appeal found that an alleged reckless failure to safeguard personal information may be sufficient to make out Privacy Act claims of "wilful violation" of...more
Le 15 mai 2024, le gouvernement du Québec a publié la version définitive du Règlement sur l’anonymisation des renseignements personnels (le « Règlement sur l’anonymisation »), qui établit les exigences auxquelles les...more
Le 1er février 2024, le Comité permanent de la sécurité publique et nationale (le « comité ») a commencé son examen du projet de loi C-26 : Loi concernant la cybersécurité, modifiant la Loi sur les télécommunications et...more
In a recent decision, Briskin v. Shopify, Inc., 2023 WL 8225346 (9th Cir. Nov. 28, 2023), the Ninth Circuit held that a Canadian-based company, Shopify, which provides a web-based payment processing platform to merchants...more
On February 1, 2024, the Standing Committee on Public Safety and National Security (Committee) began its study of Bill C-26, An Act respecting cyber security, amending the Telecommunications Act and making consequential...more
L’année 2023 a été marquée par d’importants changements dans le droit canadien de la protection de la vie privée et des données. Comme nous l’avons fait les années précédentes, nous soulignons la Journée de la protection des...more
2023 was a year of significant change for Canadian privacy and data protection law. As in previous years, to mark Data Privacy Day, we’ve summarized the most important developments from the previous year and provide a look...more
On September 26, 2023, the House of Common's Standing Committee on Industry and Technology (the Standing Committee) embarked on a comprehensive examination of Bill C-27, the Digital Charter Implementation Act. If passed, this...more
Le 22 septembre 2023, des modifications apportées à des lois québécoises sur la protection des renseignements personnels dans les secteurs public et privé sont entrées en vigueur du fait de l’adoption de la Loi 25, Loi...more
On September 22, 2023, several amendments to Quebec’s public and private sector privacy laws came into force as a result of Law 25, An Act to modernize legislative provisions as regards the protection of personal information...more
The Privacy Commissioner of Canada and other international data protection authorities recently issued a joint statement urging websites and social media platforms to do more to protect personal information from unlawful data...more
Le 22 septembre 2023, la deuxième série de modifications apportée par la Loi modernisant des dispositions législatives en matière de protection des renseignements personnels du Québec (présentée sous la forme du projet de loi...more
On September 22, 2023, the second set of amendments from Quebec’s An Act to modernize legislative provisions as regards the protection of personal information (introduced as Bill 64 and sanctioned as Law 25), to Quebec’s Act...more
Jurisdictions across the globe are implementing their own unique take on data privacy legislation, and Canada’s Quebec province is no exception. Read on to learn all about what makes this law unique and how you can comply....more
Earlier this year, the Office of the Privacy Commissioner of Canada (OPC) revised its guideline, Privacy in the Workplace, which addresses employee rights and workplace obligations with respect to employee personal...more