In late 2021, the Quebec legislature passed “The Privacy Legislation Modernization Act” or Law No. 25 (“Law 25”), which was designed to modernize and make significant changes to Quebec’s existing privacy framework....more
Congress has repeatedly failed to pass comprehensive national data protection legislation, and the states are rapidly filling the void with laws that impose different requirements on a state-by-state basis. Most of these...more
California Privacy Protection Agency Releases Revised Regulations - With the effective date less than three months away, and ahead of a Board Meeting on October 28 and 29, the California Privacy Protection Agency released...more
As states have continued to debate and pass new comprehensive privacy statutes – such as those in Virginia and Colorado – a common refrain from business leaders is the need for a comprehensive federal privacy statute that...more
Bill 64 largely tracks with already existing privacy regulations in other jurisdictions and will take effect over the course of the next three years, with some provisions taking effect in September 2022. On September 21...more
On Nov. 17, 2020 the government of Canada introduced Bill C-11, also known as the Digital Charter Implementation Act, 2020 (the Act). The Act would create the Consumer Privacy Protection Act (CPPA), not to be confused with...more
Back in November, I wrote on this blog about Big Data being one of the challenges that is forcing technology to move more to the data sooner in the discovery process. One of the most notable fun facts that illustrate just how...more
A year full of firsts, 2020 introduced a number of new consumer data privacy protection laws. While the California Consumer Privacy Act (CCPA) is one of the most well-known, other states have also adopted their own privacy...more
The DCIA was introduced on November 17, 2020, to replace Canada’s current national privacy law for the private sector, the Personal Information Protection and Electronic Documents Act (PIPEDA). PIPEDA came into force in...more
At the beginning of 2020, a Federal privacy law, similar to that of GDPR or PIPEDA, was a faint and distant reality. However, in light of some mobile device and other monitoring being considered because of the COVID-19...more
Most experts agree that whichever regulatory jurisdiction an organisation is subject to, there are five common fundamentals involved in providing effective corporate compliance....more
Over the last few years, data privacy has been brought in to the public focus more than ever before. What information is being collected about you, how is it being used, and who has the ability to access it. ...more
The Internet Society’s Online Trust Alliance (OTA) released a report this week that measured 1200 U.S.-based organizations’ readiness for three major global privacy regulations: the General Data Protection Regulation (GDPR)...more
In this month's Privacy & Cybersecurity Update, we examine several recent U.K.-related cybersecurity developments and the SEC's risk alert reminding investment advisers and broker-dealers to follow through on implementing...more
Seeking input from interested third parties, the Office of the Privacy Commissioner of Canada (OPC) announced a revision to its policy position on transborder data flow under the federal Personal Information Protection and...more
For those of a certain generation the concept of “The Borg” invokes a seemingly inevitable force that pulls opponents into the “Collective” through a process of assimilation. According to the inestimable source, Wikipedia,...more
The breach notification obligations for Canadian organizations will change significantly in 2018: (i) the European Union's General Data Protection Regulation (GDPR) came into force on May 25, 2018; while (ii) new reporting...more
The EU General Data Protection Regulation (“GDPR”) came into force on May 25, 2018. With so much recent focus on preparing for and meeting this deadline, there is no doubt that companies will have breathed a sigh of relief to...more
The European Union’s General Data Protection Regulation (GDPR) came into force on May 25, 2018. To assist Canadian organizations with their potential compliance efforts with respect to this legislation, the following is...more
The European Union’s General Data Protection Regulation (GDPR) will come into force on May 25, 2018. To assist Canadian organizations with their potential compliance efforts with respect to same, the following is intended to...more
Arnall Golden Gregory LLP is pleased to provide you with the Compliance News Flash, brought to you each Friday. This weekly update is your source for timely background screening and immigration-related news that is important...more
Canada - Data Breach Notification Provisions of PIPEDA Act Go Into Effect Nov. 1, 2018 - • Pursuant to a March 26, 2018 Order in Council, the mandatory breach notification provisions of Canada’s Personal Information...more