With security breaches regularly affecting millions (or even billions) of people, effective security breach disclosure rules are an essential part of a modern privacy law framework. It may surprise many to learn that Canada still does not have mandatory security breach disclosure rules that require companies to notify affected individuals in effect. Rules were passed in 2015, but the accompanying regulations were puzzlingly slow to emerge. The government finally released proposed regulations late in the summer with a consultation that closed earlier this week. My submission, which focused on implementation, content of notices, and proposed “indirect” notification, is posted below.
Archive for October 4th, 2017
Law Bytes
Episode 210: Meredith Lilly on the Trade Risks Behind Canada’s Digital Services Tax and Mandated Streaming Payments
byMichael Geist
July 15, 2024
Michael Geist
June 24, 2024
Michael Geist
Search Results placeholder
Recent Posts
- The Law Bytes Podcast, Episode 210: Meredith Lilly on the Trade Risks Behind Canada’s Digital Services Tax and Mandated Streaming Payments
- Abandoning Institutional Neutrality: Why the University of Windsor Encampment Agreements Constrain Academic Freedom and Freedom of Expression
- The Law Bytes Podcast, Episode 209: Peter Menzies on Why the Canadian News Sector is Broken and How to Fix It
- Why the University of Windsor Encampment Agreement Violates Antisemitism and Academic Freedom Standards
- Know When to Fold Em: The Big Risk Behind Canada’s Digital Services Tax Bet