With security breaches regularly affecting millions (or even billions) of people, effective security breach disclosure rules are an essential part of a modern privacy law framework. It may surprise many to learn that Canada still does not have mandatory security breach disclosure rules that require companies to notify affected individuals in effect. Rules were passed in 2015, but the accompanying regulations were puzzlingly slow to emerge. The government finally released proposed regulations late in the summer with a consultation that closed earlier this week. My submission, which focused on implementation, content of notices, and proposed “indirect” notification, is posted below.
Archive for October 4th, 2017
Law Bytes
Episode 58: "An Earth Shattering Decision" – Marina Pavlovic on the Supreme Court of Canada's Uber v. Heller Ruling
Recent Posts
The LawBytes Podcast, Episode 58: “An Earth Shattering Decision” – Marina Pavlovic on the Supreme Court of Canada’s Uber v. Heller Ruling 
The LawBytes Podcast, Episode 57: Julia Reda on What Canada Should Learn from the European Battle over a Copyright Link Tax 
Pay to Link?: Canadian Heritage Minister Guilbeault Backs Bringing the Link Tax to Canada 
The LawBytes Podcast, Episode 56: Eloïse Gratton on Quebec’s Plan to Overhaul its Privacy Law 
The LawBytes Podcast, Episode 55: Mutale Nkonde on Racial Justice, Bias, and Technology
