First Reference Talks

Discussions on Human Resources, Employment Law, Payroll and Internal Controls

By | 6 Minutes Read

Lessons learned: largest data breach

On December 14, 2020, the Privacy Commissioner of Canada, Daniel Therrien, issued a statement regarding the recent data breach at Desjardins. The statement involved the investigation conducted under the Personal Information Protection and Electronic Documents Act (PIPEDA) concerning the largest ever data breach in Canada’s financial services sector. Plainly put, the investigation revealed that Desjardins did not demonstrate the appropriate level of attention required to protect the sensitive personal information entrusted to its care.

By | 4 Minutes Read

Principle of accountability under PIPEDA

Under Personal Information Protection and Electronic Documents Act (PIPEDA), there is nothing that prevents organizations from outsourcing the processing of data inside or outside of Canada—however, organizations must take all reasonable steps to protect that information from unauthorized uses and disclosures when it is in the hands of third party processors. This is where accountability, the first principle in PIPEDA, comes in; and there are obligations to meet regarding training staff that are highly relevant.

By | 2 Minutes Read

Three popular articles this week on HRinfodesk

The three popular articles this week on HRinfodesk deal with: an employee who described their workplace as a "sh*t hole" on Facebook was found to be justly terminated; how to prepare for marijuana legalization in Canada; and a pension and benefit plan provider who breached privacy law, causing an employee to lose life insurance coverage.

About us

Established in 1995, First Reference is the leading publisher of up to date, practical and authoritative HR compliance and policy databases that are essential to ensure organizations meet their due diligence and duty of care requirements.

Main Menu

Stay Connected