First Reference Talks

Discussions on Human Resources, Employment Law, Payroll and Internal Controls

PIPEDA

By | 28 Minutes Read

CPPA: De-identifying provisions

The Consumer Privacy Protection Act (CPPA) will make substantial changes to Canada’s privacy law. In this post I examine the significant proposed changes to the law as they relate to personal information that has been “de-identified”.

By | 8 Minutes Read

Clarification on cross-border transfers of personal information

On November 16, 2020, the federal government introduced the Consumer Privacy Protection Act (“CPPA”), which, if enacted, will provide organizations with greater clarity regarding their obligations when engaging third party service providers to process personal information outside Canada. In this blog, we explore how the core concepts of cross-border transfers of personal information for processing are evolving after a brief period of major uncertainty.

By | 6 Minutes Read

Lessons learned: largest data breach

On December 14, 2020, the Privacy Commissioner of Canada, Daniel Therrien, issued a statement regarding the recent data breach at Desjardins. The statement involved the investigation conducted under the Personal Information Protection and Electronic Documents Act (PIPEDA) concerning the largest ever data breach in Canada’s financial services sector. Plainly put, the investigation revealed that Desjardins did not demonstrate the appropriate level of attention required to protect the sensitive personal information entrusted to its care.

Footer

About us

Established in 1995, First Reference Inc. (known as La Référence in Quebec) provides Canadian organizations of any size with practical and authoritative resources to help ensure compliance.

Main Menu

Stay Connected