IAPP Recorded Web Conference
Canada's Data Breach Notification Law Update
Recorded: December 4, 2018
Free for IAPP members
$179 nonmembers
Canadian laws requiring data breach notification have been in force for many years and continue to expand. Most recently, the new data breach notification requirements under the federal Personal Information Protection and Electronic Documents Act (PIPEDA) came into effect Nov. 1. Organizations subject to PIPEDA are now required to notify the Privacy Commissioner of Canada (OPC), affected individuals, and, in some cases, other organizations, of any breach of security safeguards involving personal information under an organization’s control if it is reasonable to believe that the breach creates a real risk of significant harm to an individual. This is a significant evolution, as PIPEDA applies broadly throughout Canada, except to provincially regulated organizations in Alberta, British Columbia and Quebec.
Although the breach notification requirements under PIPEDA are generally aligned with those that have existed in the Alberta Personal Information Protection Act (PIPA) since 2010, there are a few notable differences that privacy professionals need to understand.
Join us for this web conference as we survey the Canadian breach notification landscape, dive into the details of the new PIPEDA requirements, and consider how they compare to the Alberta obligations.
What you'll learn:
- A brief overview of data breach notification requirements in Canada.
- Details of the new PIPEDA breach notification requirements based on legislation, regulations, and OPC guidance.
- Lessons learned from Alberta, and key similarities and differences between the Alberta PIPA and PIPEDA.
- Insights on determining which laws apply, and in what circumstances.
Speakers:
Shaun Brown, Partner, nNovation
Eligible CPE credit: CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPM, and CIPT.
1.0 CPE credit