As of November 14, 2019, investment dealers engaged in trading activity in Canadian markets (Dealer Members) that are regulated by the Investment Industry Regulatory Organization of Canada (IIROC) are now subject to new stringent reporting obligations for cybersecurity incidents. These new rules are the result of amendments to Rules 3100 and 3703 of the IIROC Rules that apply to all Dealer Members.
Three Ontario hospitals were recently targeted in ransomware attacks that highlight the emerging risk of cyberattacks on public institutions and healthcare providers. The CBC first reported these attacks, which are the latest in a growing list of public institutions whose computer systems are infiltrated by hackers. Are you prepared? Learn more in this HR HealthCheck.
A recent wave of ransomware attacks across North America highlights the emerging risk of cyberattacks on municipalities and municipal agencies and boards. Are you prepared? Learn more in this FTR Now.
In This Issue: The Gig Economy, AI In the Workforce and more!
Effective June 13, 2019, corporations that are subject to the Canada Business Corporations Act must maintain and provide access to a register of individuals who, directly or indirectly, have “significant control” over the corporation.
Yesterday, the Supreme Court of Canada held that a teacher committed the crime of voyeurism by surreptitiously recording images of female high school students. In finding that the students had a reasonable expectation of privacy, the Court relied on the trust imposed on teachers and the need for a safe and orderly school environment – a positive for school boards.
In this Update, we discuss a recent decision of Arbitrator Nyman with respect to what constitutes a collective agreement and which re-affirms the longstanding principle that the interpretation of a collective agreement is first to be based on the plain and ordinary meaning of the written words. We also discuss a topical case with respect to a grievor’s obligation to produce arguably relevant medical documentation in the context of a grievance arbitration – notwithstanding the contractual restrictions that may exist.
The Information and Privacy Commissioner of Ontario (IPC) has published A Guide to Privacy and Access to Information in Ontario Schools (Guide). The Guide provides a succinct overview of a school board’s responsibilities under the Municipal Freedom of Information and Protection of Privacy Act (MFIPPA or Act). The Act obliges school boards to protect individual privacy and maintain the freedom of information for records in their custody or control. The Guide provides particularized examples from IPC decisions concerning school boards.
On November 5, 2018, the CRTC published its Compliance and Enforcement Information Bulletin CRTC 2018-415 (Bulletin), which is a guideline regarding the prohibition against facilitating spam under Canada’s Anti-Spam Law (CASL). Section 9 of CASL imposes prohibitions and penalties for activities that facilitate the contravention of the anti-spam provisions in sections 6-8. The non-facilitation prohibition…
As we previously reported, as of November 1, 2018, the Personal Information Protection and Electronic Documents Act (PIPEDA) will require notification to affected individuals and the federal Office of the Privacy Commissioner (OPC) when a security incident involving personal information results in a “real risk of significant harm.” The supporting regulations published March 27, 2018…