Daniel Michaluk Quoted in The Lawyer’s Daily on Ottawa Releasing Proposed Regulations on Data Breach Notifications

The Lawyer’s Daily quoted Hicks Morley’s Daniel Michaluk in a September 14, 2017 article titled “Ottawa releases proposed regulations on data breach notifications.” The article explores how private sector organizations following federal privacy law will have to provide breach notifications to customers and the privacy commissioner where it is reasonable to believe that the breach creates a “real risk of significant harm”.

Proposed Data Breach Regulations Under PIPEDA Published

On September 2, 2017, the federal government published the proposed regulatory text of the Breach of Security Safeguards Regulations (Regulations) made under the Personal Information Protection and Electronic Documents Act (PIPEDA). Interested persons have been invited to make representations on the Regulations. As previously reported, amendments to the PIPEDA enacted by the Digital Privacy Act…

Ten Incident Response Tips – Part 1

Responding to a data security incident is as much art as science. Whatever size your organization and whatever risks you face, you should have a detailed incident response plan to guide the efforts of a defined incident response team…

Federal Government Consults on PIPEDA Data Breach Regulations

On March 4, 2016, the federal government posted Data Breach Notification and Reporting Regulations (Regulations) for public discussion. Amendments to the Personal Information Protection and Electronic Documents Act (PIPEDA) enacted by the Digital Privacy Act (Bill S-4) will, upon proclamation, require private sector organizations to notify the public in circumstances where security safeguards involving their…

Responding to Data Breaches

Materials Responding to Data Breaches – PowerPoint Slides Case Law Assessing Non-Pecuniary Damages for Breach of Privacy The Science of Data Breach Prevention A Model for Achieving Reasonable Data Security through Information and Instruction   Agenda Most organizations will experience a significant data security incident in the next two years. A poorly executed response can multiply…

Hicks Morley Information and Privacy Post – 2013

Dear Friends: It’s early October 2013, and here’s what’s on our minds. With great pleasure, we’ve released this year’s Information and Privacy Post – a review of 60 information management and privacy cases that caught our attention in the last year. We like the exercise of producing the Post because pulling together and organizing recent…

New Privacy Legislation in Manitoba

Organizations with operations in Manitoba need to be aware that the Manitoba Legislature has recently passed new privacy legislation that will apply to the private sector and, to a lesser degree, to the not-for-profit sector – The Personal Information Protection and Identity Theft Prevention Act (“PIPITPA” or the “Act”). PIPITPA will establish rules for the…