The accountability guidance assists organizations in considering
the following essential elements of demonstrating accountability
under privacy legislation in Canada. In particular, privacy
legislation in Canada is typically interpreted as requiring:
Privacy Officer. The appointment of a
designated person to oversee compliance with Canadian privacy
legislation. In larger organizations, this may require a privacy
group or office.
Policies & Education. The establishment of
privacy policies and processes for training and on-going training
of employees with respect to those policies.
Governance of Third-Party Processors. The
inclusion of privacy guarantees and audit rights with respect to
the organization's third-party processors of personal
Inquiries & Complaints. Systems to
identify requests for access and correction of personal information
or complaints regarding the collection, use, retention or
disclosure of personal information and trained staff to respond to
those requests and complaints. This also requires organizations to
understand what personal information they have collected and who
has custody of it.
Risk Assessment. Organizations are responsible
for engaging in risk assessment in all aspects of the life-cycle of
personal information – collection, uses, new uses,
retention, disclosure and destruction of information –
and to demonstrate risk-minimization strategies through
administrative, physical and technological procedures.
Breach Response Procedures. Organizations
should have breach detection and response protocols that are
compliant with general privacy principles and any applicable
mandatory breach notification requirements.
About Fraser Milner Casgrain LLP (FMC)
FMC is one of Canada's leading business and litigation law
firms with more than 500 lawyers in six full-service offices
located in the country's key business centres. We focus on
providing outstanding service and value to our clients, and we
strive to excel as a workplace of choice for our people. Regardless
of where you choose to do business in Canada, our strong team of
professionals possess knowledge and expertise on regional, national
and cross-border matters. FMC's well-earned reputation for
consistently delivering the highest quality legal services and
counsel to our clients is complemented by an ongoing commitment to
diversity and inclusion to broaden our insight and perspective on
our clients' needs. Visit:
The content of this article is intended to provide a general
guide to the subject matter. Specialist advice should be sought
about your specific circumstances.
To print this article, all you need is to be registered on Mondaq.com.
Click to Login as an existing user or Register so you can print this article.
Don’t miss the opportunity to enjoy some holiday cheer by supporting this year’s Christmas Bureau Breakfast. We hope you will join us bright and early on Tuesday, December 13 at 7 a.m. for breakfast hosted by Edmonton media personality, Bridget Ryan, and Dentons’ own Andy Hladyshevsky.
For the past 76 years, the Christmas Bureau has been providing festive meals to Edmontonians in need. This year they need your help more than ever as they anticipate serving close to 70,000 people of whom 47 percent are anticipated to be under the age of 17. Please help us help them by buying a table or making any donation to the Christmas Bureau. No amount is too small; every nickel counts.
A table of 10 is $850 and will have your company name prominently displayed on a placard at the table. Individual tickets can also be purchased for $85. A charitable donation receipt per purchase will be available only upon request. Many groups organize fundraising activities in their offices and make their donations at the breakfast.
“It is greater than one meal. One act of kindness can impact someone for a lifetime.”
Peerenboom v Marvel Entertainment (2016 NY Slip Op 31957(U)) is drama-driven case in which the New York County Supreme Court afforded Toronto businessman Harold Peerenboom the right to obtain the private emails...
The Supreme Court of Canada released a landmark decision today giving important guidance on how Canada's federal privacy law, the Personal Information Protection and Electronic Documents Act, should be interpreted.
The Ontario Superior Court of Justice recently approved a settlement agreement in the Lowanski v The Home Depot class action, a decision that highlights adequate protection and a sufficient response can significantly reduce the legal risks after a data breach.
The October 19, 2016 judgment of the European Court of Justice in the matter brought by Patrick Breyer against the Federal Republic of Germany (the "EU Decision") raises the issue of whether an IP address is personal information under the EU Directive 95/46/EC and provides an interesting comparison with the Canadian perspective.
Register for Access and our Free Biweekly Alert for
This service is completely free. Access 250,000 archived articles from 100+ countries and get a personalised email twice a week covering developments (and yes, our lawyers like to think you’ve read our Disclaimer).