News

FPF Releases Best Practices for Consumer Wearables and Wellness Apps and Devices

Éloïse Gratton August 18, 2016

The Future of Privacy Forum (FPF) announced yesterday the release of its Best Practices for Consumer Wearables and Wellness Apps and Devices, a detailed set of guidelines that responsible companies can follow to ensure they provide practical privacy protections for consumer-generated health and wellness data. I have been following these guidelines very closely over the last few […] Read more

News

Keeping records of consent under CASL

Éloïse Gratton August 5, 2016

The CRTC has recently released a Notice for businesses and individuals advising them on how to keep records of consent. The CRTC confirms that under section 13 of CASL, the onus is on the person who alleges they have consent to send a CEM (typically, the person who sends the CEM) to prove that they have proper consent, either implied […] Read more

News

Cyber Risk Management: Legal Privilege Strategy – Part 2 of 2

Éloïse Gratton July 29, 2016

An organization’s cyber risk management activities may result in sensitive communications and documents that the organization’s personnel expect will remain confidential. Nevertheless, in many circumstances an organization may be legally obligated to disclose those communications and documents unless the organization is able to assert a legal right – called “legal privilege” – to not make […] Read more

News

Cyber Risk Management: Legal Privilege Strategy – Part 1 of 2

Éloïse Gratton July 22, 2016

An organization’s cyber risk management activities may result in sensitive communications and documents that the organization’s personnel expect will remain confidential. Nevertheless, in many circumstances an organization may be legally obligated to disclose those communications and documents unless the organization is able to assert a legal right – called “legal privilege” – to not make […] Read more

News

Beyond Consent-based Privacy Protection: My submission in response to the OPC’s consultation on privacy and consent

Éloïse Gratton July 11, 2016 Consent

The Office of the Privacy Commissioner (OPC) has recently published a great discussion paper entitled “Consent and privacy” exploring potential enhancements to consent under PIPEDA. The OPC also launched a Consultation and Call for Submissions requesting input on its consent paper, asking whether legislative changes are required, and requesting comments  on solutions which would be helpful in […] Read more