Blog

News

“Schrems II”: Impacts on agreements involving processing personal data outside the EEA

Éloïse Gratton July 31, 2020

On July 16, 2020, the Court of Justice of the European Union (CJEU) issued its judgment in case C-311/18, Data Protection Commissioner v. Facebook Ireland Ltd and Maximillian Schrems (the Schrems II Decision). The judgment invalidates the EU-U.S. Privacy Shield adequacy decision from the European Commission (the Privacy Shield Decision). It also requires EU data exporters relying on the European Commission’s […] Read more

News

Canadian Competition Bureau takes enforcement action against misleading privacy claims

Éloïse Gratton July 9, 2020

The Competition Bureau of Canada has taken its first enforcement action against an organization for allegedly violating Canadian truth in advertising laws by making false and misleading representations about its privacy practices. The enforcement action demonstrates the Bureau’s willingness to use its enforcement powers, including imposing significant administrative monetary penalties, to protect Canadian consumers against […] Read more

News

Federal Court of Appeal Rules CASL Constitutionally Valid and Provides Interpretive Guidance

Éloïse Gratton July 6, 2020

On June 5, 2020, the Federal Court of Appeal issued its decision dismissing appeals by CompuFinder challenging the constitutional validity and enforcement of Canada’s Anti-Spam Legislation (commonly known as “CASL”). The Court’s decision provides important interpretive guidance regarding CASL’s rules for implied consent and unsubscribe mechanisms and the exemption for business-to-business commercial electronic messages. Read Bradley Freedman’s bulletin on […] Read more

News

Perspectives juridiques relatives aux véhicules autonomes : Analyse des directives sur la cybersécurité des véhicules au Canada

Éloïse Gratton July 4, 2020

Les véhicules connectés et automatisés (« VC/VA ») présentent des possibilités et des risques pour l’industrie du transport canadien. Les VC/VA comportent des avantages importants qui pourraient améliorer la sécurité, l’efficacité et l’accessibilité des réseaux routiers. Par contre, en raison de leurs systèmes sophistiqués et de leur connectivité aux dispositifs et infrastructures de communication externes, les VC/VA […] Read more

News

The LawBytes Podcast, Episode 56: Eloïse Gratton on Quebec’s Plan to Overhaul its Privacy Law

Éloïse Gratton June 22, 2020

Delighted to have joined Michael Geist to discuss Bill 64 recently introduced in Quebec, amending the private sector privacy law. I discuss its implications for privacy enforcement, new accountability provisions and new privacy rights. If adopted, this bill would provide a potential model for both the federal government and the other provinces. The podcast is […] Read more

News

Amendements proposés à la loi québécoise sur la protection des renseignements personnels : Conséquences sur les entreprises

Éloïse Gratton June 15, 2020

Le 12 juin 2020, la dernière journée avant que l’Assemblée nationale du Québec n’ajourne ses travaux jusqu’au mois de septembre, le Gouvernement du Québec a présenté le projet de loi 64, Loi modernisant des dispositions législatives en matière de protection des renseignements personnels. Ce projet de loi introduirait des changements importants au droit de la […] Read more

News

Proposed amendments to Quebec privacy laws are out!

Éloïse Gratton June 12, 2020

Bill 64 was published today and provides proposed amendments to the Quebec public sector and private sector privacy laws. Amendments to the private sector law include the following : Breach reporting requirements Obligation to conduct a Privacy Impact Assessment Data portability right and de-indexation right Explicitly recognizes the right to anonymize personal information Obligation to have […] Read more

News

IAPP Report : Privacy in the Wake of COVID-19 – Remote Work, Employee Health Monitoring and Data Sharing

Éloïse Gratton June 3, 2020

Considering the rapid and massive changes underway, the IAPP and EY launched a research initiative to gain more insight into the unique ways privacy and data protection practices have been affected by the pandemic. The initial phase of the project included a survey of privacy professionals, taking a deeper look at how organizations, in general, […] Read more