Guidance on how to protect personal information using adequate safeguards

My colleague Bradley Freedman published yesterday short piece entitled “Regulatory Guidance for Safeguarding Personal Information” in which he reviews the Office of the Privacy Commissioner of Canada (OPC) recently issued “Interpretation Bulletin – Safeguards” which provides non-binding guidance for compliance with statutory obligations to safeguard personal information. The Interpretation Bulletin is timely in light of recent upcoming amendments to the Personal Information Protection and Electronic Documents Act that impose data security breach notice, reporting and record keeping obligations.

In the U.S., the FTC also released in June 2015 a guide entitled “Start with Security: A Guide for Business” which provides for similar security requirements than the OPC guidance document.

This content has been updated on May 2, 2024 at 16 h 30 min.