2019
News
Security Incident: The Quebec Superior Court confirms that the mere fact of being a victim of an incident is insufficient to support a claim for damages
Éloïse Gratton July 16, 2019
Security incidents involving consumers’ personal information are increasingly being reported in the media. Consumers are worried about fraud or identity theft and companies that have suffered such incidents are often the subject of class actions, with more than 80 class actions involving privacy breaches currently in progress across the country. The Superior Court of Québec […] Read more
News
Cybersecurity Guidance for Small and Medium Organizations
Éloïse Gratton July 11, 2019
Small and medium organizations are increasingly being targeted by cyber criminals, but often have limited financial and human resources available to implement comprehensive cybersecurity measures. In March 2019, the Canadian Centre for Cyber Security issued Baseline Cyber Security Controls for Small and Medium Organizations to help Canadian small and medium organizations get the most out […] Read more
News
Marketing Disrupted: Balancing data and desire (accenture podcast)
Éloïse Gratton July 2, 2019
I am delighted to have contributed to this great podcast dealing with marketing and privacy. In this podcast, Amber and Brent first interview Justin De Graaf, Head of Ads Research and Insights at Google, about how the tech giant makes its money and drives the global economy. They then interview me about whether a company […] Read more
News
Privacy Breach Response – Prevention of Future Breaches
Éloïse Gratton June 26, 2019
Canadian privacy commissioners have emphasized the importance of the final step of a privacy breach response process — prevention and lessons learned. The recent decision by the British Columbia Court of Appeal in Ari v. Insurance Corporation of British Columbia confirms that an organization’s failure to learn from past privacy breaches and prevent future privacy […] Read more
News
Building a Privacy-Compliant Autonomous Vehicles Business
Éloïse Gratton June 3, 2019
Canada’s Privacy Commissioner, commenting on the House of Commons TRAN report on automated vehicles in May of 2018, likened autonomous vehicles (“AV”) to “smartphones on wheels”. While apt, the comparison is a significant understatement. The volume of information generated by the daily activities of even the most enthusiastic user of smartphone technology pales in comparison […] Read more
News
IAPP Canada 2019
Éloïse Gratton May 21, 2019
BLG is proud to be a platinum sponsor of the IAPP Canada Privacy Symposium 2019 taking place May 22-24 at the adjoining Metro Toronto Convention Centre (North Building) and InterContinental Hotel. Members of our Privacy and Data Protection Group and Cybersecurity Law Group will be speaking throughout the conference : 1. Dealing with Regulators I will be presenting on Wednesday May 22, 2 […] Read more
News
CRTC Issues its First Penalty Against a CEO for Violating Canada’s Anti-Spam Legislation
Éloïse Gratton May 8, 2019
On April 23, 2019, the Canadian Radio-television and Telecommunications Commission (CRTC) issued Compliance and Enforcement Decision 2019-111, imposing an administrative penalty of $100,000 on Brian Conley — the President and Chief Executive Officer of nCrowd — for infringing consent and unsubscribe requirements under Canada’s Anti-Spam Legislation (CASL). Read our bulletin on this topic. Read more
News
Important Privacy Commissioner Consultation Impacting Cross-Border Dataflows and Outsourcing
Éloïse Gratton May 1, 2019
In a significant departure from its guidelines and decisions under the Personal Information Protection and Electronic Documents Act, the Privacy Commissioner of Canada introduced in an April 9, 2019 decision a requirement for an organization to obtain consent for outsourcing activities involving personal information to a service provider outside of Canada. In light of this significant change […] Read more
News
Financial Industry Regulator Issues Cybersecurity Guidance
Éloïse Gratton April 2, 2019
In December 2018, the United States Financial Industry Regulatory Authority issued a Report on Selected Cybersecurity Practices – 2018 to help broker-dealer firms improve their cybersecurity programs. The Report provides detailed recommendations for managing common cyber risks, and includes a list of core cybersecurity controls for small firms. The Report provides guidance that is consistent […] Read more
News
Supreme Court of Canada Finds Teacher Guilty of Voyeurism for Camera Pen Recordings
Éloïse Gratton March 21, 2019
In the Fall 2018 Education Law Newsletter, BLG reported on the Ontario Court of Appeal decision in R. v. Jarvis. In that decision, a high school English teacher was acquitted of voyeurism for using a camera pen to surreptitiously film female students’ chests. On February 14, 2019, the Supreme Court of Canada unanimously reversed the Ontario […] Read more