On October 19, 2017, the Canadian Radio-television and Telecommunications Commission (CRTC) issued two key decisions in a contested enforcement proceeding brought by Compu.Finder. These recent decisions stem from an earlier CRTC enforcement proceeding against Compu.Finder, which resulted in the first administrative monetary penalty (AMP) issued under Canada’s anti-spam legislation (commonly referred to as CASL). In […]
Understanding the law is a good start. Knowing what consent you are claiming, being fully compliant when sending messages and respecting individual’s right to chose – these are all solid foundations for a CASL compliant program. It is NOT CRTC’s place to tell you what to do in order to be compliant.The CRTC recognizes that […]
Elizabeth Denham’s latest blog busts the myths for UK small and medium sized businesses transferring personal data to and from the EEA Like everyone in the UK right now, we are following the twists and turns of the Brexit negotiations. The sharing of customers’, citizens’ and employees’ personal data between EU member states and the […]
The Privacy Commissioners of Canada, Alberta and British Columbia have jointly issued guidelines to help organizations obtain meaningful consent from individuals for the collection, use and disclosure of their personal information. The previously written Guidelines came into effect in January 2019 and are now applied by the Commissioners when evaluating organizational conduct. The Guidelines set […]
PIPEDA is broken down into 10 core principles. They reflect and evaluate how a business is required to handle personal information and to ensure that best practices are in place and used. Following is an overview of each of these principles as well as one guidance on how they relate to cloud service providers. 1. […]
European Citizens have a fundamental right to privacy, it is important for organisations which process personal data to be cognisant of this right. When carried out effectively, anonymisation and pseudonymisation can be used to protect the privacy rights of individual data subjects and allow organisations to balance this right to privacy against their legitimate goals. […]
Despite the rapid innovation and advancements in cybersecurity, chief information security officers (CISOs) and their teams must still contend with a fundamental strategic disadvantage of protecting data: the fact that cybercriminals always have the element of surprise. That is no small factor. As Sun Tzu counseled in The Art of War, one of the main keys to […]