• About
  • Offices
  • Careers
  • Students
  • Alumni
Background Image
Logo Bennett Jones
  • People
  • Expertise
  • Resources
  • Search
  • Menu
  • Search Mobile
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z All

FEATURED AREAS

Energy
Funds & Finance
Mining
Capital Projects
All Industries
Crisis & Risk Management
Environmental, Social & Governance
Governmental Affairs & Public Policy
All Practices
Insights
Media
Events
Subscribe
COVID-19 Resource Centre
Business Law Talks Podcast
Kickstart
New Energy Economy Series
People
Featured Areas
All Practices
All Industries
About
Offices
Careers
Insights
Events
Search
Search
 
Blog

Substantial Changes to Federal Regulation of Privacy Now Imminent

November 17, 2020

Written by Ruth Promislow, Stephen Burns, Michael Whitt QC, Mathew Flynn, Sébastien Gittens and HC Lee

Comprehensive reform to Canada's privacy legislation—which privacy experts have long anticipated—is now imminent. Today, the Minister of Innovation, Science and Industry, the Honourable Navdeep Bains, tabled the Digital Charter Implementation Act, 2020 (DCIA). Among other things, the legislation will bring Canada closer to a GDPR model in terms of potential penalties for non-compliance.

The DCIA will enact the Consumer Privacy Protection Act (CPPA), Personal Information and Data Protection Tribunal Act and make amendments to other related acts. The CPPA will effectively replace the current federal legislative scheme governing the collection, use and disclosure of personal information by private-sector organizations under the Personal Information Protection and Electronic Documents Act (PIPEDA).

Compared to PIPEDA, the CPPA moves away from reliance on the CSA Model Code included with PIPEDA and instead details the specific obligations of organizations when collecting, using and disclosing personal information.

The CPPA will also grant increased powers to the Office of the Privacy Commissioner of Canada. These will including the ability to perform audits, issue binding orders and make recommendations to a tribunal that can impose monetary penalties of up to the higher of $10 million or 3 percent of the organization’s yearly gross global revenue.

An organization that knowingly contravenes obligations, such as the obligation to report data breaches, maintain a breach record or comply with an order by the Privacy Commissioner, is guilty of an indictable offence and liable to a fine of up to the higher of $25 million and 5 percent of the organization's gross global revenue.

We anticipate that the DCIA will have a substantial impact on how organizations conduct business and manage their privacy practices, policies and procedures. The Privacy & Data Protection team at Bennett Jones is available to discuss how the changes may affect an organization's privacy obligations.

Authors

  • Ruth E. Promislow Ruth E. Promislow, Partner
  • Stephen D. Burns Stephen D. Burns, Partner, Trademark Agent
  • Michael R. Whitt Q.C. Michael R. Whitt Q.C., Partner, Patent Agent, Trademark Agent
  • Matthew Flynn Matthew Flynn, Partner
  • J. Sébastien A. Gittens J. Sébastien A. Gittens, Partner, Trademark Agent
  • Hyechan (HC) Lee Hyechan (HC) Lee, Associate

Read the Spring 2021 Economic Outlook

Related Links

  • Insights
  • Media
  • Subscribe

Recent Posts

Blog

CBSA Proposes Far-Reaching Changes to Canadian Customs Valuation Law

June 21, 2021
       

Blog

Changes to the Alberta Partnership Act Now in Effect

June 15, 2021
       

Blog

The AER's Holistic Approach to Liability Management

June 15, 2021
       

Blog

What Is the Smart Renewables and Electrification Pathways Program?

June 11, 2021
       

Blog

Class Action Waiver Unenforceable Due to Unconscionability [...]

June 08, 2021
       

The firm that businesses trust with their most complex legal matters.

  • Privacy Policy
  • Disclaimer
  • Terms of Use

© Bennett Jones LLP 2021. All rights reserved. Bennett Jones refers collectively to the Canadian legal practice of Bennett Jones LLP and the international legal practices and consulting activities of various entities which are associated with Bennett Jones LLP

Logo Bennett Jones