People

Services

Industries

Firm

About

Knowledge

Careers

News

Events

Contact

Connect

Privacy Policy

Disclaimer

Terms of Use

Accessibility

Legal

Calgary

Toronto

Edmonton

Ottawa

Vancouver

New York

Montréal

Ruth E. Promislow

 Data Security and Privacy, Commercial Litigation Lawyer at Bennett Jones Toronto

Partner

Caroline Poirier

Information Technology, Privacy and Data Protection Lawyer at Bennett Jones Montreal

Suzie Suliman

Commercial Transactions Lawyer at Bennett Jones Toronto

Associate, Trademark Agent

Canadian privacy regulators found TikTok improperly collected children&rsquo;s data and lacked valid consent. TikTok will implement new privacy measures, emphasizing stronger protections for youth and transparency under Canadian law.

Joint Privacy Commissioner Investigation of TikTok Key Take Aways

Joint Privacy Commissioner Investigation of TikTok Key Take-Aways

The Office of the Privacy Commissioner of Canada (OPC) issued its findings on August 27, 2025 in connection with an investigation regarding the issue of whether individuals have the right to have information about them de-listed from search engine results.  The OPC found that in limited circumstances, there is such a right where the search results are likely to cause significant harm to an individual, such as a risk of harm to a person's safety or dignity, that outweigh any public interest in that information remaining accessible when searching the individual's name.

Right to Have Your Information De Listed

Right to Have Your Information De-Listed? The Federal Privacy Commissioner Issues Decision

Stephen D. Burns

Technology Lawyer, Intellectual Property Lawyer at Bennett Jones Calgary

Partner, Trademark Agent

J. Sébastien A. Gittens

Intellectual Property and Technology Commercialization Lawyer at Bennett Jones Calgary

On June 17, 2025, the Office of the Privacy Commissioner of Canada (OPC) released a summary of its investigation findings regarding a data breach at 23andMe, which affected nearly 7 million customers, including approximately 320,000 Canadians.

23andMes Data Breach

23andMe's Data Breach: Key Takeaways

Emma Arnold-Fyfe

Commercial Litigation Lawyer at Bennett Jones Vancouver

Associate

When we are retained by clients to guide them through a cyber-attack in which information has been stolen by a threat actor, we almost always find that the client has unnecessarily stored sensitive information far beyond the period for which it required that data. There are two key problems with this approach (or lack thereof) to data retention: (1) in the face of a cyber-attack where criminals steal your information, the organization is incurring unnecessary liability by retaining information it does not need, and (2) when it comes to personal information, retention beyond the required period can itself give rise to regulatory investigation and penalties, and to litigation claims.

Data Spring Cleaning Minimize Your Liability

Data Spring Cleaning: Minimize Your Liability

Benjamin K. Reingold

Intellectual Property Litigation Lawyer at Bennett Jones Calgary

David Wainer

Commercial Transactions Lawyer at Bennett Jones Calgary

This end-of-year overview examines the Federal Government&rsquo;s rapid expansion of AI-related funding in 2025, from large-scale investments in data centres and public compute infrastructure to programs supporting AI access, adoption and domestic research. It also explores the new commitments announced in Budget 2025 and signals key trends to watch in 2026 as Canada strengthens its AI ecosystem.

Canadas AI Efforts in 2025 A Year in Review

Canada's AI Efforts in 2025: A Year in Review

Laura Inglis

Commercial Litigation Lawyer at Bennett Jones Edmonton

Christine Plante

Civil Fraud Recovery, Employment and Shareholder Disputes Lawyer at Bennett Jones Calgary

David M. Price

Employment Services Lawyer at Bennett Jones Calgary

Effective January 1, 2026, Alberta will increase job-protected long-term illness and injury leave from 16 to 27 weeks. This update aligns Alberta with other leading Canadian jurisdictions that recently implemented similar extended leaves. Employers will need to revisit their workplace policies to ensure compliance with the new requirements. The blog explains the legislative amendments and their implications for employers.

Alberta Aligns with Other Provinces in Extending Long Term Illness and Injury Leave

Ashley L. Paterson

Commercial Litigation Lawyer at Bennett Jones Toronto

Morgan Sutherland

Lawyer at Bennett Jones Toronto

Associate 

Health Canada has proposed amendments to the Medical Devices Regulations focused on modernizing the MDEL framework. The changes would affect importer&ndash;distributor relationships, mandatory supplier disclosures, and safety documentation requirements. This update summarizes the key proposals and their potential impacts on MDEL holders and applicants.

Health Canada Proposes Amendments to MDEL Holders and Applicants

Cameron Penn

Litigation Lawyer at Bennett Jones Calgary

Tami Oguntona

Articling Student at Bennett Jones in Calgary 

Articling Student 

British Columbia has introduced new limits on when employers may request sick notes and created a 27-week unpaid leave for serious personal illness or injury. This update outlines the key legislative changes and their practical impact on employer policies.

What the Doctor Ordered British Columbia

What the Doctor Ordered: British Columbia Updates Rules on Employee Sick Notes and Introduces Serious Personal Illness and Injury Leave

This article explores how Ad Standards Canada&rsquo;s Code applies to influencer marketing and AI-generated content, focusing on accuracy, disclosure and testimonial rules, along with best practices for compliance.

Canadian Code of Advertising Standards for Influencer Marketing

Canadian Code of Advertising Standards for Influencer Marketing: Key Clauses and Application to AI-Generated Content and Influencers 

WannaCrypt Ransomware Attacks on Out-of-Date Systems

Authors


Bennett Jones Blog WannaCrypt Ransomware Attacks on Out-of-Date Systems Ruth E. Promislow and Michael R. Whitt May 15, 2017 Authors Ruth E. PromislowPartner The serious WannaCrypt ransomware worm which ran roughshod over internet connected computers worldwide on Friday and Saturday appears to have been stymied, at least temporarily, by security researchers. In the meantime, Microsoft has provided patches for out-of-date operating systems, apparently as far back as Windows97, which is still running on some legacy systems. Microsoft has provided a blog post update related to this cyber breach/ransomware threat, which may provide assistance. Note that there is no consensus amongst cybersecurity advisors or researchers about whether or not to pay the ransom. Some reports have indicated that monitoring of Bitcoin's blockchain indicates that ransom payments are likely the exception rather than the rule, as volumes of transactions related to the malware's instructions for payment have apparently been low. The scope and severity of this ransomware threat highlights the increasing sophistication of technology being used to perpetrate cyber threats, and the increasing likelihood that organizations may be subject to such attack. Read more on Microsoft's guidance here. Share by Email Social Media Download Download Subscribe Republishing Requests For permission to republish this or any other publication, contact Peter Zvanitajs at ZvanitajsP@bennettjones.com. For informational purposes only This publication provides an overview of legal trends and updates for informational purposes only. For personalized legal advice, please contact the authors. Authors Ruth E. Promislow, Partner Toronto • 416.777.4688 • promislowr@bennettjones.com