Written by Ruth E. Promislow and Katherine Rusk
This 10-step guide will walk you through the upcoming changes to the Personal Information Protection and Electronic Documents Act (PIPEDA), the factors to consider in being prepared under PIPEDA and other related considerations. This guide is no replacement for targeted legal advice. If you are an organization affected by the changes to PIPEDA, please contact us to determine what you need to do to be prepared and how you can minimize your organization’s potential legal exposure. There is no “one size fits all” when it comes to managing compliance with privacy regulation.
The biggest changes, which will be coming into force on November 1, 2018, are:
- Mandatory breach reporting to the Office of the Privacy Commissioner (OPC).
- Mandatory breach notification to impacted individuals.
- Mandatory breach record-keeping.
- Financial penalties of up to $100,000 for non-compliance with items 1 to 3.