Bloomberg Law
Oct. 29, 2018, 6:35 PM

Canada Privacy Office Issues Data Breach Reporting Guidance

Daniel R. Stoller
Daniel R. Stoller
Senior Legal Editor

Canada’s privacy office has released final guidance on the country’s mandatory data breach notification rules that take effect Nov. 1.

Canadian businesses and multinational companies will have to meet the updated rules under the Personal Information Protection and Electronic Documents Act (PIPEDA). Until now, Canadian companies only followed provincial laws or voluntary standards for breach notifications.

“Companies outside of Canada with a Canadian nexus in addition to Canadian companies will need to address the mandatory breach reporting obligations,” Melissa Krasnow, privacy and data security partner at VLP Law Group LLP in Minneapolis, Minn., told Bloomberg Law.

Under the guidance released ...

Learn more about Bloomberg Law or Log In to keep reading:

Learn About Bloomberg Law

AI-powered legal analytics, workflow tools and premium legal & business news.

Already a subscriber?

Log in to keep reading or access research tools.