Miller Thomson’s Privacy and Information Protection Group recognizes that many clients are seeking guidance in determining what their privacy obligations are and how to move their organization towards full compliance with relevant privacy legislation. With expertise across the country, our Group provides privacy advice and support that is based on a solid understanding of a client’s industry, their organization’s operations, the statutory and regulatory landscape, and the essential electronic and information technology components. We work with private companies and public sector organizations across a range of industries, including the health sector where our lawyers have developed particular expertise in relation to health information and eHealth initiatives.
Our services include the development of a comprehensive Privacy Implementation Framework, to move your organization from its current state to full compliance, including audits, reviews, recommendations, model agreements, standard contractual provisions, staff training and education, meetings, etc. This option will provide you with the fullest range of privacy services that your organization requires to implement best privacy practices and to meet all legislative and regulatory requirements.
We also provide:
- Development or review of your organization’s information practices, including privacy, confidentiality and security policies and procedures and agreements
- Assistance with Privacy Audits, Privacy Questionnaires and Privacy Risk Analysis tools and identifying gaps, issues and potential problems
- Development of draft privacy statements, notices, consent forms, confidentiality pledges, web statements and brochures
- Assistance with regulatory compliance with federal and provincial privacy legislation, guidelines and codes
- Assistance with managing privacy breaches, investigations, notifications, complaints and access requests
- Advice and assistance regarding the implications of the U.S. Patriot Act and risk management strategies
- Privacy advice to businesses seeking to do business in different Canadian jurisdictions or U.S. or international companies seeking to do business in Canada
- Development or review of your organization’s forms and procedures for information access, correction and complaints processes
- Development or review of contractual arrangements, including information-sharing agreements, provider agreements and technology agreements
- Specialized assistance with privacy issues such as those involving clinical trials, outsourcing arrangements and regional and provincial electronic health records, databases and networks
- On-site and in-house educational and training seminars for senior management, board of directors or staff
Imran Ahmad comments on WannaCry cyberattack in The Globe and Mail
Imran Ahmad is quoted in a Globe and Mail article discussing the recent global WannaCry cyberattacks. Read the article: Canada spared worst of the cyberattack but full extent still unknown (subscription only)
Imran Ahmad discusses cybersecurity effect on class action litigation
Imran Ahman is quoted in a Canadian Lawyer article, commenting on the growing number of cyberbreach victims seeking restitution through class action lawsuits. Read the article: “The Era of No Excuses“
Imran Ahmad comments on cybersecurity regulations in Financial Post
Imran Ahmad is quoted in a Financial Post article concerning new cybersecurity regulations for financial institutions that recently came into effect in New York state, and what implications they could have on financial institutions in Canada. Read the article: “New York’s...
Imran Ahmad comments on new rules surrounding transparency in data breaches
Imran Ahmad is quoted in a CBC article on upcoming changes to Canadian privacy law, forcing Canadian companies to disclose cyberattacks and the specific risks that could lead to attacks in the future. Read the full article: “Here’s why reports...
Imran Ahmad comments on upcoming data breach notification requirements
Imran Ahmad is quoted in a Canadian Underwriter article on upcoming federal regulations requiring organizations to notify individuals of data breaches when there is a “real risk of significant harm.” Read the full article: “Breach Notification“
Imran Ahmad quoted in article on data breaches and cyber security
In the article “Small, medium Canadian business still in denial on cyber security: Expert”, the author describes panelist recommendations from a workshop hosted by Miller Thomson and MNP, including several recommendations made by Miller Thomson partner, Imran Ahmad.
Imran Ahmad comments on unlawful CSIS data collection
Imran Ahman is quoted in an IT World article discussing the Canadian Security Intelligence Service (CSIS) retaining data in violation of the CSIS Act which states personal information can only be held “to the extent strictly necessary”. Read the article:...
Imran Ahmad discusses proposed Bill C-51 amendments on CBC
Imran Ahmad was interviewed on CBC Radio discussing recent proposals in the federal government’s green paper on national security that would enhance the investigative capabilities of police to track suspected criminals in the digital age, and how the need for better law enforcement should...
Imran Ahmad comments on DDoS attack
Imran Ahmad is quoted in an Insurance Business Canada article discussing a Distributed Denial of Service (DDoS) attack that disrupted a provincial online literacy exam, affecting nearly 150,000 students across Ontario. Read the article: “DDoS attack disrupts Grade 10 literacy exams“
Imran Ahmad interviewed on cybercrime at Fraud and Breach Prevention Summit
Imran Ahmad was part of a panel of cybercrime experts interviewed by Information Security Media Group at the recent Fraud and Breach Prevention Summit in Toronto. Listen to the audio: Helping Police Solve Cybercrimes
Kathryn Frelick speaks on cyber risk in the health sector
Kathryn Frelick presents on the subject of “Cyber Risk in the Health Sector” at the 2017 CLEAR Annual Educational Conference in Denver, Colorado.
Kathryn Frelick speaks at Privacy Law Summit 2017
Kathryn Frelick will be presenting at the OBA on Beyond PHIPA: What Other Legislation Do You Need to Consider?
Imran Ahmad speaks at cyber security & intelligence conference
Imran Ahmad is a speaker at the 2017 International Cyber Security & Intelligence Conference (ICSIC). Miller Thomson clients are eligible to receive a 15% ticket discount before March 31, 2017. Contact us for the promo code.
Imran Ahmad speaks on preparing for a cyberattack
Imran Ahmad presents “How to Be Prepared for a Cyberattack” (“Comment se préparer et répondre à une cyber-attaque”) for the Canadian Bar Association – Québec Branch.
Imran Ahmad moderates session at Ontario Bar Association’s 2017 Privacy Law Summit
Imran Ahmad moderates the “Mitigating Privacy Compliance Risk in Business Transactions” session at the Ontario Bar Association’s 2017 Privacy Law Summit.
Kathryn Frelick speaks on privacy protection
Kathryn Frelick speaks on “Privacy Protection of Personal Information: Best Practices for Reducing Liability” at the Ontario Hospital Association’s Current Governance Trends and Opportunities for Not-for-Profit Organizations conference.
Imran Ahmad speaks on supply chain cyber risks
Imran Ahmad presents a webinar on “Cyber Risks in the Supply Chain and its Impact on Canadian Manufacturers” for the Canadian Manufacturers & Exporters.
Imran Ahmad speaks on cybersecurity breaches
Imran Ahmad speaks on a panel discussing “The Role of In-house Counsel in Cybersecurity Breaches” for the Canadian Bar Association’s Corporate Counsel section.
Imran Ahmad speaks on cybersecurity
Imran Ahmad presents “Cybersecurity in the Customer Contact Space” at the Greater Toronto Area Contact Centre Association Conference: Disruptors – The OLD and the NEW.
Imran Ahmad speaks at Fraud and Breach Prevention summit
Imran Ahmad speaks on a panel discussing “How to Effectively Work with Law Enforcement and Regulators “.
Cybersecurity: Trends and Advice for Charities and Not-for-Profit
Miller Thomson’s Social Impact Group launches its series of breakfast seminars specifically targeting charities, non-profit organizations and social enterprises. Join us for the first breakfast on cybersecurity. **Please note this seminar will be delivered in French. Date: Wednesday, April 5,...
Canada’s Anti-Spam Legislation: Are you ready?
Troy Baril presents at the RRHBA Board Meeting.
Canada’s Anti-Spam Legislation- Are you ready?
Troy Baril will present to members of the RRHBA in Regina.
Canada’s Anti-Spam Legislation: Are you ready?
Canada’s Anti-Spam Law (CASL) comes into force on July 1, 2014. CASL is one of the toughest laws of its kind in the world, and it has the potential to impact any individual or organization who sends e-mails, texts, social media...
Preparing for Canada’s Anti-Spam Legislation
Canada’s Anti-Spam Legislation (CASL) comes into force on July 1, 2014. Join us for a lunch & learn session outlining what CASL is and what you need to do to become compliant. Click here for full details.
Canada’s Anti-spam Legislation (CASL)
J. Andrew Sprague presents on Canada’s Anti-spam Legislation (CASL) at the Law Society of Upper Canada (LSUC) and the Ontario Bar Association (OBA)’s joint program entitled “Countdown to Canada’s Anti-Spam Legislation: Make Sure You Are Ready” on April 7, 2014....
The New Canadian Anti-Spam Legislation
Brian Curial presents to the Strathcona Rotary Club on the new Canadian Anti-Spam Legislation.
Canada’s Anti-Spam Law: Are you ready?
Brian Curial presents a complimentary seminar on the new Canadian Anti-Spam Law.
Canada’s Anti-Spam Legislation (CASL): Are you ready?
J. Andrew Sprague discusses Canada’s anti-spam legislation (CASL) at Miller Thomson LLP’s Charities and Not-for-Profit Sector Developments Program on Thursday, February 27, 2014.
Are You Ready for Canada’s Anti-Spam Law?
Jennifer Babe and Kathryn Frelick speak to the Guelph Chamber of Commerce on Getting Ready for Canada’s Anti Spam Legislation on Feb. 27th, 2014. Click here for more details
Companies need to plan for handling a cybersecurity breach
The Globe and Mail, Report on Business
Our shift to a digital society has seen the emergence of a new kind of crime: stealing data and attacking company networks, whether for financial gain, to send a political message, or sometimes simply to prove a point.
U.S. case spotlights cyber coverage
The Lawyers Weekly
This article originally appeared in the March 24, 2017 issue of The Lawyers Weekly. In 2016, “cyber” had increased prominence in the minds of organizations and with good reasons. “Hacking” not only made the headlines because of allegations that hackers were interfering with the U.S....
Check under the hood: make it part of your due diligence process
You have acquired a competitor to help your business grow by accessing new customers and technology. However, you learn shortly afterwards the target company had a major data breach that it didn’t disclose to bidders.
The Board’s Role in Cybersecurity
BOARDS: Official Publication of the Governance Centre of Excellence
(Co-authored with Poonam Puri, Osgoode Hall Law School) Increasingly, cybersecurity is at the top of the agenda for most hospital boards, audit/risk committees and senior management teams. Board directors are wondering whether they are asking the right questions and making the...
Canada’s Anti-Spam Legislation (CASL) Update
Chapter 28 in Miller Thomson’s Business Laws of Canada, 2015.
Chapter 22 in Miller Thomson’s Business Laws of Canada, 2015.
Social Media Privacy Risks
Federated Press Conference: Managing Privacy Compliance
Canadian Anti-Spam Enforcement in Full Swing as Fines Issued
Porter Airlines Inc. has agreed to pay the amount of $150,000 as part of an Undertaking concerning alleged violations of paragraphs 6(1)(a), 6(2)(b) and 6(2)(c) and non-compliance with paragraph 11(1)(b) and subsection 11(3) of Canada’s Anti-Spam Legislation (CASL), as well...
First Fine Issued Under Canada’s Anti-Spam Law
The CRTC has issued its first notice of violation under CASL and it carries a substantial penalty. Quebec based Compu-Finder could pay an administrative monetary penalty of $1.1 million for four violations of Canada’s Anti-Spam Law. CASL prohibits parties from...
What You Need to Know About CASL Computer Program Installation Provisions
The CASL provisions regulating the installation of computer programs come into force on January 15, 2015. Read about the CASL computer program installation provisions and the effect these provisions may have on your business.
Harley-Davidson acquires assets of Fred Deeley Imports
Counsel to Harley-Davidson