Miller Thomson’s Privacy and Information Protection Group recognizes that many clients are seeking guidance in determining what their privacy obligations are and how to move their organization towards full compliance with relevant privacy legislation. With expertise across the country, our Group provides privacy advice and support that is based on a solid understanding of a client’s industry, their organization’s operations, the statutory and regulatory landscape, and the essential electronic and information technology components. We work with private companies and public sector organizations across a range of industries, including the health sector where our lawyers have developed particular expertise in relation to health information and eHealth initiatives.
Our services include the development of a comprehensive Privacy Implementation Framework, to move your organization from its current state to full compliance, including audits, reviews, recommendations, model agreements, standard contractual provisions, staff training and education, meetings, etc. This option will provide you with the fullest range of privacy services that your organization requires to implement best privacy practices and to meet all legislative and regulatory requirements.
We also provide:
- Development or review of your organization’s information practices, including privacy, confidentiality and security policies and procedures and agreements
- Assistance with Privacy Audits, Privacy Questionnaires and Privacy Risk Analysis tools and identifying gaps, issues and potential problems
- Development of draft privacy statements, notices, consent forms, confidentiality pledges, web statements and brochures
- Assistance with regulatory compliance with federal and provincial privacy legislation, guidelines and codes
- Assistance with managing privacy breaches, investigations, notifications, complaints and access requests
- Advice and assistance regarding the implications of the U.S. Patriot Act and risk management strategies
- Privacy advice to businesses seeking to do business in different Canadian jurisdictions or U.S. or international companies seeking to do business in Canada
- Development or review of your organization’s forms and procedures for information access, correction and complaints processes
- Development or review of contractual arrangements, including information-sharing agreements, provider agreements and technology agreements
- Specialized assistance with privacy issues such as those involving clinical trials, outsourcing arrangements and regional and provincial electronic health records, databases and networks
- On-site and in-house educational and training seminars for senior management, board of directors or staff
Imran Ahmad authors Cybersecurity in Canada
LexisNexis has released Cybersecurity in Canada: A Guide to Best Practices, Planning, and Management. Authored by Imran Ahmad, with contributions from Rosa Mauro, Lampros Stougiannos, and other industry experts, this publication provides a comprehensive analysis of the increasingly critical area of cybersecurity,...
Imran Ahmad named to OBA section executives
Imran Ahmad has been named Vice-Chair of the Ontario Bar Association’s Privacy and Access to Information Law Section executive for the 2017-2018 term. He will also serve on the Information Technology & Intellectual Property Law Section executive as a Member-at-Large. Executive members are responsible for facilitating learning, advocacy...
Eve Munro comments on Canada’s Anti-Spam Legislation in the March/April 2012 issue of the Mortgage Journal.
Eve Munro, a lawyer with Miller Thomson LLP’s Vancouver office, practicing in the area of intellectual property and information technology, says “The essential requirements [of CASL] are that commercial electronic messages may not be sent unless prior consent has been...
Imran Ahmad speaks at Union Internationale des Avocats’ 61st Congress
Imran Ahmad speaks at Union Internationale des Avocats’ 61st Congress on, “Photography 3.0: Speech, Privacy and the New Normal”.
Imran Ahmad speaks at “Privacy Across Borders” seminar
Imran Ahmad presents at the Ontario Bar Association’s “Privacy Across Borders” seminar on “What is the Reach of Canadian Law Outside Canada?”
Kathryn Frelick speaks on cyber risk in the health sector
Kathryn Frelick presents on the subject of “Cyber Risk in the Health Sector” at the 2017 CLEAR Annual Educational Conference in Denver, Colorado.
Kathryn Frelick speaks at Privacy Law Summit 2017
Kathryn Frelick will be presenting at the OBA on Beyond PHIPA: What Other Legislation Do You Need to Consider?
Imran Ahmad speaks at cyber security & intelligence conference
Imran Ahmad is a speaker at the 2017 International Cyber Security & Intelligence Conference (ICSIC). Miller Thomson clients are eligible to receive a 15% ticket discount before March 31, 2017. Contact us for the promo code.
Imran Ahmad speaks on preparing for a cyberattack
Imran Ahmad presents “How to Be Prepared for a Cyberattack” (“Comment se préparer et répondre à une cyber-attaque”) for the Canadian Bar Association – Québec Branch.
Imran Ahmad moderates session at Ontario Bar Association’s 2017 Privacy Law Summit
Imran Ahmad moderates the “Mitigating Privacy Compliance Risk in Business Transactions” session at the Ontario Bar Association’s 2017 Privacy Law Summit.
Kathryn Frelick speaks on privacy protection
Kathryn Frelick speaks on “Privacy Protection of Personal Information: Best Practices for Reducing Liability” at the Ontario Hospital Association’s Current Governance Trends and Opportunities for Not-for-Profit Organizations conference.
Imran Ahmad speaks on supply chain cyber risks
Imran Ahmad presents a webinar on “Cyber Risks in the Supply Chain and its Impact on Canadian Manufacturers” for the Canadian Manufacturers & Exporters.
Imran Ahmad speaks on cybersecurity breaches
Imran Ahmad speaks on a panel discussing “The Role of In-house Counsel in Cybersecurity Breaches” for the Canadian Bar Association’s Corporate Counsel section.
Webinar – Privacy: What Canadian businesses need to know to be GDPR compliant
The European Union’s General Data Protection Regulation (“GDPR”) is slated to come into force in May 2018. The GDPR will have far-reaching consequences for businesses located within and outside the European Union, including many Canadian businesses. With fines of up...
Cybersecurity: Trends and Advice for Charities and Not-for-Profit
Miller Thomson’s Social Impact Group launches its series of breakfast seminars specifically targeting charities, non-profit organizations and social enterprises. Join us for the first breakfast on cybersecurity. **Please note this seminar will be delivered in French. Date: Wednesday, April 5,...
Canada’s Anti-Spam Legislation: Are you ready?
Troy Baril presents at the RRHBA Board Meeting.
Canada’s Anti-Spam Legislation- Are you ready?
Troy Baril will present to members of the RRHBA in Regina.
Canada’s Anti-Spam Legislation: Are you ready?
Canada’s Anti-Spam Law (CASL) comes into force on July 1, 2014. CASL is one of the toughest laws of its kind in the world, and it has the potential to impact any individual or organization who sends e-mails, texts, social media...
Preparing for Canada’s Anti-Spam Legislation
Canada’s Anti-Spam Legislation (CASL) comes into force on July 1, 2014. Join us for a lunch & learn session outlining what CASL is and what you need to do to become compliant. Click here for full details.
Canada’s Anti-spam Legislation (CASL)
J. Andrew Sprague presents on Canada’s Anti-spam Legislation (CASL) at the Law Society of Upper Canada (LSUC) and the Ontario Bar Association (OBA)’s joint program entitled “Countdown to Canada’s Anti-Spam Legislation: Make Sure You Are Ready” on April 7, 2014....
The New Canadian Anti-Spam Legislation
Brian Curial presents to the Strathcona Rotary Club on the new Canadian Anti-Spam Legislation.
Canada’s Anti-Spam Law: Are you ready?
Brian Curial presents a complimentary seminar on the new Canadian Anti-Spam Law.
Canada’s Anti-Spam Legislation (CASL): Are you ready?
J. Andrew Sprague discusses Canada’s anti-spam legislation (CASL) at Miller Thomson LLP’s Charities and Not-for-Profit Sector Developments Program on Thursday, February 27, 2014.
Imran Ahmad quoted in The Globe and Mail on WannaCry cyberattack
The Globe and Mail, "Canada spared worst of the cyberattack but full extent still unknown"
Companies need to plan for handling a cybersecurity breach
The Globe and Mail, Report on Business
Our shift to a digital society has seen the emergence of a new kind of crime: stealing data and attacking company networks, whether for financial gain, to send a political message, or sometimes simply to prove a point.
U.S. case spotlights cyber coverage
The Lawyers Weekly
This article originally appeared in the March 24, 2017 issue of The Lawyers Weekly. In 2016, “cyber” had increased prominence in the minds of organizations and with good reasons. “Hacking” not only made the headlines because of allegations that hackers were interfering with the U.S....
Imran Ahmad discusses cybersecurity effect on class action litigation
Canadian Lawyer Magazine, " The era of no excuses"
General counsel are taking on a larger role in protecting corporate data. With class action lawsuits threatening valuations of entire industries, they have no choice. Just two days after Christmas this past December, an American company called E-Sports Entertainment Association went...
Imran Ahmad comments on cybersecurity regulations in Financial Post
Financial Post, "New York's new financial cyber security laws have Canadian experts taking note"
Last week, New York State’s new cyber security requirements for financial institutions came into full effect, including mandatory minimum standards for protecting customer data for firms that fall under the state financial watchdog’s purview.
Imran Ahmad comments on new rules surrounding transparency in data breaches
CBC, "Here's why reports of data breaches will skyrocket this year"
Nobody likes to talk about getting hacked. For one, it’s embarrassing. And for companies, it’s a quick way to lose customers’ trust. It’s why you rarely hear about data breaches or cyberattacks on big businesses unless the companies are forced to admit something happened.
Imran Ahmad comments on upcoming data breach notification requirements
Canadian Underwriter, "Breach Notification"
Federal regulations requiring organizations to notify individuals of data breaches that could potentially expose them to harm will probably be in place this year and could cause an increase in class-action lawsuits, lawyers familiar with privacy laws suggest.
Check under the hood: make it part of your due diligence process
You have acquired a competitor to help your business grow by accessing new customers and technology. However, you learn shortly afterwards the target company had a major data breach that it didn’t disclose to bidders.
Imran Ahmad quoted in article on data breaches and cybersecurity
IT World Canada, "Small, medium Canadian business still in denial on cyber security: Expert"
Small and medium sized businesses in Canada still have blinkers on when it comes to being fully prepared for cyber breaches, says security experts. That was the consensus from a number of speakers last week at a workshop in Toronto...
Imran Ahmad comments on unlawful CSIS data collection
IT World, "How court ruling on CSIS data collection impacts the enterprise"
The uproar earlier this month about Canada’s domestic intelligence agency unlawfully keeping telecom metadata raises the issue of privacy officers ensuring data retention policies are well documented, says a privacy lawyer.
Harley-Davidson acquires assets of Fred Deeley Imports
Counsel to Harley-Davidson