MT Cybersecurity Blog

MT Cybersecurity Blog

Filter

Displaying 1-10 of 85

Privacy regulators issue joint statement: Understanding the risks and responsibilities surrounding data scraping

September 14, 2023 | David Krebs, Garhet Maze

MT Cybersecurity Blog

On August 24, 2023, 12 international privacy and data protection authorities, including the Office of the Privacy Commissioner of Canada and the UK Information Commissioner, released a Joint Statement  on data scraping and data protection (the “Joint Statement”). ‘Data scraping’ is an […]

More

British Columbia Supreme Court emphasizes the importance of contextual assessment when assessing privacy risks associated with information access requests

August 29, 2023 | David Krebs, Baljinder Bains, Vanessa Rosteski

MT Cybersecurity Blog

Introduction In Airbnb Ireland UC v Vancouver (City), 2023 BCSC 1137, the British Columbia Supreme Court (the “Court”) highlighted the privacy implications for companies and other parties who provide information to public bodies. Airbnb Ireland UC (“Airbnb”) applied for judicial […]

More

Mobile apps: What businesses should know a year after the Tim Hortons data tracking scandal

July 12, 2023 | David Krebs, Kristen Ward

MT Cybersecurity Blog

Many businesses are tapping into the digital economy by creating mobile apps to enhance customer experience, build brand awareness, and boost marketing outcomes, which often includes collecting (sometimes very detailed) information from users. However, creating and deploying these apps comes […]

More

AI poses new threats to cybersecurity: How Canadian boards can navigate the evolving cyber risk landscape to stay ahead of the curve

June 7, 2023 | David Krebs, Kristen Ward

MT Cybersecurity Blog

The cybersecurity threat landscape is currently at a time when new threats are continuing to emerge, not the least of which are risks related to the use of artificial intelligence (AI), specifically generative AI. In response, there is increasing pressure […]

More

Meaningful consent and data protection of third-party apps: Federal Court dismisses Privacy Commissioner’s complaint against Facebook

May 3, 2023 | David Krebs, Amanda Cutinha, Hayden Sahid

MT Cybersecurity Blog

On April 13, 2023, the Federal Court handed down its decision in a case brought by the Office of the Privacy Commissioner of Canada (the “OPC”) against Facebook Inc. (“Facebook”).[1] The case centers around Facebook’s obligations with respect to third-party […]

More

Failure to prevent a data breach not equal to invasion of privacy: Ontario Court of Appeal shuts the door on “intrusion upon seclusion” tort

December 2, 2022 | Kate Genest, David Krebs, Amanda Cutinha

MT Cybersecurity Blog

The Ontario Court of Appeal has released a new trilogy of cases regarding the privacy tort “intrusion upon seclusion.” Specifically, whether the privacy tort is available as against commercial entities collecting and storing clients’ personal information, where there was a […]

More

A to-do list for incident response

October 11, 2022 | David Krebs, Amanda Cutinha

MT Cybersecurity Blog

Cybersecurity incidents and data breaches arise without notice. Your organization may have fallen victim to a cyberattack or you may have received notice from a supplier that they have been attacked. Or perhaps a key employee has lost an unencrypted […]

More

Tactical and strategic steps for successful cyber incident preparedness

September 30, 2022 | David Krebs

MT Cybersecurity Blog

To kick-off this year’s cyber awareness month, we wanted to present an article that would look back on the past year along with our experience counseling organizations, large and small across all sectors, through the ordeal of cyberattacks, data extortion […]

More

Cybersecurity for Canada’s financial institutions

September 30, 2022 | Domenic Presta

MT Cybersecurity Blog

In the Office of the Superintendent of Financial Institution’s (OSFI) first Annual Risk outlook for Fiscal Year 2022-2023, the OSFI identifies the most material risks which face federally regulated financial institutions (FRFIs). Among the financial risks that the OSFI identifies […]

More

Managing cybersecurity in M&A transactions: How to mitigate risk through due diligence

September 30, 2022 | Sara Josselyn, David Krebs

MT Cybersecurity Blog

As companies have become increasingly technology-driven in recent years, a target’s cybersecurity posture has become a key focal point in the diligence process. The COVID-19 pandemic has made this concern particularly acute: notwithstanding that an increasingly large number of people […]

More

Displaying 1-10 of 85

Disclaimer

This blog sets out a variety of materials relating to the law to be used for educational and non-commercial purposes only; the author(s) of this blog do not intend the blog to be a source of legal advice. Please retain and seek the advice of a lawyer and use your own good judgement before choosing to act on any information included in the blog. If you choose to rely on the materials, you do so entirely at your own risk.