MT Cybersecurity Blog

Digital Security and data protection. Conceptual illustration with advanced technology digital display

Miller Thomson Blogs put a more conversational lens on Canadian law. See the diverse perspectives of our lawyers here.

Displaying 1-10 of 56

British Columbia Court of Appeal upholds certification of data breach class action

September 14, 2020 | David Krebs

Following in the footsteps of Jones v. Tsige from the Court of Appeal for Ontario in 2012, the recent British Columbia Court of Appeal decision in Tucci v. Peoples Trust Co. (2020 BCCA 246) appears to be solidifying the future...


Ontario government launches consultations on establishing provincial privacy regime for private sector

August 28, 2020 | David Krebs, Amanda Cutinha

On August 13, 2020, the Ontario Government (the “Government”) launched consultations on establishing provincial privacy legislation for the private sector, likely including not-for-profits and charities. The collection, use, and disclosure of personal information is currently governed by federal legislation, the...


Responding to cyber-attacks – lessons for Saskatchewan municipalities from recent data breaches

August 20, 2020 | David Krebs, Troy Baril, Danny Alcorn, Jacey Safnuk

Privacy concerns are at the forefront of our increasingly digital world, with cybercrime such as ransomware, business email compromise and phishing attacks becoming a noticeable risk for organizations. It is essential for municipalities to understand their minimum responsibilities under Saskatchewan...


European Data Protection Board (EDPB) releases FAQ on “Schrems II”: A primer for Canadian organizations

August 4, 2020 | David Krebs, Amanda Cutinha

As we have reported previously, on July 16, 2020, the Court of Justice of the European Union (“CJEU”) released its decision in the case of Data Protection Commissioner v Facebook Ireland Ltd and Maximillian Schrems (“Schrems II”), which ruled that...


“Schrems II” decides validity of personal data transfer mechanisms – impact on Canadian organizations

July 20, 2020 | David Krebs, Amanda Cutinha

On July 16, 2020, the Court of Justice of the European Union (“CJEU”) released its long-awaited decision regarding the validity of existing personal data transfer mechanisms outside the EU under the General Data Protection Regulation (“GDPR”), the so-called “Schrems II”...


IIROC issues Notice regarding cybersecurity in cloud services and application programming interfaces

July 6, 2020 | David Krebs

On June 24, 2020, the Investment Industry Regulatory Organization of Canada (“IIROC”) released an Education Notice to members (“Cybersecurity – Cloud Services and Application Programming Interfaces”) outlining key elements of cybersecurity strategies pertaining to adoption and implementation of cloud services...


British Columbia Information and Privacy Commissioner calls for changes to Personal Information Protection Act

June 15, 2020 | David Krebs

As we’ve reported in past blog posts, Canada’s privacy regulators have been vocal about the need for change to the privacy and data protection laws that apply to the private, public and health sectors in Canada. Most recently, the British...


COVID-19 contact tracing debate highlights need for privacy law reform: Lessons for developers and users

June 11, 2020 | David Krebs

We have been following the COVID-19 crisis and its impact on privacy law over the course of the past few months. It has become apparent during that time that the requirements of the pandemic and the contact tracing debate highlight...


Privacy Commissioners: Privacy laws not a barrier to effective COVID-19 response, emphasize compliance when using contact tracing apps

May 12, 2020 | David Krebs, Danny Alcorn

The COVID-19 pandemic has created an unprecedented challenge for federal and provincial governments and other public health organizations in Canada. To respond in a timely and effective manner, government organizations require greater access to, and an enhanced ability to use,...


Privacy and cybersecurity during COVID-19 – Tips for Canadian organizations

March 24, 2020 | Eliott Cheeseman, David Krebs, Kathryn M. Frelick

With the emergence of COVID-19 in Canada, organizations are faced with many additional concerns and considerations in their daily operations and strategic planning. Remote work has become the norm, and the health of employees, customers and suppliers is a key...


Displaying 1-10 of 56


The blog sets out a variety of materials relating to the law to be used for educational and non-commercial purposes only; the author(s) of the blog do not intend the blog to be a source of legal advice. Please retain and seek the advice of a lawyer and use your own good judgement before choosing to act on any information included in the blog. If you choose to rely on the materials, you do so entirely at your own risk.