Miller Thomson’s Privacy and Information Protection Group recognizes that many clients are seeking guidance in determining what their privacy obligations are and how to move their organization towards full compliance with relevant privacy legislation. With expertise across the country, our Group provides privacy advice and support that is based on a solid understanding of a client’s industry, their organization’s operations, the statutory and regulatory landscape, and the essential electronic and information technology components. We work with private companies and public sector organizations across a range of industries, including the health sector where our lawyers have developed particular expertise in relation to health information and eHealth initiatives.
Our services include the development of a comprehensive Privacy Implementation Framework, to move your organization from its current state to full compliance, including audits, reviews, recommendations, model agreements, standard contractual provisions, staff training and education, meetings, etc. This option will provide you with the fullest range of privacy services that your organization requires to implement best privacy practices and to meet all legislative and regulatory requirements.
We also provide:
- Development or review of your organization’s information practices, including privacy, confidentiality and security policies and procedures and agreements
- Assistance with Privacy Audits, Privacy Questionnaires and Privacy Risk Analysis tools and identifying gaps, issues and potential problems
- Development of draft privacy statements, notices, consent forms, confidentiality pledges, web statements and brochures
- Assistance with regulatory compliance with federal and provincial privacy legislation, guidelines and codes
- Assistance with managing privacy breaches, investigations, notifications, complaints and access requests
- Advice and assistance regarding the implications of the U.S. Patriot Act and risk management strategies
- Privacy advice to businesses seeking to do business in different Canadian jurisdictions or U.S. or international companies seeking to do business in Canada
- Development or review of your organization’s forms and procedures for information access, correction and complaints processes
- Development or review of contractual arrangements, including information-sharing agreements, provider agreements and technology agreements
- Specialized assistance with privacy issues such as those involving clinical trials, outsourcing arrangements and regional and provincial electronic health records, databases and networks
- On-site and in-house educational and training seminars for senior management, board of directors or staff
Miller Thomson lawyers recognized in The Best Lawyers in Canada 2019
In the just released 2019 edition of The Best Lawyers in Canada, 144 Miller Thomson lawyers from across the country have been recognized for their expertise in 47 areas of law. This includes 6 lawyers who were awarded “Lawyer of the Year” in...
Eve Munro comments on Canada’s Anti-Spam Legislation in the March/April 2012 issue of the Mortgage Journal.
Eve Munro, a lawyer with Miller Thomson LLP’s Vancouver office, practicing in the area of intellectual property and information technology, says “The essential requirements [of CASL] are that commercial electronic messages may not be sent unless prior consent has been...
Imran Ahmad and Kathryn Frelick present workshop on data and privacy breaches
Imran Ahmad and Kathryn Frelick present a half-day workshop on “Be Cyber Smart: Be Prepared to Effectively Respond to Data and Privacy Breaches” for the Canadian Health Information Management Association conference.
Imran Ahmad speaks at Union Internationale des Avocats’ 61st Congress
Imran Ahmad speaks at Union Internationale des Avocats’ 61st Congress on, “Photography 3.0: Speech, Privacy and the New Normal”.
Imran Ahmad speaks at “Privacy Across Borders” seminar
Imran Ahmad presents at the Ontario Bar Association’s “Privacy Across Borders” seminar on “What is the Reach of Canadian Law Outside Canada?”
David Schnurr co-presents “CASL Compliance Best Practices”
David Schnurr presents a client seminar with Derek Lackey, President of the Direct Marketing Association of Canada, on CASL Compliance Best Practices at the White Oaks Conference Resort and Spa in Niagara-on-the-Lake, Ontario.
Kathryn Frelick speaks on cyber risk in the health sector
Kathryn Frelick presents on the subject of “Cyber Risk in the Health Sector” at the 2017 CLEAR Annual Educational Conference in Denver, Colorado.
Kathryn Frelick speaks at Privacy Law Summit 2017
Kathryn Frelick will be presenting at the OBA on Beyond PHIPA: What Other Legislation Do You Need to Consider?
Imran Ahmad speaks at cyber security & intelligence conference
Imran Ahmad is a speaker at the 2017 International Cyber Security & Intelligence Conference (ICSIC). Miller Thomson clients are eligible to receive a 15% ticket discount before March 31, 2017. Contact us for the promo code.
Imran Ahmad speaks on preparing for a cyberattack
Imran Ahmad presents “How to Be Prepared for a Cyberattack” (“Comment se préparer et répondre à une cyber-attaque”) for the Canadian Bar Association – Québec Branch.
Imran Ahmad moderates session at Ontario Bar Association’s 2017 Privacy Law Summit
Imran Ahmad moderates the “Mitigating Privacy Compliance Risk in Business Transactions” session at the Ontario Bar Association’s 2017 Privacy Law Summit.
Kathryn Frelick speaks on privacy protection
Kathryn Frelick speaks on “Privacy Protection of Personal Information: Best Practices for Reducing Liability” at the Ontario Hospital Association’s Current Governance Trends and Opportunities for Not-for-Profit Organizations conference.
Webinar – Privacy: What Canadian businesses need to know to be GDPR compliant
The European Union’s General Data Protection Regulation (“GDPR”) is slated to come into force in May 2018. The GDPR will have far-reaching consequences for businesses located within and outside the European Union, including many Canadian businesses. With fines of up...
Cybersecurity: Trends and Advice for Charities and Not-for-Profit
Miller Thomson’s Social Impact Group launches its series of breakfast seminars specifically targeting charities, non-profit organizations and social enterprises. Join us for the first breakfast on cybersecurity. **Please note this seminar will be delivered in French. Date: Wednesday, April 5,...
Canada’s Anti-Spam Legislation: Are you ready?
Troy Baril presents at the RRHBA Board Meeting.
Canada’s Anti-Spam Legislation- Are you ready?
Troy Baril will present to members of the RRHBA in Regina.
Canada’s Anti-Spam Legislation: Are you ready?
Canada’s Anti-Spam Law (CASL) comes into force on July 1, 2014. CASL is one of the toughest laws of its kind in the world, and it has the potential to impact any individual or organization who sends e-mails, texts, social media...
Preparing for Canada’s Anti-Spam Legislation
Canada’s Anti-Spam Legislation (CASL) comes into force on July 1, 2014. Join us for a lunch & learn session outlining what CASL is and what you need to do to become compliant. Click here for full details.
Canada’s Anti-spam Legislation (CASL)
J. Andrew Sprague presents on Canada’s Anti-spam Legislation (CASL) at the Law Society of Upper Canada (LSUC) and the Ontario Bar Association (OBA)’s joint program entitled “Countdown to Canada’s Anti-Spam Legislation: Make Sure You Are Ready” on April 7, 2014....
The New Canadian Anti-Spam Legislation
Brian Curial presents to the Strathcona Rotary Club on the new Canadian Anti-Spam Legislation.
Canada’s Anti-Spam Law: Are you ready?
Brian Curial presents a complimentary seminar on the new Canadian Anti-Spam Law.
Canada’s Anti-Spam Legislation (CASL): Are you ready?
J. Andrew Sprague discusses Canada’s anti-spam legislation (CASL) at Miller Thomson LLP’s Charities and Not-for-Profit Sector Developments Program on Thursday, February 27, 2014.
IT Service and Infrastructure Providers Beware: Key Guidance Released by the CRTC regarding Liability of Intermediaries for CASL Breaches
Background On November 5, 2018, the Canadian Radio-television and Telecommunications Commission (CRTC) issued new guidance for assessing intermediary liability under Section 9 of CASL. This guidance follows Notices of Violation issued by the CRTC on July 11, 2018 to Sunlight...
Implementing Privacy by Design
“Privacy by design” (“PbD”) is not a new concept but one that has been receiving increasing attention and legal clout in Canada, Europe,and around the world. Broadly speaking, it requires designing a system or process in a manner that protects...
BC Commissioner Releases Cannabis Sales Privacy Protection Guidelines
As a result of the recent legalization of recreational cannabis in Canada, the Office of the Information and Privacy Commissioner for British Columbia (the “OIPC”) published guidelines (titled “Protecting Personal Information: Cannabis Transactions”) that aim to clarify the rights and...
NIST Launches Privacy Framework Initiative
For many years, the cybersecurity framework developed by the U.S. Department of Commerce’s National Institute of Standards and Technology (“NIST”) has been relied upon by organizations around the world as a foundational framework document. Given its success in the cybersecurity...
Canadian Commissioner Seeks Stronger Privacy Laws
Last week, the Office of the Privacy Commissioner (the “OPC”) released its 2017-2018 Annual Report (the “Report”). The Commissioner took the opportunity to raise serious concerns around the adequacy of Canadian privacy laws in the face of an increasingly digital...
Mandatory Breach Draft Guidance Released
On September 17, 2018, the federal Office of the Privacy Commissioner (“OPC”) published its draft guidance about mandatory reporting of breaches of security safeguards (“Draft Guidelines”). The OPC is seeking public comments as it readies itself for a November 1,...
Getting Privacy Due Diligence Right
Increasingly, a key asset that organizations hold is the sensitive data they collect, use and retain about their customers, employees and suppliers. It is, therefore, no surprise that data security and privacy compliance have become a top-of-mind consideration for organizations...
Upcoming Mandatory Breach Notification Refresher
In keeping with the global movement towards increased data protection legislation, as evidenced by the recent enactment of the General Data Protection Regulation (GDPR) in Europe and similar legislation adopted in California and Brazil, Canada will (as of November 1,...
Brazilian GDPR Comes into Force
On August 14, 2018, less than three months after the coming into force of the European General Data Privacy Protection Regulation (“GDPR”), the President of Brazil sanctioned, with partial veto, bill PLC 53/2018, which regulates the protection of personal information...
Canadian Privacy Commissioner Says Public Profiles Are Private
On June 12, 2018, the Office of the Privacy Commissioner (“OPC”)  released its report  into Profile Technology Ltd.’s (“Profile Technology”) use of “publicly available” Facebook profiles. The OPC concluded that Profile Technology had not obtained the necessary consents from individuals...
Harley-Davidson acquires assets of Fred Deeley Imports
Counsel to Harley-Davidson