Information About Canadian Cybersecurity Law

The U.S. Federal Trade Commission’s 2022 privacy and data security enforcement action regarding the CafePress online retail platform resulted in orders against both parties to a 2020 transaction for the sale of the CafePress business and assets. The enforcement action is a cautionary tale for partie … Read more »

Cybersecurity is a fundamental issue for Canadian organizations of all kinds and sizes, including organizations that use information technology services managed by independent service providers. The Canadian Centre for Cyber Security has issued guidance to help organizations manage cyber risks when … Read more »

Cybersecurity is a fundamental issue for organizations of all kinds and sizes, but many organizations have limited financial and human resources available to implement comprehensive cybersecurity measures. In October 2022, the Canadian Centre for Cyber Security issued guidance to help Canadian organ … Read more »

The Privacy Commissioner of Canada’s decision regarding the Starwood/Marriott data security breach provides important guidance for parties to M&A transactions and for all organizations that handle personal information.The M&A transaction and the data breachMarriott International (Marriott) acquired … Read more »

In August 2022, the Ontario Financial Services Regulatory Authority (FSRA) issued Guidance announcing: (1) FSRA’s adoption of the Principles for Cybersecurity Preparedness for the Mortgage Brokering Sector (the Cybersecurity Principles) issued by the Mortgage Broker Regulators’ Council of Canada (MB … Read more »