This article originally appeared on The Lawyer’s Daily website published by LexisNexis Canada Inc. on May 7, 2018.
On June 18, 2015, the Personal Information Protection and Electronic Documents Act (“PIPEDA”) was amended to impose data breach reporting requirements. On April 18, 2018, the federal government released the Breach of Security Safeguards Regulations (The “Regulation”), which set forth the rules and requirements applicable in the event of a breach of security safeguards affecting personal information. The Regulation will come into effect on November 1, 2018, at the same time as the statutory requirements pertaining to data breach reporting.