Author Archives

• Will Sidewalk Labs’ civic data trust hush critics of Waterfront Toronto?

  By Timothy on October 23, 2018 • ( 3 )

  On October 18, 2018, Sidewalk Labs (a Google affiliate) proposed its vision for digital governance of the data created through the implementation of a Master Innovation and Development Plan with Waterfront Toronto for a mixed-use community along the Lakeshore in… Read More ›

• Scrutiny of security measures following a breach report under PIPEDA

  By Timothy on October 16, 2018 • ( 0 )

  Starting November 1, 2018, it will no longer be optional to report breaches to the Office of the Privacy Commissioner of Canada (OPC) for organizations subject to the Personal Information Protection and Electronic Documents Act (PIPEDA). Organizations must report breaches… Read More ›

• Privacy, data localization and the USMCA

  By Timothy on October 11, 2018 • ( 0 )

  Any hopes by privacy advocates of stronger data localization requirements for Canada have been dashed by the United States Mexico Canada Agreement (USMCA). The U.S. Trade Representative (USTR) achieved its objectives on data localization for the renegotiation of the North… Read More ›

• IoT security defects – are stronger consumer protection remedies required?

  By Timothy on October 9, 2018 • ( 0 )

  October is cybersecurity awareness month. So where are we in Canada on IoT security? The answer is that legal requirements are lagging technological developments. Although there have been some regulatory activity, it is slow-moving and consumers still do not have… Read More ›

• From medical paternalism to engagement

  By Timothy on October 7, 2018 • ( 0 )

  The Alzheimer’s Foundation of America has warned of medical paternalism in a September 27, 2018 editorial comment in the Journal of Alzheimer’s Disease. Discussing the availability of at-home genetic tests that include screening for an individual’s APOE status (a gene… Read More ›

• IoT Security – Should consumers bear any responsibility?

  By Timothy on September 11, 2018

  A recent article in CSO (Australia edition) advised data security executives that “Users’ poor home IoT security could become your next headache”. This raises and interesting question. Where should we draw the line between a consumer’s responsibility  to become technologically… Read More ›

• Genetic discrimination laws: Where is Canada?

  By Timothy on August 30, 2018

  On Tuesday, I wrote about the use of evidence of genetic predisposition in Canadian disability law. In this post, I examine where Canada stands on genetic discrimination. Federal and provincial governments in Canada have slowly expanded the list of characteristics… Read More ›

• Genetic predisposition and the law

  By Timothy on August 28, 2018

  This spring, concerns that Canadians may be inadequately protected against genetic discrimination bubbled up again. The Canadian Broadcasting Corporation reported on a commentary in the Canadian Medical Association Journal warning of risks if Canada’s Genetic Non-Discrimination Act was overturned. The… Read More ›

• Should your cloud computing provider report suspected security breaches?

  By Timothy on August 23, 2018

  Earlier this week, I wrote about new Alberta breach reporting obligations in the Alberta Health Information Act. This post considers how distinctions between suspected, probable, unconfirmed and confirmed data breaches matter in cloud computing agreements. Not every security incident is… Read More ›

• Cloud computing update: Alberta Health Privacy Breach Provisions

  By Timothy on August 21, 2018 • ( 1 )

  On August 31st, new provisions in Alberta’s Health Information Act will come into force that have important implications for users and providers of cloud computing services. These provisions impose new breach reporting obligations on healthcare service providers and other individuals… Read More ›