Regulatory Ramblings: Episode 72 - Cultural Roots, Belonging, and the Fear of Change: What’s Next for Inclusion?
Daily Compliance News: June 24, 2025, The Questions, Questions, and More Questions Edition
Hot Topics in International Trade - Tariff Mitigation Strategies
Everything Compliance, Shout Outs and Rants: Episode 151, The What is Illegal DEI Edition
Adapting to Tariffs and Other Trade Policy Shifts Under the Trump Administration
A Brief Primer on Tariffs Under the Trump Administration
Protect, Prepare, Prevail: Navigating a Complex Cybersecurity World
Private M&A 2024: Key Trends and Forecasts
Patent Considerations in View of the Nearshoring Trends to the Americas
Examining E-Discovery in Competition Law
No Password Required: Education Lead at Semgrep and Former Czar for Canada’s Election Security
Shifting Dynamics in Private Equity
4 Key Takeaways | Major U.S. Supreme Court Trademark & Copyright Decisions
Hidden Traffic : New Human Trafficking and Child Labor Regulation in Canada with Sean Stephenson
[Podcast] Catching Up on Canadian Environmental Regulation
[Podcast] USMCA in Review, with C.J. Mahoney, Former Deputy U.S. Trade Representative
Episode 4 - USMCA and the trade relationship between the U.S.A, Mexico, & China
Five Questions, Five Answers: Electric Mobility Canada on Its Promises for a Cleaner Economy
Five Questions, Five Answers: The Voice of Canadian Automotive Parts Manufacturers
The Great Green North: A Discussion on Canada’s Environmental Regulations
En 2023, une cyberattaque d’envergure a exposé les données génétiques personnelles de millions d’utilisateurs de 23andMe, une société américaine offrant des services d’analyse du code génétique aux particuliers, poussant les...more
On June 17, 2025, the Office of the Privacy Commissioner of Canada (OPC) released a summary of its investigation findings regarding a data breach at 23andMe, which affected nearly seven million customers, including...more
In an era where digital threats are more sophisticated than ever, cybersecurity has become a pressing concern for family enterprises. These businesses are attractive targets for cyberattacks and need to balance the critical...more
When we are retained by clients to guide them through a cyber-attack in which information has been stolen by a threat actor, we almost always find that the client has unnecessarily stored sensitive information far beyond the...more
Businesses are increasingly defrauded through common scams known as business email compromise scams (BEC scams) for which they do not have insurance to cover the resulting losses. Fortunately, there are easy-to-implement...more
Asking the right questions within your organization is key to effectively managing cyber risk. Here are 10 questions that you should ask your team...more
Les cybermenaces se multiplient et évoluent sans cesse, ce qui oblige les organisations à maintenir leur résilience opérationnelle et à protéger leurs actifs clés, comme leurs infrastructures critiques et leurs données...more
Cybersecurity threats continue to grow and evolve, increasing pressure on organizations to maintain operational resilience and protect their key assets, such as critical infrastructure and sensitive data. As cyberattacks...more
U.S. federal agencies, including the Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), and Federal Bureau of Investigation (FBI) (in coordination with similar agencies in Australia,...more
Le 4 juillet 2024, la Cour d’appel de la Colombie-Britannique (la « CACB ») a rendu deux jugements d’appel en matière d’actions collectives dans des contextes de fuite de données. Ce faisant, la CACB a clarifié la portée...more
In a pair of decisions released on July 5, 2024, the B.C. Court of Appeal found that an alleged reckless failure to safeguard personal information may be sufficient to make out Privacy Act claims of "wilful violation" of...more
2022 continued to be positive for institutional clients involved in privacy breach class actions, with the Ontario Court of Appeal refusing to expand the tort of intrusion upon seclusion to impose liability on institutions...more
AML compliance for reporting entities has never been of greater critical importance than it is today. With the growing sophistication of criminals and the methods and technologies that they employed, combined with the...more
Theft of personal information does not by itself entitle the victim to damages in Canada; proof of loss or harm is required, the Alberta Court of Appeal held recently in Setoguchi v Uber BV. This, and other recent decisions,...more
Les cyberattaques se sont multipliées au cours des dernières années et leur puissance destructrice a augmenté considérablement. Comme le nombre de cyberincidents visant des organisations de toutes tailles continue de...more
In a trilogy of rulings released on November 25, 2022, the Ontario Court of Appeal (“Court”) has ruled that the tort of intrusion upon seclusion cannot extend to companies that collect and store personal information and fall...more
On November 25, 2022, in Owsianik v. Equifax Canada Co., 2022 ONCA 813 (Owsianik), the Ontario Court of Appeal (Court) held that intrusion upon seclusion is not a viable cause of action against a defendant who has been the...more
Le métavers est souvent décrit comme l’Internet de demain. Bien que son développement n’en soit qu’à un stade précoce, des sociétés émergentes et d’autres bien établies investissent des millions de dollars dans la mise au...more
Le commissaire à l’information et à la protection de la vie privée de l’Ontario (le « CIPVP »), soit l’organisme de réglementation de la protection de la vie privée dans le secteur public et le domaine de la santé de...more
With the first wave of amendments to Québec’s An Act Respecting the Protection of Personal Information in the Private Sector (“PPIPS”) having taken effect just over a month ago, we thought we would share some misconceptions...more
The Information and Privacy Commissioner of Ontario (IPC), Ontario’s public sector and health privacy regulator, recently released a technology factsheet titled, “How to Protect Against Ransomware.” This factsheet is intended...more
Le 18 août 2022, l’Autorité ontarienne de réglementation des services financiers (l’« ARSF ») – l’organisme de réglementation du secteur des services financiers de l’Ontario – a adopté la directive de cybersécurité du Conseil...more
La cybersécurité est l’un des enjeux de premier plan auxquels sont confrontées les entreprises et les organisations au Canada à l’heure actuelle. Or, bon nombre d’entre elles ne sont toujours pas dotées d’un plan...more
On August 18, 2022, the Financial Services Regulatory Authority of Ontario (FSRA) – Ontario’s financial sector regulator – adopted the Mortgage Broker Regulators' Council of Canada's Cybersecurity Guidance (Guidance). The...more
A little over nine months after it passed An Act to modernize legislative provisions as regards the protection of personal information (“Bill 64”) overhauling, among other legislation, the province’s public and private sector...more