


Privacy & Data Protection
PRIVACY & DATA PROTECTION
Privacy and Data Protection are interrelated concepts that involve complex statutory, regulatory and common law requirements and restrictions. Privacy and data breaches – whether accidental or intentional – are frequent front-page news stories that damage corporate reputations and have led to an increasing number of class action lawsuits. Our privacy and data protection lawyers help clients examine the impact of privacy and data protection laws and regulatory requirements upon their businesses and implement measures to reduce risks.
Canada has a complex network of laws governing privacy and data protection compliance, including private-sector, health-sector and public sector statutes, sector-specific privacy obligations, statutory privacy torts, and evolving common law torts such as “intrusion upon seclusion” and “publicity given to private life.” To provide support to our client, our lawyers routinely prepare and adopt practices and procedures that ensure compliance. We advise clients on establishing a comprehensive privacy compliance infrastructure, so that they can reduce the risk of privacy complaints, investigations by privacy commissioners and other regulatory bodies, and privacy-related litigation. An effective compliance infrastructure can also help clients to mitigate the damage of any risks that may materialize.
Our lawyers regularly develop organizational and employee privacy policies and function-specific documents, such as Internet privacy policies, acceptable use policies, and cookies policies. Among other things, McMillan’s data privacy lawyers provide guidance on the application of privacy laws; draft and review privacy policies, consent provisions and information collection procedures; advise on cases of privacy or security breaches; advise on issues related to cross-border transfers of information, including cloud computing; represent clients in privacy-related litigation; and CASL compliance.
Workplace privacy also presents unique issues and challenges. The sheer volume of personal employee information companies handle is just one of the reasons why privacy laws in the workplace are taking centre stage of late. Another emergent workplace privacy issue concerns medical privacy laws in the workplace, which have come to the fore as businesses navigate the legalities of workplace drug testing since Canada legalized marijuana and COVID testing came into play.
McMillan’s workplace privacy lawyers draft and review employee privacy policies, and advise corporations on the application of privacy laws, privacy issues related to searching employees and their property, collection of biometric information, privacy issues unique to unionized workforces, and more.
McMillan’s team also has valuable experience interpreting and applying Canada’s Anti-Spam Legislation (CASL) across organizations, reviewing CASL compliance and training client teams, and dealing with the CRTC and the Privacy Commissioner on CASL compliance matters. Our expertise extends to publication of a legal text, Internet Law Essentials: Canada’s Anti-Spam Law.
Essentially we help clients understand how they can balance compliance with innovation, employer rights, and business needs.
Cybersecurity is no longer solely an issue for IT or technical staff. An effective plan to protect the organization against cyber threats requires insight into both the technical threats and the many and varied ways in which those threats can manifest in personal, physical, and financial damage. Understanding and responding effectively to those threats requires a comprehensive understanding of legal and regulatory obligations and risks, all of which are rapidly evolving.
Among other things, McMillan’s cybersecurity lawyers draft security and data protection policies and protocols; advise on compliance with applicable privacy laws and other legislation; educate managers and directors on the risks associated with a data breach; prepare and implement a notice strategy to respond to data breaches; advise on dealing with the public and regulators following a breach; and assist with internal investigations and obtaining court orders for timely disclosure of necessary information from third parties.
Although organizations may use their best efforts to develop and implement policies and procedures to comply with Canada’s complex and rapidly evolving privacy and data protection regime, disputes regarding breach of privacy and mishandling of personal information are often unavoidable. McMillan helps organizations manage the risk of being drawn into litigation through, for example, inadvertent disclosure of customer information, employee misconduct, or even external hacking of their information systems.
The importance of an immediate and effective response is underscored by the recent wave of reported class actions relating to privacy and data breaches, many of which allege that the organization did not promptly notify individuals who were at risk of harm.
McMillan’s Privacy Group is experienced at resolving disputes in a client-focused way. We pair specialized privacy expertise with McMillan’s renowned Litigation Group to provide a comprehensive team that can advise and represent clients in all types of privacy litigation.
Primary Contacts
View All ContactsDeals and Cases
Downloads
Data Protection 2021, Canada Chapter
International Comparative Legal Guides, 8th Edition Download FileInsights (10 Posts)View More
Scraping the Surface: Global Privacy Authorities Issue Joint Statement on Data Scraping
Privacy Commissioner of Canada and other global privacy authorities issued a joint statement on data scraping. What are the legal implications and takeaways?
Read More
Aug 31, 2023
×
AI Regulatory Roundup: What You Missed in AI News While You Were Gone for the Summer
The relentless march of Artificial Intelligence continues, pushing nations worldwide to adopt diverse strategies to keep pace. Recent AI legal developments.
Read More
Aug 30, 2023
×
Navigating the Pixelated Landscape: The BC Intimate Images Protection Act
The Intimate Images Protection Act provides an easy process through which a person may seek an order against non-consensual sharing of their intimate images.
Read More
Aug 23, 2023
×
Legal Risks Associated with Automated Hiring Tools in Canada
Automated hiring and recruitment tools (AI) risk liability under privacy, human rights, or transparency laws, including Quebec's Act 25, the CPPA and AIDA.
Read More
Jul 13, 2023
×
British Columbia’s Pay Transparency Act: Key Takeaways for Employers
The new Pay Transparency Act in BC brings new rules and obligations for BC employers.
Read More
Jun 21, 2023
×
OPC Takes Firm Stance on Privacy in the Workplace: Takeaways for Employers
The OPC's Workplace Privacy Guidance discusses employee monitoring and workplace privacy matters, relevant for all employers, not just federal.
Read More
Jun 7, 2023
×
The Present and Future of A.I. Regulation
Join us for a session with industry experts who will share valuable insights into the latest trends and developments in artificial intelligence with a particular focus on regulation.
Details
Tuesday, June 20, 2023
×
Secured Lending in Canada: A Guide for U.S. Lenders
A guide to secured lending in Canada; summarizes regulatory matters, tax, security, insolvency and restructuring issues in Canada.
Read More
Jun 1, 2023
×
Clocking In and Opting Out: Quebec CAI Issues Warning About Biometric Time Clocks in the Workplace
Following CAI's recent observations, this bulletin provides guidance to comply with the applicable requirements to implement biometric time clocks in Quebec.
Read More
May 24, 2023
×
Unpacking Bill C-27 – How Organizations Can Prepare for Potential Changes to Canada’s Federal Privacy Laws
Bill C-27 – also known as the Digital Charter Implementation Act, 2022 – completed its second reading in Canada’s House of Commons, bringing Canada one step closer to privacy law reform. Join our discussion on these significant potential developments and what they may mean for your organization.
Details
Thursday, May 18, 2023
×
Subscribe for updates
Get updates delivered right to your inbox. You can unsubscribe at any time.
Our website uses cookies that are necessary for site navigation, user input, and security purposes. By continuing to use our website, you are agreeing to our use of cookies as described in our Cookie Policy.
Manage consent
Privacy Overview
This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.