A large Canadian media company has agreed to pay C$200,000 as part of an undertaking to resolve alleged violations of Canada’s Anti-Spam Law (CASL). The company allegedly failed, among other things, to include unsubscribe mechanisms in certain commercial emails and to honour certain unsubscribe requests within 10 business days, as required by the law, in the period July 2014 to July 2015. The undertaking, dated November 20, 2015, is the fourth public CASL-related enforcement action…
The monitoring of employees is a poignant example of an activity that requires a balance between the interests of different parties. On the one hand, organizations have a legitimate interest in safeguarding their information. Organizations can invest a significant amount of time and resources securing valuable data from external threats, only to have these efforts thwarted by the careless or intentional actions of an employee. Indeed, a study found that 29 percent of data breaches…
Drones are becoming increasingly common in the private and commercial spheres. Here are three things you should know about drones and related legal issues:What Are Drones?Drones—otherwise known as remotely piloted aircraft (RPAs), unmanned aerial vehicles (UAVs) or unmanned aircraft systems (UAS)—are aircraft without a human pilot aboard.Drones can vary significantly in terms of size, sophistication, function and cost, and can be used for a variety of purposes ranging from purely personal / recreational uses to…
We live in a big data world, and because of that, companies are mired in a slew of information governance compliance issues. In a perfect word, there would be turn-key solutions. But each company is unique, has its own compliance standards, runs different systems, and operates in specific markets and industries. So how is a company supposed to manage its information governance risks and obligations in our big data world? See what we have to offer…
Letting employees use their personal devices for work purposes can make good business sense for a company. Apart from potentially saving on overhead, many employees are happier and will work longer and more effectively if they can use their own devices for both professional and personal activities. Companies should nevertheless make sure they’ve covered off their data security and privacy risks before launching a bring your own device (BYOD) program. Security and privacy sometimes seem to…
Information governance (IG) obligations applicable to the healthcare sector are expanding amidst a growing recognition by regulators that the rules governing the management of personal health information need to be stronger. This perception has been fuelled in part by a growing reliance on electronic health record systems, the sensitivity of personal health information, and a number of high-profile data breaches involving healthcare service providers.For example, the Ontario Ministry of Health and Long-Term Care has proposed…