About Articles The following articles are published by the Privacy Law Section of the Ontario Bar Association. Members are encouraged to submit articles. About Articles

Editors: Amanda Branch and Mitchell Koczerginski


Seven Survival Guide Lessons from a Former Chief Privacy Officer

  • November 26, 2022
  • Roland Hung (Torkin Manes LLP)

Having gained substantial leadership experience as a privacy officer, what follows in this article is the perspective the author gained in these unique and essential roles. Each mandate, while quite different in practice, harvested similar lessons that I believe every practitioner working in the privacy sector should adopt to maximize their effectiveness within their organization. The following are seven key lessons every privacy officer or practitioner should know.

Privacy Law, Student Forum

Foreign Companies Should Assess Breach Impact on Canadians as Part of their Initial Assessment

  • October 28, 2022
  • Kirsten Thompson and Jaime Cardy (Dentons)

The Office of the Privacy Commissioner of Canada (OPC) recently issued PIPEDA Findings #2022¬004, which underscores the need for a timely risk assessment that includes Canadians’ personal information. With this Report, the OPC is setting the expectation that while this timeline is flexible, it is not infinitely elastic.

No Coffee Breaks from Privacy Compliance - A Cautionary Tale for App Developers

  • July 07, 2022
  • Roland Hung and Ida Sherkat

Mobile applications have become synonymous with organizations’ outreach initiatives. The recent joint investigation by federal and provincial privacy authorities into the Tim Hortons app emphasizes the need for companies to consider Canadian privacy laws when designing their apps.

Privacy Law, Student Forum

Divisional Court Affirms High Bar in Data Breach Class Actions

  • April 22, 2022
  • Shalom Cumbo-Steinmetz and Alina Butt

Shalom Cumbo-Steinmetz and Alina Butt discuss key takeaways from a recent Divisional Court decision overturning certification in a data breach class action involving private health information.

Privacy Law, Student Forum

ESG as the Next Frontier in Privacy and Data Governance: Moving Beyond Regulatory Compliance

  • April 11, 2022
  • Ronak Shah and George Boynton Payne

Ronak Shah and George Boynton Payne discuss a growing trend among organizations to include privacy and data governance metrics and disclosure as part of their environmental, social and governance (ESG) reporting framework, and highlight practical steps an organization can take to move beyond a traditional regulatory compliance approach to privacy and security.

Privacy Law, Student Forum
B.C., Alberta and Quebec Privacy Regulators Issue Binding Orders Directing Clearview AI to Comply with Recommendations

B.C., Alberta and Quebec Privacy Regulators Issue Binding Orders Directing Clearview AI to Comply with Recommendations

  • January 21, 2022
  • Ellen Xu

On December 14, 2021, the British Columbia, Alberta and Quebec privacy regulators issued separate legally binding orders directing Clearview AI to comply with recommendations made in their recent Report of Findings coauthored with the Office of the Privacy Commissioner of Canada. Ellen Xu explores the practices that gave rise to the investigation against Clearview and the recommendations with which Clearview has been ordered to comply.

Privacy Law, Student Forum