Module 1: Intro to Privacy Law in Canada
- What is "Data"?
- Protecting data
- Privacy legislation in Canada
Module 2: PIPEDA
- Intro to PIPEDA
- Consent
- Transborder data
- Transfers of personal information in transactions
- Employee personal information
Module 3: Regulators and Enforcement - Canada
- Office of the Privacy Commissioner of Canada (OPC)
- PIPEDA and litigation
- Enforcement: emerging themes
Module 4: Privacy Law - International
- EU: GDPR
- U.S. (including CCPA)
- Global compliance considerations
Module 5: Best Practices re Consent
- Privacy & marketing (CASL, telemarketing, PIPEDA, cross-promotion, etc.)
- Privacy policies
- Privacy assessments
- Phone taping
Module 6: Best Practices - Breaches, Reporting, and Complaints
- Privacy breaches & reporting obligations
Module 7: Best Practices - General Privacy Compliance
- Be accountable (PIPEDA Principle 1)
- Limit collection use, disclosure, and retention (PIPEDA Principles 5 & 6)
- Implement safeguards (PIPEDA Principle 7)
- Be open about business policies and practices (PIPEDA Principles 8 & 9)
Module 8: Implications of Bill C-11
- Intro to Bill C-11
- Service provider exemption
- Business operations exemption
- Data portability
- De-identification
- Right to disposal
- Algorithmic transparency
- Business transaction exemption
- Privacy management program
- Penal regime, investigation powers, & fines
- Private right of action
*Bonus Module* Bill 64 and everything in-house counsel need to know about Quebec's new privacy regime