Privacy and Data Protection Law

Privacy and Data Protection Law

Whether intentional or accidental, security breaches involving personal or confidential information can significantly damage an organization’s reputation and lead to significant liability. An organization that collects, uses or discloses personal information is subject to a complex framework of privacy and data collection laws involving statutory, regulatory, and common law requirements and restrictions in Canada.

Among other things, Cheadles can assist clients by ensuring compliance and minimizing liability before, during, and after potential and actual privacy or data breach incidents by providing the following services:

1. Guidance to management on privacy and data protection obligations;
2. Support during the development of policies and procedures to ensure compliance with legal requirements;
3. Provide training on compliance obligations and liability;
4. Review of third-party agreements to ensure privacy and data protection obligations are complied with;
5. Review investigation reports of potential or actual breaches and provide a legal opinion on liability;
6. Liaise with regulatory authorities, such as the Office of the Privacy Commissioner;
7. Defend against litigation relating to a data or privacy breach incidents; and
8. Defend against regulatory proceedings and negotiation with regulatory agencies.

Essentially, Cheadles can help clients understand how they can balance business objectives with complex compliance requirements.

If you are unsure whether your organization complies with its privacy and data protection obligations, give Cheadles a call and let us know how we can help.