A Focus on the “Real Risk of Significant Harm”
Representatives from both the Office of the Information and Privacy Commissioner for Alberta (OIPC) and the Office of the Privacy Commissioner of Canada (OPC) will be joining us for this session.
The Canadian privacy arena will be significantly impacted by PIPEDA's new security breach notification regime, which will come into force after regulations are finalized. Proposed Breach of Security Safeguards Regulations set out additional details pertaining to the statutory reporting and notification requirements.
PIPEDA’s notification requirements are triggered when a breach of security safeguards results in a “real risk of significant harm”. What is the precise meaning and scope of this notification trigger? What can we collectively learn from our experience with the security breach notification requirement in Alberta? There are also security breach notification requirements under several provincial health privacy statutes. What can we learn from privacy incidents in the health care context?
In the wake of multiple high profile, large-scale security incidents and growing risk arising from emerging cybersecurity threats, organizations are taking steps to enhance their security breach readiness. Our clients often ask us to benchmark their security incident response plans against their peers.
This workshop will address both of these concerns. Hypothetical security incidents will be presented to workshop participants, who will use electronic audience response technology* to provide immediate, anonymous feedback on whether the hypothetical incidents constitute a “real risk of significant harm” or about their organization’s approach to breach readiness. Workshop participants, including leading Chief Privacy Officers and representatives from privacy regulatory authorities, will discuss the legal and practical challenges associated with breach reporting. The workshop will also canvass the participants’ experience about breach readiness, best practices, and practical challenges associated with breach response.
Breakfast and registration opens at 8:30 am. Workshop will start at 9:00 am.
*With a quick and easy login, you can turn your smartphone or ipad into a real-time anonymous polling device.
** Please note: This workshop is eligible for a CPO Package credit for subscribers.