Hacking your way through cyber due diligence

Last year saw an increase in the frequency of data breaches and this trend is unlikely to disappear in 2018. We previously reported on the importance of cybersecurity in the M&A due diligence process. Conducting due diligence of a target’s cybersecurity procedures has become even more crucial in light of Canada’s new notification requirements. These requirements, regulated by the Personal Information Protection and Electronic Documents Act (PIPEDA), are based on amendments made to PIPEDA in 2015 as well as a regulation proposed in 2017 called Breach of Security Safeguards Regulations (Regulations). The Regulations will impose new notice requirements in the event of a ‘breach of security safeguards’ and are expected to come into force later this year. The new security breach notification requirement is three-pronged. It requires: a report to the Office of the Privacy Commissioner of Canada; a notice to affected individuals; and a notice to other…

Read more detail on Recent Corporate Law Department posts –

This entry was posted in Corporate Law and tagged , , , . Bookmark the permalink.

Leave a Reply