Data breach notification… in Canada

By | Tuesday June 23rd, 2015

This article from Financial Post explains the Digital Privacy Act that became law on June 18 in Canada.

It’s not related to Europe, but Canada. However it showcases a common trend in several countries. Data breach shall be notified.

The mandatory notification provisions require organizations to notify the Privacy Commissioner as well as potentially affected individuals of a privacy breach “as soon as feasible,” but only if there is a “real risk of significant harm.”

(Thanks to John and Alex for highlighting this)

Category: Data Breach Open Forum Tags: ,

About Alessandro Vallega

He is Security Business Development Director for Oracle EMEA. He has the responsibility to lead a cross functional team on the GDPR (General Data Protection Regulation, EU 679/2016) at EMEA level (marketing, legal, sales, training, technology). He founded and coordinates an external blog on the same topic ( He has defined a European methodology to evaluate the database security degree of a data center and the advantages of identity and access management technology. He founded in 2007 the Oracle Community for Security, and in that context led the creation of several publications about security and privacy in the cloud, with mobile, in the social media, in healthcare, on return on security investments, about the role of the CISO, and how to prevent frauds. He is an author of the Italian annual ICT Security Report by CLUSIT and he is part of the CLUSIT board of directors.

One thought on “Data breach notification… in Canada

  1. Pingback: An international Privacy culture - Europrivacy

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.