Congratulations to the 30 or so people who finished the CIPP/C prep course yesterday. It was different than previous courses because, of course, we were all at home. But the venue we used worked because I was broadcast live on video and everyone else could use the chat function to interact. It was a success, and so I wonder if there’s an appetite out there to do more of these. I’m up for it if you are, so shoot me an email and we’ll see if we can get enough people interested.
One of the topics we cover pretty significantly in the course is data breach reporting. I mention this because it’s in the news this week (again). In an interesting case, the Ontario and British Columbia commissioners released statements concerning how LifeLabs failed to implement sufficient safeguards that resulted in a breach. It’s interesting for a couple of reasons: one being that the Ontario commissioner was investigating the breach through the lens of personal health information protection legislation, whereas in British Columbia, it was through the lens of private sector privacy legislation.
In the CIPP/C prep course, we often talk about how it’s complicated in Canada in that you can find yourself subject to a number of different privacy regimes all at once. And, just because you comply with one, doesn’t mean you’re complying with them all — notwithstanding some attempts to make the laws substantially similar to one another.
Just another reason to stay sharp and keep yourself up to date with what’s going on. With that in mind, will you be joining in the next live (but virtual) training?
Have a good weekend.
If you want to comment on this post, you need to login.