In an op-ed for The Globe and Mail, Molly Reynolds writes about the potential for entities to over-report cyberattacks under Canada’s new data breach notification law. Reynolds writes companies may begin to report any incident, even minor data breaches, which could overwhelm the Office of the Privacy Commissioner of Canada and cause the public to no longer pay attention to when their data is at risk. “The Privacy Commissioner’s Office must follow the lead of its U.K. colleagues and provide more detailed, practical clarity to organizations on what types of breaches meet the disclosure threshold — and just as importantly, what types of breaches should not be publicized,” Reynolds writes.
Full Story
Comments
If you want to comment on this post, you need to login.