The Office of the Privacy Commissioner of Canada published key takeaways from its investigation of the 2020 data breach of the Canada Revenue Agency sign-in portal and the Employment and Social Development Canada's "GCKey" authentication service. Recommendations include addressing privacy risks through programs and services, and conducting regular security assessments.
29 March 2024
OPC details lessons learned from CRA, ESDC breaches
RELATED STORIES
Controllers, processors and subprocessors in chains
Notes from the IAPP Canada: Recommendations, calls to reform Privacy Act 'a good start'
A view from DC: Marriott and the minimum extent necessary
Retrospective: 2024 in state sectoral privacy law and AI law
Notes from the Asia-Pacific region: India's PM talks global governance for digital technology