On Tuesday, the Digital Privacy Act was introduced in Canada's Parliament, proposing stiff penalties for organizations that fail to adequately respond to breaches.

Of note, the bill seeks to impose a hefty fine on businesses – up to $100,000 per every data breach victim not notified of the incident. The legislation, which would update Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), would also penalize companies that “deliberately” fail to report a data breach to the Privacy Commissioner of Canada, information on Canada.ca said.

The PIPEDA Act was enacted back in April 2000, leaving the new Digital Privacy Act as a means of streamlining data privacy rules for businesses, while also helping organizations remain in compliance.