Breach, Compliance Management, Data Security

Canadian privacy bill floats $100k fine per breach victim not notified

On Tuesday, the Digital Privacy Act was introduced in Canada's Parliament, proposing stiff penalties for organizations that fail to adequately respond to breaches.

Of note, the bill seeks to impose a hefty fine on businesses – up to $100,000 per every data breach victim not notified of the incident. The legislation, which would update Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), would also penalize companies that “deliberately” fail to report a data breach to the Privacy Commissioner of Canada, information on Canada.ca said.

The PIPEDA Act was enacted back in April 2000, leaving the new Digital Privacy Act as a means of streamlining data privacy rules for businesses, while also helping organizations remain in compliance.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.