Privacy & Data Security
Businesses operating in Canada are subject to a sophisticated regulatory framework for privacy and data security, encompassing federal and provincial laws. They are also subject to a global framework of laws, regulations and directives throughout the United States, Europe and around the world. The Aird & Berlis Privacy & Data Security Group delivers practical solutions to privacy (including health information privacy), data protection and data security issues within a global environment, and advises on how the related laws impact domestic and international commerce.
Data security and risks require fast and practical guidance within the context of a global environment. When threats to data security are imminent or have occurred, we work with you to protect your business and reputation. We work with forensic teams and with the regulators and law enforcement to ensure risks to everyone affected are mitigated.
We typically provide both strategic and tactical advice to multinational and domestic entities, including critical infrastructure players such as energy, health care, transportation, communications and government, as well as those in the education, professional services, technology, social media, retail and manufacturing sectors.
Our lawyers are industry leaders who are often asked to provide guidance and opinions to governments and regulators on new laws and amendments to existing laws to address the rapidly evolving data privacy and security industry landscape and risks.
Specialized Expertise
Privacy and Data Management
Clients rely on our expertise to help them protect one of their most valuable resources – data. From conducting privacy and information threat-risk assessments and designing privacy and data management policies to developing compliant business processes, policies and sophisticated training modules, we are committed to helping clients plan and prepare for the expected and unexpected. Knowing the legal and regulatory landscape is vital to crafting a strategy that protects customer and consumer privacy and optimizes an organization’s security. We advise on all facets of privacy law, including issues surrounding the transfer of data outside of Canada, compliance with Canada’s Anti-Spam Legislation (CASL), fraud detection, workplace privacy issues and privacy information security breaches.
We serve as data breach response advisors (a ‘go team’), working to mitigate, source, contain and manage the damage that results from a security breach. Our professionals work closely with management, IT experts and forensic auditors, regulators, public relations representatives and human resource specialists. In our role as a data breach coach, we provide a complete response directed to our client’s specific needs and the type and scope of the breach. In addition to proactively advising on risk management and notification strategies, we can also provide notifications to individuals, businesses and law enforcement following a breach. We also work with insurance companies in advising on appropriate coverage limits and data breach response management when insurance is involved. As a matter of preserving lawyer-client privilege, we will sometimes hire technical experts ourselves and have them report to us on the outcomes of their investigations following a data breach.
Cyber Security and Cyber Offences
With the rise of cyber threats and attacks, it is becoming increasingly more important to take a proactive approach to safeguarding your organization’s presence in cyberspace. Our lawyers can help you to understand and assess your legal risk and develop strategic and tactical cyber security measures to reduce your vulnerability and protect your organization.
Should the need arise, we can also provide timely support and legal guidance in the face of a cyber threat or attack, whether as the result of an internal security breach or external action, such as state-sponsored or politically- or financially-motivated offences. Our professionals understand the urgency needed to respond to such events in order to effectively mitigate the risk of financial loss and reputational damage. Our team is committed to providing the advice and action you need when you need it.
Contacts
-
BioFull bio
Paige has earned a reputation as an exceptional corporate/commercial legal advisor to both domestic and multinational entities.
Representative Matters
-
Delta Consulting Group Acquires Froese Forensic Partners
This strategic move marks a significant milestone for Delta as it expands its service offerings and establishes a strong presence in the Canadian market. -
Court of Appeal Rules on Scope of Insurance Coverage for Cyber Matters
This is an update to our May 15, 2020 bulletin summarizing Justice Pollak’s decision in Laridae v. Co-operators, 2020 ONSC 2198. In that decision, she ruled that the insurer, Co-operators, had a duty ... -
Laridae Communications Inc. Successful in Bringing Application Against the Co-Operators General Insurance Company
Laridae Communications Inc., a communications and media consulting firm, successfully brought an application against its insurer, the Co-Operators General Insurance Company, requiring it to defend Lar... -
1Password Completes a US$200-Million Series A Round
1Password, a leading password manager and digital vault, completed a US$200-million Series A Round led by Accel, a Silicon Valley venture capital firm. -
Spark Power Corp. Completes Acquisition of Bullfrog Power
On July 1, 2018, Spark Power Corp., a leading independent electrical power services and solutions company, completed the acquisition of Bullfrog Power. Bullfrog Power is Canada’s leading green energy ... -
Fleetwood Metal Industries Completes Sale to U.S.-Based Private Equity Firm
Fleetwood Metal Industries Inc., a successful Tier 1 automotive metal stamping, welding and assembly business with facilities in Ontario and Alabama, recently announced the completion of its sale to M...
Recent Developments
-
Article
Developments in Class Action Law: Highlights From Q1 2025
This article reviews notable Q1 2025 class action rulings on certification limits, delay dismissals, arbitration clauses and emerging claims in crypto and privacy law. -
Article
Jurisdictional Decisions Shape Class Actions in Q4 2024
This article examines how Q4 2024 jurisdictional decisions shaped class actions, addressing constitutional validity, extraterritorial jurisdiction, certification reconsideration and privacy statute co... -
Event
Security by Design: Addressing AI Risks
Join members of the Aird & Berlis Technology Group as they examine evolving threats and provide insights into safeguarding systems against emerging AI-driven risks. -
Firm News
Aird & Berlis Recognized in Inaugural Edition of Best Law Firms in Canada
Aird & Berlis is proud to be recognized in the inaugural edition of the Best Law Firms in Canada with 61 rankings across 41 practice areas. The firm received 18 national rankings and 43 regional ranki... -
Article
Top Class Action Decisions of Q3 2024
Q3 2024 saw the release of several significant class action decisions, including appellate rulings, that we consider especially relevant to our clients. -
News Item
112 Aird & Berlis Lawyers Recognized in The Best Lawyers in Canada 2025
Aird & Berlis is proud to announce that 112 members of the firm were selected by their peers for inclusion in the 2025 edition of The Best Lawyers in Canada. We are also pleased to share that an addit... -
Article
Bill 194 to Reform Cybersecurity and Privacy Rights in Ontario’s Public Service
Ontario is taking steps to address cybersecurity risks and the use of artificial intelligence in the public sector. -
Article
Six Class Action Rulings That Shaped Q2 2024
This article summarizes key class action decisions from the second quarter of 2024, including rulings on cryptocurrency cases, residency rules for plaintiffs, and certification issues in Ontario and B... -
Article
Canada Is Protecting Its Critical Infrastructure: What Does This Mean for Your Business’s Cybersecurity?
In response to evolving threats, the Government of Canada is working to upgrade its national security regime by introducing measures designed to protecting against cybersecurity threats to its critica... -
Article
Great [Privacy] Expectations: Supreme Court Rules on Privacy Rights in IP Addresses in R. v. Bykovets
In a recent 5-4 split decision, the Supreme Court of Canada held that internet users have a reasonable expectation of privacy in the subject matter of their internet protocol ("IP") addresses. -
TheSpotlight
Legally Mandated Security: Advancing Cybersecurity and Data Privacy Standards
This article explores significant developments in the realm of cybersecurity and data protection – the U.S. Cyber Trust Mark and the proposed European Union Data Act. -
Article
Tech-ing Stock of 2023: Synopses of Key Developments in Technology Law
Technology law developments hogged the headlines in 2023. This article takes stock of the key developments from Canadian Parliament, courts and regulatory bodies. -
TheSpotlight
Legally Mandated Security: U.S. Agencies Lead, Europe Introduces Cyber Resilience Act
This article explores the rise of Security by Design and Security by Default, detailing attempts by the U.S. and Europe to enforce cybersecurity and secure software development standards. -
TheSpotlight
Legally Mandated Security: The Rise of Security by Design and Default
Until recently – and, arguably, with ample justification – computer and network security has been the exclusive bailiwick of security experts. However, ever-busy legislators and lawyers can never leav... -
Firm News2023 Edition of Doing Business in Canada Now Available!
Aird & Berlis is pleased to present the 2023 edition of Doing Business in Canada. This publication was developed to provide a general overview of Canadian federal and Ontario law, and is intended for ... -
Article
Balancing Facial Recognition Technology and Privacy Laws: The Retail Dilemma
This article examines the chief considerations under privacy laws for retail companies in the deployment of facial recognition technology in their stores.