Tag archives: privacy

Data privacy in M&A: new reporting and notification requirements

It is time for organizations to think ahead and prepare for new requirements imposed under the Digital Privacy Act (formerly known as Bill S-4). The new requirements, which will result in significant amendments to the Personal Information Protection and Electronic Documents Act (PIPEDA), will come into force on November 1, 2018. The new requirements impose mandatory … Continue reading

Legal update: new European data privacy law comes into force on May 25, 2018

On May 25, 2018 the European Union’s General Data Protection Regulation (GDPR) will come into force. The GDPR will create new requirements for Canadian companies that handle the personal information of European individuals. The GDPR also allows for heavy penalties to be imposed on organizations that fail to comply with this new regulatory regime. Based … Continue reading

Better, faster, stronger: revamping the M&A due diligence process with Artificial Intelligence platforms

Voluminous information in M&A transactions M&A transactions can be time-intensive, often involving contract discovery and analysis, due diligence, data room preparation, verification of representations and warranties, privacy issues and multijurisdictional privacy legislation and intellectual property protection, among other important aspects. As deals become larger in value and scope, the review and analysis of the foregoing … Continue reading

Cyber security: what the hack?

In a previous blog post, we discussed how to manage cyber security risks during the negotiation and due diligence stages of an M&A transaction. In this post we discuss cyber security insurance as a tool for managing this unwelcome risk. The cyber security risk Although businesses have been ramping up their information security systems, the … Continue reading

Digital Privacy Act streamlines M&A procedures

On June 18th the Digital Privacy Act (Bill S-4) received Royal Assent. This new law provides long overdue amendments to the Personal Information Protection and Electronic Documents Act (PIPEDA). The Digital Privacy Act amends a wide range of PIPEDA provisions from consent to the expansion of the Commissioner’s powers. Easily overlooked in the sweeping amendments … Continue reading

What the Ashley Madison hack tells us about M&A security risk

The online service Ashley Madison is reeling from a catastrophic data breach that resulted in the public exposure of its customers’ sensitive private information.  Ironically, the Ashley Madison hack was a very conspicuous and public affair. However, not all cyber security breaches are publicly broadcasted. Most hacks are done surreptitiously such that the hacked company … Continue reading

Privacy breaches and M&A transactions: the importance of due diligence and doing it cautiously

Data and privacy breaches have garnered much media attention as of late and the list of companies that have experienced a breach is mounting. The potential costs to companies resulting from large-scale privacy breaches are immeasurable. In addition to the costs associated with resulting litigation (often in the form of privacy breach class actions), publicized … Continue reading
LexBlog