Privacy resources and services

If navigating data privacy has your head spinning, don’t worry – we can help clear things up! Complex and constantly changing requirements mean your company may be at risk, so it’s important to tackle privacy using a proactive approach. 

We’ve put together a few resources to help guide you through privacy regulations so you can stay focused on growing your business.

Self-serve resources:

  • Need a crash course on PIPEDA? This toolkit will help you get started.
  • Check out our Privacy 101 Data Hub Session with Laura Crestohl from the Office of the Privacy Commissioner of Canada (OPC).
  • What should I know about breaches? The OPC has a video series that will help you prepare.
  • Watch our data privacy Ask Me Anything session to learn more about how you can begin to address privacy in your organization.
  • Need help developing your company's privacy policy? OPC has ten tips on drafting your policy and improving transparency for your customers. Need an example? Check out the Privacy Commissioner of Alberta's privacy policy for SMEs.
  • Want to know more about the EU’s General Data Protection Regulation (GDPR)? Check out our past Data Hub Session with Brendan S. Lillis from Phillips Lytle LLP.
  • This checklist can help you track the items you need to address for GDPR compliance. 
  • Check out this overview of the key components of GDPR from The Standards Council of Canada. 
  • Review the UK Information Commissioner’s Office data protection resources for small businesses.
  • To better understand the California Consumer Protection Act (CCPA) check out these resources from the Office of the Attorney General for California.

Advisory services:

The Office of the Privacy Commissioner (OPC) Information Centre is an easily accessible resource to help answer privacy and PIPEDA questions. Contact them for more information.

OPC business advisory consultations are provided at no charge for companies required to comply with PIPEDA. Get guidance on current privacy practices or review technology solutions to mitigate risks. Please reach out to Chris Willsher with a high-level description of your project and what you're looking to accomplish. Here are a few considerations we look for before making introductions:

  • Maturity: Companies are able to present design and data flow details for specific advice. Ideally they will have already completed a Privacy Impact Assessment and Privacy Policy for review.

  • Significance: Companies should present innovative, novel or otherwise significant privacy issues, for example, due to the sensitivity of the information, or the scale of personal information involved.

  • Legitimacy: Companies must have approval/authorization from key regulators or legally relevant parties.

Communitech members can access the legal services of Gowling WLG through our Pro Squad program. Gowling can help you address privacy challenges from drafting a privacy policy to providing compliance guidance on global regulations.

Our data growth coaches can give advice on how to create a culture of privacy in your company. This includes implementing privacy practices and embedding Privacy by Design into your operational processes.

 

Chris Willsher

Have questions?

Chris Willsher is happy to help.

Director, Data Platforms / Data Growth Coach | Email Chris Willsher or call +1 (519) 888-9944