SlideShare ist ein Scribd-Unternehmen logo

The Start-Up’s Guide to Privacy - MaRS Best Practices

MaRS Discovery District
MaRS Discovery District

Stephen Whitney Slides: On January 28, 2016, Canada, along with many countries, will celebrate Data Privacy Day. Recognized by privacy professionals, corporations, government officials, academics and students around the world, Data Privacy Day highlights the impact that technology is having on our privacy rights and underlines the importance of valuing and protecting personal information. MaRS Discovery District and Privacy Horizon have teamed up to offer this special program for entrepreneurs and startup companies. Learn what you need to know to turn privacy into a competitive advantage.

Business
1 von 17
Downloaden Sie, um offline zu lesen
The Start-up’s Guide to Privacy at MaRS: Legal Basics & Does Privacy Matter? Stephen Whitney Of Counsel Norton Rose Fulbright Canada LLP January 28, 2016
2 Agenda Privacy Legislation in Canada Comments on International Privacy Laws What To Know About Your Privacy Practices Does Privacy Matter?
Privacy Legislation in Canada 3 A.  Federal Legislation •  PIPEDA - The Personal Information Protection and Electronic Documents Act PIPEDA applies across the country but for private companies that primarily operate in a single province, PIPEDA will not apply where the province has already enacted similar provisions to PIPEDA and the business fits within the scope of the provincial legislation.
Recommended Reading: Privacy Toolkit A Guide for Businesses and Organizations Canada's Personal Information Protection and Electronic Documents Act https://www.priv.gc.ca/information/pub/guide_org_e.pdf 4 Recommended ReadingPrivacy Legislation in Canada
PIPEDA and Digital Health 5 PIPEDA does not impose special obligations on digital health companies. Under s. 30(1.1), the Act states that the duties imposed on the use of personal information in the private sector: …does not apply to any organization in respect of personal health information that it collects, uses or discloses within a province … unless the organization … discloses the information outside the province … .
Privacy Legislation in Canada 6 B. Some of the Provincial Legislation Includes: •  British Columbia (Personal Information Act); •  Alberta (Personal Information Protection Act); •  Quebec (An Act Respecting the Protection of Personal Information in the Private Sector); •  Ontario (Personal Health Information Protection Act); •  New Brunswick (Personal Health Information Privacy and Access Act); and •  Newfoundland and Labrador (Personal Health Information Act).
Comments on International Privacy Laws 7 •  International privacy laws are often similar, but not identical. •  Typically based off of privacy principles. •  International privacy compliance is very challenging! •  The result is often a risk assessment of how to approach privacy. •  Do you have one approach globally or can you customize your approach for unique country requirements?
Some important things to know about your privacy practices include: •  Sector •  Target audience •  Countries •  Business model •  Operational procedures 8 What To Know About Your Privacy Practices
More specifically, for operational procedures it is important to know: •  What personal information and information does the company collect from the user of its products and services, website, apps, etc. and what is the context? •  Account and membership information? •  Unique identifiers? •  Information from children under 18 or under 13 years of age? •  Information about applications used on computer/device? •  Third party offerings (i.e. products, services, software, websites or content provided by a third party)? •  Cookies or similar technologies? 9 What To Know About Your Privacy Practices (cont)
•  Financial information? •  Does the company process online payments? •  Are the payments processed by the company or a third party payment processor? •  What other financial information, if any, is collected? •  Does the company track the purchase history of customers? •  General usage data? •  Location information? •  Quality assurance and customer service? •  Health information? •  Other? 10 What To Know About Your Privacy Practices (cont)
•  For what purposes does company use the personal information it collects? •  billing, activation, provision, maintenance, support, trouble shooting, resolving of disputes, deactivation, repair, refurbishment, replacement, upgrade or update of offerings •  to manage or respond to your inquiries •  to develop new and enhance existing offerings including to communicate with you about them using various means •  to manage and develop your business and operations •  to meet legal and regulatory requirements and to respond to emergency situations •  Does company use sales information? •  Do you send marketing communications (for example, emails)? 11 What To Know About Your Privacy Practices (cont)
•  To whom does company disclose the personal information? •  Affiliates, Service Providers, Third Parties, Other? •  Do you send any of the personal information you collect to other countries? •  Data Retention •  Where stored? •  How long keep? •  When and how destroy? Make anonymous? •  Security •  Adequate protections implemented? •  Encryption used? At rest and in transit? 12 What To Know About Your Privacy Practices (cont)
•  Do you obtain consent? When, where, how? If yes, what does the consent say? •  Consent by layers •  Terms and conditions •  Privacy policy •  Notices •  Reminders/Icons 13 What To Know About Your Privacy Practices (cont)
Discussion based off of Prof. Michael Sandel’s keynote at IAPP • Uber • Connected Cars • Email Providers 14 Does Privacy Matter?
Stephen Whitney Of Counsel Norton Rose Fulbright Canada LLP / S.E.N.C.R.L., s.r.l. 51 Breithaupt Street, Suite 100 Kitchener, Ontario N2H 5G5 Canada OR Royal Bank Plaza, South Tower, Suite 3800 200 Bay Street, P.O. Box 84, Toronto, ON M5J 2Z4 Canada T: +1 226.868.9125 stephen.whitney@nortonrosefulbright.com 15
Disclaimer Norton Rose Fulbright LLP, Norton Rose Fulbright Australia, Norton Rose Fulbright Canada LLP, Norton Rose Fulbright South Africa (incorporated as Deneys Reitz Inc) and Fulbright & Jaworski LLP, each of which is a separate legal entity, are members (‘the Norton Rose Fulbright members’) of Norton Rose Fulbright Verein, a Swiss Verein. Norton Rose Fulbright Verein helps coordinate the activities of the Norton Rose Fulbright members but does not itself provide legal services to clients. References to ‘Norton Rose Fulbright’, ‘the law firm’, and ‘legal practice’ are to one or more of the Norton Rose Fulbright members or to one of their respective affiliates (together ‘Norton Rose Fulbright entity/entities’). No individual who is a member, partner, shareholder, director, employee or consultant of, in or to any Norton Rose Fulbright entity (whether or not such individual is described as a ‘partner’) accepts or assumes responsibility, or has any liability, to any person in respect of this communication. Any reference to a partner or director is to a member, employee or consultant with equivalent standing and qualifications of the relevant Norton Rose Fulbright entity. The purpose of this communication is to provide information as to developments in the law. It does not contain a full analysis of the law nor does it constitute an opinion of any Norton Rose Fulbright entity on the points of law discussed. You must take specific legal advice on any particular matter which concerns you. If you require any advice or further information, please speak to your usual contact at Norton Rose Fulbright. 17

Empfohlen

The Start-Up’s Guide to Privacy - MaRS Best Practices
The Start-Up’s Guide to Privacy - MaRS Best PracticesThe Start-Up’s Guide to Privacy - MaRS Best Practices
The Start-Up’s Guide to Privacy - MaRS Best PracticesMaRS Discovery District
 
Data Privacy Day - MaRS Best Practices
Data Privacy Day - MaRS Best PracticesData Privacy Day - MaRS Best Practices
Data Privacy Day - MaRS Best PracticesMaRS Discovery District
 
The role of higher education keenan
The role of higher education keenanThe role of higher education keenan
The role of higher education keenanVirginia Community Economic Network
 
Mergers and acquisitions
Mergers and acquisitionsMergers and acquisitions
Mergers and acquisitionsBabasab Patil
 
MERGERS & ACQUISITIONS REVIEW LEGAL ADVISORS - Thomson Reuters
MERGERS & ACQUISITIONS REVIEW LEGAL ADVISORS - Thomson ReutersMERGERS & ACQUISITIONS REVIEW LEGAL ADVISORS - Thomson Reuters
MERGERS & ACQUISITIONS REVIEW LEGAL ADVISORS - Thomson ReutersJeroen de Bruin
 
Four Common Post-Merger Risks
Four Common Post-Merger Risks Four Common Post-Merger Risks
Four Common Post-Merger Risks Jim Kasim
 
Merger Arbitrage - CenturyLink & Qwest
Merger Arbitrage - CenturyLink & QwestMerger Arbitrage - CenturyLink & Qwest
Merger Arbitrage - CenturyLink & QwestSrinivasan Raghavan
 
Obtaining Australian merger and acquisition clearances in 2012
Obtaining Australian merger and acquisition clearances in 2012Obtaining Australian merger and acquisition clearances in 2012
Obtaining Australian merger and acquisition clearances in 2012Martyn Taylor
 

Empfohlen

The Start-Up’s Guide to Privacy - MaRS Best Practices
The Start-Up’s Guide to Privacy - MaRS Best PracticesThe Start-Up’s Guide to Privacy - MaRS Best Practices
The Start-Up’s Guide to Privacy - MaRS Best PracticesMaRS Discovery District
 
Data Privacy Day - MaRS Best Practices
Data Privacy Day - MaRS Best PracticesData Privacy Day - MaRS Best Practices
Data Privacy Day - MaRS Best PracticesMaRS Discovery District
 
The role of higher education keenan
The role of higher education keenanThe role of higher education keenan
The role of higher education keenanVirginia Community Economic Network
 
Mergers and acquisitions
Mergers and acquisitionsMergers and acquisitions
Mergers and acquisitionsBabasab Patil
 
MERGERS & ACQUISITIONS REVIEW LEGAL ADVISORS - Thomson Reuters
MERGERS & ACQUISITIONS REVIEW LEGAL ADVISORS - Thomson ReutersMERGERS & ACQUISITIONS REVIEW LEGAL ADVISORS - Thomson Reuters
MERGERS & ACQUISITIONS REVIEW LEGAL ADVISORS - Thomson ReutersJeroen de Bruin
 
Four Common Post-Merger Risks
Four Common Post-Merger Risks Four Common Post-Merger Risks
Four Common Post-Merger Risks Jim Kasim
 
Merger Arbitrage - CenturyLink & Qwest
Merger Arbitrage - CenturyLink & QwestMerger Arbitrage - CenturyLink & Qwest
Merger Arbitrage - CenturyLink & QwestSrinivasan Raghavan
 
Obtaining Australian merger and acquisition clearances in 2012
Obtaining Australian merger and acquisition clearances in 2012Obtaining Australian merger and acquisition clearances in 2012
Obtaining Australian merger and acquisition clearances in 2012Martyn Taylor
 
Merger acquisition sampoerna philip morris
Merger acquisition sampoerna philip morrisMerger acquisition sampoerna philip morris
Merger acquisition sampoerna philip morrisFrisca Listyaningtyas
 
Infrastructure regulation - exploring the key models (Australia)
Infrastructure regulation - exploring the key models (Australia)Infrastructure regulation - exploring the key models (Australia)
Infrastructure regulation - exploring the key models (Australia)Martyn Taylor
 
Protection of Personal Information Bill (POPI)
Protection of Personal Information Bill (POPI)Protection of Personal Information Bill (POPI)
Protection of Personal Information Bill (POPI)Robert MacLean
 
Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.
Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.
Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.Sirius
 
Chapter 15 mergers and acquisitions
Chapter 15 mergers and acquisitionsChapter 15 mergers and acquisitions
Chapter 15 mergers and acquisitionsSchool of Management Sciences Lucknow
 
Mergers and acquisitions
Mergers and acquisitionsMergers and acquisitions
Mergers and acquisitionsPradeep Yuvaraj
 
mergers and acquisitions
mergers and acquisitions mergers and acquisitions
mergers and acquisitionsBabasab Patil
 
B2: Fundraising in an age of GDPR
B2: Fundraising in an age of GDPRB2: Fundraising in an age of GDPR
B2: Fundraising in an age of GDPRNCVO - National Council for Voluntary Organisations
 
Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...
Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...
Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...Plunet BusinessManager
 
Putting The Consumer First
Putting The Consumer FirstPutting The Consumer First
Putting The Consumer FirstVivastream
 
Putting the Consumer First
Putting the Consumer FirstPutting the Consumer First
Putting the Consumer FirstVivastream
 
The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...
The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...
The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...Gary Allen
 
Implementing And Managing A Multinational Privacy Program
Implementing And Managing A Multinational Privacy ProgramImplementing And Managing A Multinational Privacy Program
Implementing And Managing A Multinational Privacy ProgramMSpadea
 
EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...
EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...
EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...Michele Collu
 
Vendor Risk Management in Complex Matters (acc sa presentation)
Vendor Risk Management in Complex Matters (acc sa presentation)Vendor Risk Management in Complex Matters (acc sa presentation)
Vendor Risk Management in Complex Matters (acc sa presentation)Amber Clark
 
GDPR Ready Presentation - Marc Michaels
GDPR Ready Presentation - Marc MichaelsGDPR Ready Presentation - Marc Michaels
GDPR Ready Presentation - Marc MichaelsPost Media
 
Introduction to US Privacy and Data Security: Regulations and Requirements
Introduction to US Privacy and Data Security: Regulations and RequirementsIntroduction to US Privacy and Data Security: Regulations and Requirements
Introduction to US Privacy and Data Security: Regulations and RequirementsFinancial Poise
 
I’m attaching some info on the agency I work for. I work remot.docx
I’m attaching some info on the agency I work for. I work remot.docxI’m attaching some info on the agency I work for. I work remot.docx
I’m attaching some info on the agency I work for. I work remot.docxdonnajames55
 
GDPR is Coming, Five Things You Can Do Now To Prepare
GDPR is Coming, Five Things You Can Do Now To PrepareGDPR is Coming, Five Things You Can Do Now To Prepare
GDPR is Coming, Five Things You Can Do Now To PrepareWinston & Strawn LLP
 
Internet security and privacy issues
Internet security and privacy issuesInternet security and privacy issues
Internet security and privacy issuesJagdeepSingh394
 
Donors, Data Privacy & Security, and Doing What’s “Right”
Donors, Data Privacy & Security, and Doing What’s “Right”Donors, Data Privacy & Security, and Doing What’s “Right”
Donors, Data Privacy & Security, and Doing What’s “Right”Bloomerang
 
Practical steps to take in preparation for the Protection of Personal Informa...
Practical steps to take in preparation for the Protection of Personal Informa...Practical steps to take in preparation for the Protection of Personal Informa...
Practical steps to take in preparation for the Protection of Personal Informa...Werksmans Attorneys
 

Weitere ähnliche Inhalte

Andere mochten auch

Merger acquisition sampoerna philip morris
Merger acquisition sampoerna philip morrisMerger acquisition sampoerna philip morris
Merger acquisition sampoerna philip morrisFrisca Listyaningtyas
 
Infrastructure regulation - exploring the key models (Australia)
Infrastructure regulation - exploring the key models (Australia)Infrastructure regulation - exploring the key models (Australia)
Infrastructure regulation - exploring the key models (Australia)Martyn Taylor
 
Protection of Personal Information Bill (POPI)
Protection of Personal Information Bill (POPI)Protection of Personal Information Bill (POPI)
Protection of Personal Information Bill (POPI)Robert MacLean
 
Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.
Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.
Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.Sirius
 
Mergers and acquisitions
Mergers and acquisitionsMergers and acquisitions
Mergers and acquisitionsPradeep Yuvaraj
 
mergers and acquisitions
mergers and acquisitions mergers and acquisitions
mergers and acquisitionsBabasab Patil
 

Andere mochten auch (7)

Merger acquisition sampoerna philip morris
Merger acquisition sampoerna philip morrisMerger acquisition sampoerna philip morris
Merger acquisition sampoerna philip morris
 
Infrastructure regulation - exploring the key models (Australia)
Infrastructure regulation - exploring the key models (Australia)Infrastructure regulation - exploring the key models (Australia)
Infrastructure regulation - exploring the key models (Australia)
 
Protection of Personal Information Bill (POPI)
Protection of Personal Information Bill (POPI)Protection of Personal Information Bill (POPI)
Protection of Personal Information Bill (POPI)
 
Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.
Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.
Lions and Mergers and Acquisitions, OH MY! 5 Steps to an Effective M&A Runbook.
 
Chapter 15 mergers and acquisitions
Chapter 15 mergers and acquisitionsChapter 15 mergers and acquisitions
Chapter 15 mergers and acquisitions
 
Mergers and acquisitions
Mergers and acquisitionsMergers and acquisitions
Mergers and acquisitions
 
mergers and acquisitions
mergers and acquisitions mergers and acquisitions
mergers and acquisitions
 

Ähnlich wie The Start-Up’s Guide to Privacy - MaRS Best Practices

Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...
Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...
Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...Plunet BusinessManager
 
Putting The Consumer First
Putting The Consumer FirstPutting The Consumer First
Putting The Consumer FirstVivastream
 
Putting the Consumer First
Putting the Consumer FirstPutting the Consumer First
Putting the Consumer FirstVivastream
 
The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...
The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...
The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...Gary Allen
 
Implementing And Managing A Multinational Privacy Program
Implementing And Managing A Multinational Privacy ProgramImplementing And Managing A Multinational Privacy Program
Implementing And Managing A Multinational Privacy ProgramMSpadea
 
EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...
EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...
EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...Michele Collu
 
Vendor Risk Management in Complex Matters (acc sa presentation)
Vendor Risk Management in Complex Matters (acc sa presentation)Vendor Risk Management in Complex Matters (acc sa presentation)
Vendor Risk Management in Complex Matters (acc sa presentation)Amber Clark
 
GDPR Ready Presentation - Marc Michaels
GDPR Ready Presentation - Marc MichaelsGDPR Ready Presentation - Marc Michaels
GDPR Ready Presentation - Marc MichaelsPost Media
 
Introduction to US Privacy and Data Security: Regulations and Requirements
Introduction to US Privacy and Data Security: Regulations and RequirementsIntroduction to US Privacy and Data Security: Regulations and Requirements
Introduction to US Privacy and Data Security: Regulations and RequirementsFinancial Poise
 
I’m attaching some info on the agency I work for. I work remot.docx
I’m attaching some info on the agency I work for. I work remot.docxI’m attaching some info on the agency I work for. I work remot.docx
I’m attaching some info on the agency I work for. I work remot.docxdonnajames55
 
GDPR is Coming, Five Things You Can Do Now To Prepare
GDPR is Coming, Five Things You Can Do Now To PrepareGDPR is Coming, Five Things You Can Do Now To Prepare
GDPR is Coming, Five Things You Can Do Now To PrepareWinston & Strawn LLP
 
Internet security and privacy issues
Internet security and privacy issuesInternet security and privacy issues
Internet security and privacy issuesJagdeepSingh394
 
Donors, Data Privacy & Security, and Doing What’s “Right”
Donors, Data Privacy & Security, and Doing What’s “Right”Donors, Data Privacy & Security, and Doing What’s “Right”
Donors, Data Privacy & Security, and Doing What’s “Right”Bloomerang
 
Practical steps to take in preparation for the Protection of Personal Informa...
Practical steps to take in preparation for the Protection of Personal Informa...Practical steps to take in preparation for the Protection of Personal Informa...
Practical steps to take in preparation for the Protection of Personal Informa...Werksmans Attorneys
 
Introduction to US Privacy and Data Security Regulations and Requirements (Se...
Introduction to US Privacy and Data Security Regulations and Requirements (Se...Introduction to US Privacy and Data Security Regulations and Requirements (Se...
Introduction to US Privacy and Data Security Regulations and Requirements (Se...Financial Poise
 
Corporate & Regulatory Compliance Boot Camp - Data Privacy Compliance
Corporate & Regulatory Compliance Boot Camp - Data Privacy ComplianceCorporate & Regulatory Compliance Boot Camp - Data Privacy Compliance
Corporate & Regulatory Compliance Boot Camp - Data Privacy ComplianceFinancial Poise
 
Implementing and Auditing GDPR Series (8 of 10)
Implementing and Auditing GDPR Series (8 of 10) Implementing and Auditing GDPR Series (8 of 10)
Implementing and Auditing GDPR Series (8 of 10) Jim Kaplan CIA CFE
 
A Global Marketer's Guide to Privacy
A Global Marketer's Guide to PrivacyA Global Marketer's Guide to Privacy
A Global Marketer's Guide to PrivacyFLUZO
 

Ähnlich wie The Start-Up’s Guide to Privacy - MaRS Best Practices (20)

B2: Fundraising in an age of GDPR
B2: Fundraising in an age of GDPRB2: Fundraising in an age of GDPR
B2: Fundraising in an age of GDPR
 
Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...
Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...
Plunet Summit 2018: Plunet’s approach to the new data regulation of the EU (G...
 
Putting The Consumer First
Putting The Consumer FirstPutting The Consumer First
Putting The Consumer First
 
Putting the Consumer First
Putting the Consumer FirstPutting the Consumer First
Putting the Consumer First
 
The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...
The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...
The Story of a Lean Law Firm: Escaping the Overhead Swamp, Surviving Disrupti...
 
Implementing And Managing A Multinational Privacy Program
Implementing And Managing A Multinational Privacy ProgramImplementing And Managing A Multinational Privacy Program
Implementing And Managing A Multinational Privacy Program
 
EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...
EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...
EVERFI/Jackson Lewis: How to Comply with GDPR Requirements: What every U.S. C...
 
Vendor Risk Management in Complex Matters (acc sa presentation)
Vendor Risk Management in Complex Matters (acc sa presentation)Vendor Risk Management in Complex Matters (acc sa presentation)
Vendor Risk Management in Complex Matters (acc sa presentation)
 
GDPR Ready Presentation - Marc Michaels
GDPR Ready Presentation - Marc MichaelsGDPR Ready Presentation - Marc Michaels
GDPR Ready Presentation - Marc Michaels
 
Introduction to US Privacy and Data Security: Regulations and Requirements
Introduction to US Privacy and Data Security: Regulations and RequirementsIntroduction to US Privacy and Data Security: Regulations and Requirements
Introduction to US Privacy and Data Security: Regulations and Requirements
 
I’m attaching some info on the agency I work for. I work remot.docx
I’m attaching some info on the agency I work for. I work remot.docxI’m attaching some info on the agency I work for. I work remot.docx
I’m attaching some info on the agency I work for. I work remot.docx
 
GDPR is Coming, Five Things You Can Do Now To Prepare
GDPR is Coming, Five Things You Can Do Now To PrepareGDPR is Coming, Five Things You Can Do Now To Prepare
GDPR is Coming, Five Things You Can Do Now To Prepare
 
Internet security and privacy issues
Internet security and privacy issuesInternet security and privacy issues
Internet security and privacy issues
 
Donors, Data Privacy & Security, and Doing What’s “Right”
Donors, Data Privacy & Security, and Doing What’s “Right”Donors, Data Privacy & Security, and Doing What’s “Right”
Donors, Data Privacy & Security, and Doing What’s “Right”
 
Practical steps to take in preparation for the Protection of Personal Informa...
Practical steps to take in preparation for the Protection of Personal Informa...Practical steps to take in preparation for the Protection of Personal Informa...
Practical steps to take in preparation for the Protection of Personal Informa...
 
Introduction to US Privacy and Data Security Regulations and Requirements (Se...
Introduction to US Privacy and Data Security Regulations and Requirements (Se...Introduction to US Privacy and Data Security Regulations and Requirements (Se...
Introduction to US Privacy and Data Security Regulations and Requirements (Se...
 
Family Law Magazine
Family Law MagazineFamily Law Magazine
Family Law Magazine
 
Corporate & Regulatory Compliance Boot Camp - Data Privacy Compliance
Corporate & Regulatory Compliance Boot Camp - Data Privacy ComplianceCorporate & Regulatory Compliance Boot Camp - Data Privacy Compliance
Corporate & Regulatory Compliance Boot Camp - Data Privacy Compliance
 
Implementing and Auditing GDPR Series (8 of 10)
Implementing and Auditing GDPR Series (8 of 10) Implementing and Auditing GDPR Series (8 of 10)
Implementing and Auditing GDPR Series (8 of 10)
 
A Global Marketer's Guide to Privacy
A Global Marketer's Guide to PrivacyA Global Marketer's Guide to Privacy
A Global Marketer's Guide to Privacy
 

Mehr von MaRS Discovery District

How to Pitch a VC - Entrepreneurship 101
How to Pitch a VC - Entrepreneurship 101How to Pitch a VC - Entrepreneurship 101
How to Pitch a VC - Entrepreneurship 101MaRS Discovery District
 
25 lessons learned - Entrepreneurship 101
25 lessons learned - Entrepreneurship 10125 lessons learned - Entrepreneurship 101
25 lessons learned - Entrepreneurship 101MaRS Discovery District
 
So you want to start a business? - Entrepreneurship 101
So you want to start a business? - Entrepreneurship 101So you want to start a business? - Entrepreneurship 101
So you want to start a business? - Entrepreneurship 101MaRS Discovery District
 
Lessons in Startup Leadership - Entrepreneurship 101
Lessons in Startup Leadership - Entrepreneurship 101Lessons in Startup Leadership - Entrepreneurship 101
Lessons in Startup Leadership - Entrepreneurship 101MaRS Discovery District
 
Startup finances: Forecasting, Modelling & Metrics
Startup finances: Forecasting, Modelling & MetricsStartup finances: Forecasting, Modelling & Metrics
Startup finances: Forecasting, Modelling & MetricsMaRS Discovery District
 
10+ Steps to Scaling Your Cheer Squad - Entrepreneurship 101
10+ Steps to Scaling Your Cheer Squad - Entrepreneurship 10110+ Steps to Scaling Your Cheer Squad - Entrepreneurship 101
10+ Steps to Scaling Your Cheer Squad - Entrepreneurship 101MaRS Discovery District
 
Scaling Your Startup - Entrepreneurship 101
Scaling Your Startup - Entrepreneurship 101Scaling Your Startup - Entrepreneurship 101
Scaling Your Startup - Entrepreneurship 101MaRS Discovery District
 
Scaling Outside Canada - Entrepreneurship 101
Scaling Outside Canada - Entrepreneurship 101Scaling Outside Canada - Entrepreneurship 101
Scaling Outside Canada - Entrepreneurship 101MaRS Discovery District
 
Partnership Negotiations - Entrepreneurship 101
Partnership Negotiations - Entrepreneurship 101Partnership Negotiations - Entrepreneurship 101
Partnership Negotiations - Entrepreneurship 101MaRS Discovery District
 
Art of the deal 101: Notes from the Trenches - Entrepreneurship 101
Art of the deal 101: Notes from the Trenches - Entrepreneurship 101Art of the deal 101: Notes from the Trenches - Entrepreneurship 101
Art of the deal 101: Notes from the Trenches - Entrepreneurship 101MaRS Discovery District
 
The Art & Science of Sales: Tips, Tricks & Tools - Entrepreneurship 101
The Art & Science of Sales: Tips, Tricks & Tools - Entrepreneurship 101The Art & Science of Sales: Tips, Tricks & Tools - Entrepreneurship 101
The Art & Science of Sales: Tips, Tricks & Tools - Entrepreneurship 101MaRS Discovery District
 
Sales Putting the Fun in Funnel - Entrepreneurship 101
Sales Putting the Fun in Funnel - Entrepreneurship 101Sales Putting the Fun in Funnel - Entrepreneurship 101
Sales Putting the Fun in Funnel - Entrepreneurship 101MaRS Discovery District
 

Mehr von MaRS Discovery District (20)

How to Pitch a VC - Entrepreneurship 101
How to Pitch a VC - Entrepreneurship 101How to Pitch a VC - Entrepreneurship 101
How to Pitch a VC - Entrepreneurship 101
 
The Pitch - Entrepreneurship 101
The Pitch - Entrepreneurship 101The Pitch - Entrepreneurship 101
The Pitch - Entrepreneurship 101
 
25 lessons learned - Entrepreneurship 101
25 lessons learned - Entrepreneurship 10125 lessons learned - Entrepreneurship 101
25 lessons learned - Entrepreneurship 101
 
So you want to start a business? - Entrepreneurship 101
So you want to start a business? - Entrepreneurship 101So you want to start a business? - Entrepreneurship 101
So you want to start a business? - Entrepreneurship 101
 
Lessons in Startup Leadership - Entrepreneurship 101
Lessons in Startup Leadership - Entrepreneurship 101Lessons in Startup Leadership - Entrepreneurship 101
Lessons in Startup Leadership - Entrepreneurship 101
 
Why Should I Work for You? (The EVP)
Why Should I Work for You? (The EVP)Why Should I Work for You? (The EVP)
Why Should I Work for You? (The EVP)
 
A New Hiring Paradigm
A New Hiring ParadigmA New Hiring Paradigm
A New Hiring Paradigm
 
How to Find and Hire Top Talent
How to Find and Hire Top TalentHow to Find and Hire Top Talent
How to Find and Hire Top Talent
 
Startup finances: Forecasting, Modelling & Metrics
Startup finances: Forecasting, Modelling & MetricsStartup finances: Forecasting, Modelling & Metrics
Startup finances: Forecasting, Modelling & Metrics
 
Financial Modelling
Financial Modelling Financial Modelling
Financial Modelling
 
Forecasting Revenue
Forecasting RevenueForecasting Revenue
Forecasting Revenue
 
10+ Steps to Scaling Your Cheer Squad - Entrepreneurship 101
10+ Steps to Scaling Your Cheer Squad - Entrepreneurship 10110+ Steps to Scaling Your Cheer Squad - Entrepreneurship 101
10+ Steps to Scaling Your Cheer Squad - Entrepreneurship 101
 
Scaling Your Startup - Entrepreneurship 101
Scaling Your Startup - Entrepreneurship 101Scaling Your Startup - Entrepreneurship 101
Scaling Your Startup - Entrepreneurship 101
 
Scaling Outside Canada - Entrepreneurship 101
Scaling Outside Canada - Entrepreneurship 101Scaling Outside Canada - Entrepreneurship 101
Scaling Outside Canada - Entrepreneurship 101
 
Partnership Negotiations - Entrepreneurship 101
Partnership Negotiations - Entrepreneurship 101Partnership Negotiations - Entrepreneurship 101
Partnership Negotiations - Entrepreneurship 101
 
Licensing - Entrepreneurship 101
Licensing - Entrepreneurship 101Licensing - Entrepreneurship 101
Licensing - Entrepreneurship 101
 
Art of the deal 101: Notes from the Trenches - Entrepreneurship 101
Art of the deal 101: Notes from the Trenches - Entrepreneurship 101Art of the deal 101: Notes from the Trenches - Entrepreneurship 101
Art of the deal 101: Notes from the Trenches - Entrepreneurship 101
 
Social Selling - Entrepreneurship 101
Social Selling - Entrepreneurship 101Social Selling - Entrepreneurship 101
Social Selling - Entrepreneurship 101
 
The Art & Science of Sales: Tips, Tricks & Tools - Entrepreneurship 101
The Art & Science of Sales: Tips, Tricks & Tools - Entrepreneurship 101The Art & Science of Sales: Tips, Tricks & Tools - Entrepreneurship 101
The Art & Science of Sales: Tips, Tricks & Tools - Entrepreneurship 101
 
Sales Putting the Fun in Funnel - Entrepreneurship 101
Sales Putting the Fun in Funnel - Entrepreneurship 101Sales Putting the Fun in Funnel - Entrepreneurship 101
Sales Putting the Fun in Funnel - Entrepreneurship 101
 

Kürzlich hochgeladen

Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfAdmir Softic
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayNZSG
 
7.pdf This presentation captures many uses and the significance of the number...
7.pdf This presentation captures many uses and the significance of the number...7.pdf This presentation captures many uses and the significance of the number...
7.pdf This presentation captures many uses and the significance of the number...Paul Menig
 
Regression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear RegressionRegression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear RegressionRavindra Nath Shukla
 
Cracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptxCracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptxWorkforce Group
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...rajveerescorts2022
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...lizamodels9
 
How to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityHow to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityEric T. Tung
 
Grateful 7 speech thanking everyone that has helped.pdf
Grateful 7 speech thanking everyone that has helped.pdfGrateful 7 speech thanking everyone that has helped.pdf
Grateful 7 speech thanking everyone that has helped.pdfPaul Menig
 
Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...Roland Driesen
 
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756dollysharma2066
 
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service BangaloreCall Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangaloreamitlee9823
 
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756dollysharma2066
 
Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...
Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...
Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...anilsa9823
 
John Halpern sued for sexual assault.pdf
John Halpern sued for sexual assault.pdfJohn Halpern sued for sexual assault.pdf
John Halpern sued for sexual assault.pdfAmzadHosen3
 
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...amitlee9823
 
The Coffee Bean & Tea Leaf(CBTL), Business strategy case study
The Coffee Bean & Tea Leaf(CBTL), Business strategy case studyThe Coffee Bean & Tea Leaf(CBTL), Business strategy case study
The Coffee Bean & Tea Leaf(CBTL), Business strategy case studyEthan lee
 
Call Girls Pune Just Call 9907093804 Top Class Call Girl Service Available
Call Girls Pune Just Call 9907093804 Top Class Call Girl Service AvailableCall Girls Pune Just Call 9907093804 Top Class Call Girl Service Available
Call Girls Pune Just Call 9907093804 Top Class Call Girl Service AvailableDipal Arora
 

Kürzlich hochgeladen (20)

Dr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdfDr. Admir Softic_ presentation_Green Club_ENG.pdf
Dr. Admir Softic_ presentation_Green Club_ENG.pdf
 
It will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 MayIt will be International Nurses' Day on 12 May
It will be International Nurses' Day on 12 May
 
7.pdf This presentation captures many uses and the significance of the number...
7.pdf This presentation captures many uses and the significance of the number...7.pdf This presentation captures many uses and the significance of the number...
7.pdf This presentation captures many uses and the significance of the number...
 
Regression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear RegressionRegression analysis: Simple Linear Regression Multiple Linear Regression
Regression analysis: Simple Linear Regression Multiple Linear Regression
 
Cracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptxCracking the Cultural Competence Code.pptx
Cracking the Cultural Competence Code.pptx
 
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
👉Chandigarh Call Girls 👉9878799926👉Just Call👉Chandigarh Call Girl In Chandiga...
 
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
Russian Call Girls In Gurgaon ❤️8448577510 ⊹Best Escorts Service In 24/7 Delh...
 
How to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League CityHow to Get Started in Social Media for Art League City
How to Get Started in Social Media for Art League City
 
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabiunwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
unwanted pregnancy Kit [+918133066128] Abortion Pills IN Dubai UAE Abudhabi
 
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pillsMifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
Mifty kit IN Salmiya (+918133066128) Abortion pills IN Salmiyah Cytotec pills
 
Grateful 7 speech thanking everyone that has helped.pdf
Grateful 7 speech thanking everyone that has helped.pdfGrateful 7 speech thanking everyone that has helped.pdf
Grateful 7 speech thanking everyone that has helped.pdf
 
Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...Ensure the security of your HCL environment by applying the Zero Trust princi...
Ensure the security of your HCL environment by applying the Zero Trust princi...
 
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Mahipalpur Delhi Contact Us 8377877756
 
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service BangaloreCall Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
Call Girls Hebbal Just Call 👗 7737669865 👗 Top Class Call Girl Service Bangalore
 
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
FULL ENJOY Call Girls In Majnu Ka Tilla, Delhi Contact Us 8377877756
 
Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...
Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...
Lucknow 💋 Escorts in Lucknow - 450+ Call Girl Cash Payment 8923113531 Neha Th...
 
John Halpern sued for sexual assault.pdf
John Halpern sued for sexual assault.pdfJohn Halpern sued for sexual assault.pdf
John Halpern sued for sexual assault.pdf
 
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
Call Girls Electronic City Just Call 👗 7737669865 👗 Top Class Call Girl Servi...
 
The Coffee Bean & Tea Leaf(CBTL), Business strategy case study
The Coffee Bean & Tea Leaf(CBTL), Business strategy case studyThe Coffee Bean & Tea Leaf(CBTL), Business strategy case study
The Coffee Bean & Tea Leaf(CBTL), Business strategy case study
 
Call Girls Pune Just Call 9907093804 Top Class Call Girl Service Available
Call Girls Pune Just Call 9907093804 Top Class Call Girl Service AvailableCall Girls Pune Just Call 9907093804 Top Class Call Girl Service Available
Call Girls Pune Just Call 9907093804 Top Class Call Girl Service Available
 

The Start-Up’s Guide to Privacy - MaRS Best Practices

  • 1. The Start-up’s Guide to Privacy at MaRS: Legal Basics & Does Privacy Matter? Stephen Whitney Of Counsel Norton Rose Fulbright Canada LLP January 28, 2016
  • 2. 2 Agenda Privacy Legislation in Canada Comments on International Privacy Laws What To Know About Your Privacy Practices Does Privacy Matter?
  • 3. Privacy Legislation in Canada 3 A.  Federal Legislation •  PIPEDA - The Personal Information Protection and Electronic Documents Act PIPEDA applies across the country but for private companies that primarily operate in a single province, PIPEDA will not apply where the province has already enacted similar provisions to PIPEDA and the business fits within the scope of the provincial legislation.
  • 4. Recommended Reading: Privacy Toolkit A Guide for Businesses and Organizations Canada's Personal Information Protection and Electronic Documents Act https://www.priv.gc.ca/information/pub/guide_org_e.pdf 4 Recommended ReadingPrivacy Legislation in Canada
  • 5. PIPEDA and Digital Health 5 PIPEDA does not impose special obligations on digital health companies. Under s. 30(1.1), the Act states that the duties imposed on the use of personal information in the private sector: …does not apply to any organization in respect of personal health information that it collects, uses or discloses within a province … unless the organization … discloses the information outside the province … .
  • 6. Privacy Legislation in Canada 6 B. Some of the Provincial Legislation Includes: •  British Columbia (Personal Information Act); •  Alberta (Personal Information Protection Act); •  Quebec (An Act Respecting the Protection of Personal Information in the Private Sector); •  Ontario (Personal Health Information Protection Act); •  New Brunswick (Personal Health Information Privacy and Access Act); and •  Newfoundland and Labrador (Personal Health Information Act).
  • 7. Comments on International Privacy Laws 7 •  International privacy laws are often similar, but not identical. •  Typically based off of privacy principles. •  International privacy compliance is very challenging! •  The result is often a risk assessment of how to approach privacy. •  Do you have one approach globally or can you customize your approach for unique country requirements?
  • 8. Some important things to know about your privacy practices include: •  Sector •  Target audience •  Countries •  Business model •  Operational procedures 8 What To Know About Your Privacy Practices
  • 9. More specifically, for operational procedures it is important to know: •  What personal information and information does the company collect from the user of its products and services, website, apps, etc. and what is the context? •  Account and membership information? •  Unique identifiers? •  Information from children under 18 or under 13 years of age? •  Information about applications used on computer/device? •  Third party offerings (i.e. products, services, software, websites or content provided by a third party)? •  Cookies or similar technologies? 9 What To Know About Your Privacy Practices (cont)
  • 10. •  Financial information? •  Does the company process online payments? •  Are the payments processed by the company or a third party payment processor? •  What other financial information, if any, is collected? •  Does the company track the purchase history of customers? •  General usage data? •  Location information? •  Quality assurance and customer service? •  Health information? •  Other? 10 What To Know About Your Privacy Practices (cont)
  • 11. •  For what purposes does company use the personal information it collects? •  billing, activation, provision, maintenance, support, trouble shooting, resolving of disputes, deactivation, repair, refurbishment, replacement, upgrade or update of offerings •  to manage or respond to your inquiries •  to develop new and enhance existing offerings including to communicate with you about them using various means •  to manage and develop your business and operations •  to meet legal and regulatory requirements and to respond to emergency situations •  Does company use sales information? •  Do you send marketing communications (for example, emails)? 11 What To Know About Your Privacy Practices (cont)
  • 12. •  To whom does company disclose the personal information? •  Affiliates, Service Providers, Third Parties, Other? •  Do you send any of the personal information you collect to other countries? •  Data Retention •  Where stored? •  How long keep? •  When and how destroy? Make anonymous? •  Security •  Adequate protections implemented? •  Encryption used? At rest and in transit? 12 What To Know About Your Privacy Practices (cont)
  • 13. •  Do you obtain consent? When, where, how? If yes, what does the consent say? •  Consent by layers •  Terms and conditions •  Privacy policy •  Notices •  Reminders/Icons 13 What To Know About Your Privacy Practices (cont)
  • 14. Discussion based off of Prof. Michael Sandel’s keynote at IAPP • Uber • Connected Cars • Email Providers 14 Does Privacy Matter?
  • 15. Stephen Whitney Of Counsel Norton Rose Fulbright Canada LLP / S.E.N.C.R.L., s.r.l. 51 Breithaupt Street, Suite 100 Kitchener, Ontario N2H 5G5 Canada OR Royal Bank Plaza, South Tower, Suite 3800 200 Bay Street, P.O. Box 84, Toronto, ON M5J 2Z4 Canada T: +1 226.868.9125 stephen.whitney@nortonrosefulbright.com 15
  • 16.
  • 17. Disclaimer Norton Rose Fulbright LLP, Norton Rose Fulbright Australia, Norton Rose Fulbright Canada LLP, Norton Rose Fulbright South Africa (incorporated as Deneys Reitz Inc) and Fulbright & Jaworski LLP, each of which is a separate legal entity, are members (‘the Norton Rose Fulbright members’) of Norton Rose Fulbright Verein, a Swiss Verein. Norton Rose Fulbright Verein helps coordinate the activities of the Norton Rose Fulbright members but does not itself provide legal services to clients. References to ‘Norton Rose Fulbright’, ‘the law firm’, and ‘legal practice’ are to one or more of the Norton Rose Fulbright members or to one of their respective affiliates (together ‘Norton Rose Fulbright entity/entities’). No individual who is a member, partner, shareholder, director, employee or consultant of, in or to any Norton Rose Fulbright entity (whether or not such individual is described as a ‘partner’) accepts or assumes responsibility, or has any liability, to any person in respect of this communication. Any reference to a partner or director is to a member, employee or consultant with equivalent standing and qualifications of the relevant Norton Rose Fulbright entity. The purpose of this communication is to provide information as to developments in the law. It does not contain a full analysis of the law nor does it constitute an opinion of any Norton Rose Fulbright entity on the points of law discussed. You must take specific legal advice on any particular matter which concerns you. If you require any advice or further information, please speak to your usual contact at Norton Rose Fulbright. 17