Uncategorized

For North American businesses operating across the EU and UK, understanding GDPR territorial scope is essential. As digital transactions increase, especially with cloud-based workflows and remote-working teams, personal data is frequently transferred across country borders. This often creates significant regulatory challenges for global businesses striving to remain compliant while ensuring operational efficiency.  In this blog, […]

It’s been a busy year for data protection and privacy in Canada and the USA, with significant developments not only across North America, but also globally. As businesses face evolving privacy challenges, understanding the year’s developments and preparing for 2025’s expectations is crucial for maintaining compliance and staying competitive.  In this blog, we highlight some

In our GDPR Guide for SaaS companies, we look at the key factors that SaaS businesses need to address to ensure compliance with EU and UK data protection laws. For the purposes of the guide, we use the General Data Protection Regulation (GDPR) as a collective term, but please be aware that there are certain

Q&A with Ray Pathak, MD The DPO Centre, Canada The Personal Information Protection and Electronics Act (PIPEDA) was enacted in April 2000. Since then, there have been significant changes in global data protection and technological advancements, necessitating amendments to Canadian federal legislation.  The Digital Charter Implementation Act, 2022 (also known as Bill C-27) is the

Organizations that collect, process and store the personal information of Quebec individuals must ensure their existing privacy programs are in line with the provisions of Quebec’s Law 25. This new legislation was adopted in September 2021 and has been implemented in stages, with the final stage coming into effect on September 22, 2024.  Law 25

EU and UK-based organisations regularly need to transfer personal data to different countries for a variety of reasons – project collaborations, partnerships, service providers etc.  With the increasing complexity of global privacy legislation, it is vital for organisations to have the appropriate safeguards in place for these transfers. This ensures compliance with data protection laws,

This year has seen significant progress in the data protection industry, with many new privacy laws being enacted across the globe. In this blog, we look at some of the major events and news stories that have shaped the landscape, influencing the direction of policies and processes. What does the development of data protection laws

Navigating the complexities of data protection regulations can be challenging, especially for organisations and businesses operating across borders.  The General Data Protection Regulation (GDPR) specifies that organisations located outside the EU, without an establishment in the region, must designate a Representative if processing the personal data of EU residents. The UK GDPR has the same