GDPR Compliance in Canada

January 2019

Canadian companies that offer goods or services to European Union (EU) residents, or monitor the behavior of EU residents within the EU, will now need to comply with strict new rules around how they collect, handle and secure information. The General Data Protection Regulation (GDPR)contains important new operational requirements concerning data protection and cybersecurity breaches.

On November 1, 2018 mandatory breach notification is coming into force in Canada, which means that Canadian companies need to be prepared for these types of breaches or face significant fines.