Organizations must make information regarding their privacy practices and policies readily available, and must emphasize four key aspects:
Organizations must disclose specific information such as to whom complaints can be directed, how individuals can gain access to the personal information held about them, and how that information is used, among other things. Individuals must be able to access this information without unreasonable effort.
Organizations operating outside of Canada need to be aware of data protection and privacy laws in the foreign jurisdictions where they operate. For example, the California Consumer Privacy Act (CCPA) in the U.S. and the General Data Protection Regulation (GDPR) in the E.U. As the exclusive Lex Mundi member law firm for Manitoba, Canada, TDS assists clients with data protection and privacy law advice in 100+ countries around the world.