Canada’s Parliament recently passed amendments to the Personal Information Protection and Electronic Documents Act (PIPEDA). I discussed some of those amendments (which went into force immediately) in an earlier post. In this slide presentation, I provide an overview of Canada’s new breach reporting law, which was contained in the amendments to PIPEDA. When this law goes into effect, organizations that are subject to PIPEDA will have an obligation to keep records on breaches of security safeguards,. Organizations will also need to report those breaches to the Office of the Privacy Commissioner and to notify individuals if the breach creates a real risk of significant harm to an individual.