First Reference company logo

Inside Internal Controls

News and discussion on implementing risk management

machine cogs image

E-Commerce

Learn from British Airways’ security breach reporting and notification

British Airways’ experience described in this article underscores that cybersecurity is important, and Canadian entities preparing for mandatory security breach reporting and notification coming into force soon can take lessons from British Airways’ response to a security breach.

 

, , , , , , , , , , ,

Draft amending regulations issued under the Proceeds of Crime (Money Laundering) and Terrorist Financing Act, including in respect of virtual currencies and prepaid cards

New regulations issued June 9, 2018, follow the recent 2016 Financial Action Task Force (FATF) Mutual Evaluation Report for Canada (the “FATF Report”) which concluded that Canada largely has a strong legal framework and competent authorities dealing with money laundering and terrorist financing risks, but noted certain deficiencies that needed to be addressed.

 

, , ,

Canadian developments in digital identity

search-warrant

Digital identity is increasingly becoming a hot topic globally and Canada is no exception. For example, amendments to the Bank Act (and equivalent legislation in respect of federal insurance companies and federal loan and trust companies) have recently been introduced permitting federally regulated financial institutions to provide “identification, authentication or verification services”.

 

, , , , , ,

Casinos, cards and counter-strike: A brief overview of skin gambling in Canada and abroad

In recent years, the gaming industry has seen the rise of so-called “skin gambling” websites. Critics have been quick to raise red flags, citing the need for profound regulation and protective measures shielding children from such platforms. This bulletin explores the practice of skin gambling, including regulatory responses in Quebec and the rest of the world.

 

, , , , , , , , , , , ,

Disclosure of forensic experts’ findings in data breach class action results in waiver of privilege

Given that maintaining privilege and confidentiality is a key objective in data breach incident response, organizations must structure their response teams and communications with a view to maintaining privilege.

 

, , ,

Department of Finance Canada issues consultation paper on review of the Canadian Payments Act

A recent Consultation Paper sought comments on whether the 2015 Amendments had been successful in better enabling Payments Canada to meet its mandate to promote the efficiency, safety, and soundness of its systems while taking into account the interests of users.

 

, , , , ,

Online advisors: Stand-alone investment managers or tools for portfolio managers?

While the use of technology can lower the cost of investment advisory services, the introduction of algorithmic technology or other forms of artificial intelligence into the investment advice process introduces new risks to investors which raises questions.

 

, , , ,

European commission releases proposal to regulate crowdfunding

Crowdfunding Service Providers (CSPs) can provide businesses and individuals with a digital platform to reach out to potential investors for funding. Presently, some EU countries have their own national legislation on crowdfunding while others require CSPs to be licensed and operate under EU frameworks.

 

, , , , ,

Government of Ontario announces plans for Fintech Accelerator Office

On May 2, 2018, the Government of Ontario announced plans to open the Fintech Accelerator Office. The Federal Government has also indicated interest in assisting emerging Fintech companies. In a recent Consultation Paper, the Department of Finance proposed establishing an advisory service for small payment service provider firms.

 

, ,

Conference update: Virtual currency exchanges, beneficial ownership and other developments in Canadian anti-money laundering regulations

anti-money laundering

On February 7, 2018, the Canadian federal government had released a consultation paper for comments that has potentially far-reaching implications for compliance with Canadian anti-money laundering (AML) requirements. At the recently concluded 17th Annual Forum on Anti-Money Laundering & Financial Crime in Toronto, some interesting observations were made by various speakers (including representatives from certain Canadian regulators). A number of these observations touched on topics covered by the above-mentioned consultation paper. This article sets out some key highlights.

 

, , , , , , ,

514-BILLETS gets billed by the CRTC for CASL violations

This case reminds organizations that CASL applies to any form of CEM, even text messages, used to promote products and services, and that the CRTC is actively monitoring and responding to complaints involving different types of CEMs.

 

, , , , , , , , , ,

Canada’s oldest stock exchange enters cryptocurrency market

TMX Group Ltd., which owns the 166 year-old Toronto Stock Exchange, announced on March 22, 2018 that it would launch a cryptocurrency platform and thereby enter the burgeoning market for virtual currencies.

 

, , , ,

Ontario budget 2018: Financial services updates

The 2018 Ontario Budget includes a number of financial services related developments, with a strong focus on innovation.

 

, , , , , , , ,

Guidance on recording of customer telephone calls updated

The Office of the Privacy Commissioner of Canada recently updated its information and guidance on recording of customer telephone calls to bring it up to date, make it web-friendly and responsive for user feedback.

 

, , , , , , , , ,

Collaboration between the business risk and IT security teams

Take each of your business objectives and plans. Now, figure out what might result from a technology-related failure (noting that ‘technology’ extends beyond the IT function). Then, what are you going to do about it?

 

, , , , , ,

Previous Posts