First Reference company logo

Inside Internal Controls

News and discussion on implementing risk management

machine cogs image

personal data

Overarching limit on the collection, use and disclosure of personal information

A key takeaway for organizations is that it is not enough to comply with other provisions in PIPEDA, for example, obtaining meaningful consent. Organizations must still show that their purposes for collecting, using or disclosing personal information are those that a reasonable person would consider appropriate in the circumstances.

 

, , , ,

Risk management in the cloud

Cloud computing may indeed be “one of the biggest revolutions to emerge in recent times,” but it also presents big risks. The global principles, frameworks and standards for risk management and accountability in the cloud itself are still very much playing catch-up…

 

, , , , , , , , , ,