Privacy and Data Protection
Goodmans Privacy and Data Protection Group provides clear advice and roadmaps to help our clients navigate Canada’s evolving privacy and data protection laws. Our lawyers routinely advise on complex, cutting-edge issues relating to cybersecurity, big data, artificial intelligence, biometrics and facial recognition technologies. We also provide practical advice on compliance with Canada’s anti-spam law (CASL), one of the most stringent laws of its kind in the world.
Importantly, our work is not confined to addressing only personal information – but all forms of information and data, which are valuable assets in a data-driven economy. We skillfully operate in an inter-jurisdictional context, often reconciling the privacy and data protection requirements of Canada, the United States, Europe and Asia. Our lawyers provide expert counsel on avoiding and mitigating regulatory and litigation risk. Where necessary, we are ready to actively litigate or resolve disputes on behalf of our clients and have litigated a number of Canada’s leading privacy-related commercial cases.
In an evolving legal landscape, our clients benefit from the clarity we bring to complex and novel matters. As technological advances have fundamentally changed the availability, nature, volume and storage of information about identifiable individuals, governments in Canada have responded with a patchwork of national, provincial, municipal and industry-specific privacy and data security laws. Clients turn to us because we stay abreast of evolving laws and regulations to make regulatory compliance a dauntless process.
Our Group routinely drafts bespoke privacy policies and procedures. We advise on privacy, data protection and cybersecurity issues in complex commercial transactions, in particular as they relate to data residency, data protection, hosting and security requirements. We have extensive experience helping businesses negotiate privacy and security sensitive transactions, such as outsourcing and services agreements. We are proactive and bring a commercially sensitive and pragmatic approach to these issues, both in transactions and in advising our clients on the day-to-day privacy, data protection and anti-spam compliance issues they encounter.
In data breach situations, Goodmans Privacy and Data Protection Group provides a measured and time-sensitive response, balancing legal, regulatory, public relations and operational considerations. We have helped many organizations navigate ransomware attacks, mischief-making, and the illicit copying or alteration of sensitive data by hackers and disgruntled employees. We apply our multi-faceted expertise to:
- advise whether the authorities must be notified of the breach and other evolving legal requirements
- explore any cross-border issues
- address contractual obligations and risks, including with respect to confidential information and intellectual property
- work with public relations professionals to balance legal and public relations risks
- interface with regulators and the police
- deal with any resulting litigation, including class-actions
- address the applicability of insurance
- advise concerning the liability of directors and officers
- assist you to minimize future breach incidents
Expertise
-
AI
-
Anti-Spam and Malware
-
Freedom of Information
Explore People in Privacy and Data Protection
Meet our teamFeatured Work
-
Mergers and Acquisitions
HoudiniSwap acquired by Sol Strategies for US$18 million
Goodman LLP advised HoudiniSwap LLC in connection with its acquisition by Sol Strategies for US$18 million… -
Sports
GTCR-backed Ascent Sports Group acquires LiveBarn
Goodmans LLP acted as Canadian counsel to Ascent Sports Group, a company backed by GTCR LLC, in connection with its acquisition of LiveBarn, a Montreal-based provider of live and on-demand video and… -
Private Equity
Dayforce taken private by Thoma Bravo for US$12.3 billion
Goodmans LLP advised Dayforce, Inc. as Canadian counsel in connection with its acquisition by Thoma Bravo in an all-cash transaction with an enterprise value of US$12.3 billion… -
Private Equity
KEV Group acquires ebase Software
Goodmans LLP acted for KEV Group Inc. in connection with its acquisition of ebase Software, Canada’s largest facilities management and rentals software provider based in Ontario… -
Entertainment
Cineplex sells its digital place-based media division to Creative Realities for $70 million
Goodmans LLP acted for Cineplex Inc., Canada's leading entertainment and media company, in connection with the sale of its digital place-based media division, Cineplex Digital Media (“CDM”) to… -
Mergers and Acquisitions
Andlauer Healthcare Group acquired by UPS
Goodmans LLP acted for Andlauer Healthcare Group (“AHG”) in connection with its acquisition by UPS via an all-cash transaction that values AHG at an equity value of approximately C$2.2 billion…
Insights
-
Privacy and Data Protection
Canadian Privacy Regulators Publish Findings and Guidance on OpenAI Privacy Compliance
Following a multi-year joint investigation, federal and provincial privacy regulators recently published their findings with respect to OpenAI’s collection and use of personal information to train… -
Entertainment
Canada launches public consultation on Generative AI and Copyright Law
On October 12, 2023, Canada’s Minister of Innovation, Science and Industry and its Minister of Canadian Heritage launched a public consultation on the implications of generative artificial… -
Privacy and Data Protection
B.C. Court Rules Facebook Liable for Privacy Violations in Class Action
Another chapter in the now decade-long saga of Douez v. Facebook was penned earlier this month as a British Columbia Court found Facebook liable for providing advertisers access to users… -
Technology
Technology Sourcing 2021 - Canada Chapter
Jessica Bishop and Peter Ruby co-authored the 1st edition of the International Comparative Legal Guide - Technology Sourcing 2021, Canada chapter. The Canada chapter covers common issues in technology… -
Banking and Financial Services
Federal Government Releases Draft Retail Payments Activities Act
On April 30, as part of the 2021 federal budget, Canada’s Deputy Prime Minister and Minister of Finance (the “Minister”) introduced Bill C-30, An Act to implement certain provisions of the budget… -
Litigation and Dispute Resolution
Federal Privacy Regulation 2.0: Now with Bite and Bark
This week, the Canadian Federal Minister of Innovation, Science and Industry introduced for first reading in Parliament Bill C-11, An Act to enact the Consumer Privacy Protection Act and the Personal…
Awards & Recognition
-
Best Law Firms - Canada Recognized, Privacy and Data Security Law 2026
-
Best Law Firms - Canada Recognized, Privacy and Data Security Law 2025
News & Events
-
- 10:15 AM Privacy and Data Protection
Peter Ruby at ITechLaw’s 2026 World Technology Law Conference
Join Goodmans Partner Peter Ruby at ITechLaw’s 2026 World Technology Law Conference in Chicago on Thursday, May 14, 2026, from 9:00 – 10:15 AM CDT for the session, “1C: Safeguarding the Next… -
Banking and Financial Services
The Canadian Legal Lexpert Directory 2026 Recognizes Goodmans
We are proud to announce Goodmans continues to be recognized in the 2026 edition of The Canadian Legal Lexpert Directory.Congratulations to the 90 Goodmans lawyers recognized as leaders across… -
Banking and Financial Services
Goodmans Recognized in the Best Law Firms - Canada 2026
Goodmans is pleased to share we are once again featured in the Best Law Firms - Canada 2026, recognizing us as one of Canada’s most exceptional law firms across 42 industries and practices.We are also…