You operate a service, distribution or manufacturing company, and your customers are exclusively businesses (B2B), not individuals. This program is for you, because your employee and management files contain personal information. Law 25 is now in force and sets out concrete obligations and penalties. In the event of a complaint or a confidentiality incident such as a cyber attack, you need to know what to do.
Our basic program will help you to better understand your obligations in a collegial manner, and to put in place the most essential documentation to prove your compliance with privacy requirements. Each module is moderated live by Mtre Natacha Boivin, partner and lawyer at DS Lawyers Canada LLP, and includes an interactive webinar and a group Q&A session to clarify any grey areas and help you finalize the proposed documentation.
All meetings are offered in both synchronous and asynchronous modes. If you are unable to attend on the scheduled dates, watch the recording the following day and prepare your questions for the next group Q&A session.
Module 1
Module 1.1 – Webinar (2 h) and essential compliance documents
DPO and Law 25
- Resolutions appointing the person responsible for the protection of personal information, the Data Protection Officer (DPO)
- List of DPO tasks
- Personal information inventory template
Confidentiality incidents
- Procedure for responding to complaints and confidentiality incidents
- Register of complaints and confidentiality incidents
- Notification to the (provincial) supervisory authority
- Sample notice to inform individuals of a confidentiality incident
Policies and consent
- Privacy and confidentiality policy
- Consent form and language for the website
Module 1.2 – 1-hour Q&A Session
Module 2
Module 2.1 – Webinar (2 h) and essential documents
Relationships with service providers processing personal information and disclosure of information
- Summary table of Privacy Impact Assessments (PIAs)
- Template supplied by CAI
- Security Agreement
- Compliance questionnaire for service providers
Data Management
- Integrated Document Management Policy
- Classification Plan and Retention Schedule
- Access Table and Register
Safety and monitoring of Law 25
- DPO Guide
- IT Diagnostics Questionnaire
Module 2.2 – 1-hour Q&A Session
How to register
Open registration at any time, even after the start of the cohort and up to six months the end of the program. Instant access to all past and future registrations, as well as downloadable documents.
You never wait to get started on compliance!
Rates
- Basic Program* (2 months)
- $550 / organization (1 participant) + $50 per additional person
Plus taxes, payable online.
*Our Basic Program lays the necessary foundations—a simple and concrete gateway to compliance. Comprehensive support provides you with all the documentation you need and gives you complete autonomy in your data governance. If you choose basic support, you can join a Full Program support cohort at any time, which includes several additional documents and information, by paying the difference between the two prices. We suggest program 2025-E01E – All types of businesses and online sales – Full Program – Law 25 Compliance
You receive
- 2 interactive webinars with document to be kept for future reference
- 2 group Q&A sessions
- Essential documentation listed above
- Unlimited access to recordings and documents for six months following the end of the program
