Traduction de «Atteinte à la protection des données » (Français → Anglais) :

(g) where a personal data breach would likely adversely affect the protection of the personal data, the privacy, the rights or the legitimate interests of the data subject;

1. Member States shall provide that when the personal data breach is likely to adversely affect the protection of the personal data, the privacy, the rights or the legitimate interests of the data subject, the controller shall, after the notification referred to in Article 28, communicate the personal data breach to the data subject without undue delay.

Question No. 66 Mr. Murray Rankin: With regard to data, information or privacy breaches at Canada Revenue Agency (CRA), for each year from 2002 to 2012: (a) how many breaches have occurred in total and what is the number of individuals affected by each such breach; (b) of those breaches identified in (a), how many have been reported to the Office of the Privacy Commissioner and what is the number of individuals affected by each such breach; (c) how many breaches are known to have led to criminal activity such as fraud or identity theft; and (d) why was CRA unable to provide this information in response to written question Q-1217 submitted by Charlie Angus, MP for Timmins—Jame ...[+++]s Bay, on March 7, 2013?

Meanwhile, a European Commission Regulation proposed in early 2012 included data breach provisions and very significant fining powers for European data protection authorities.

Question No. 1217 Mr. Charlie Angus: With respect to data, information or privacy breaches at government departments, institutions and agencies, for each year from 2002 to 2012: (a) how many breaches have occurred in total, broken down by (i) department, institution or agency, (ii) the number of individuals affected by the breach; (b) of those breaches identified in (a), how many have been reported to the Office of the Privacy Commissioner, broken down by (i) department, institution or agency, (ii) the number of individuals affected by the breach; and (c) how many breaches are known to have led to criminal activity such as fraud or identity theft, broken down by department, in ...[+++]stitution or agency?

To that end, we have introduced amendments to PIPEDA. The amendments, which are contained in Bill C-12, will introduce new requirements for organizations to report data breaches to the Privacy Commissioner of Canada and to notify affected individuals when the breaches are deemed to pose a significant risk of harm, such as identity theft or fraud.