CPA Canada publication guides SMEs on privacy and data security issues
Toronto A new publication from Chartered Professional Accountants of Canada helps small and medium-sized enterprises (SMEs) tackle the challenges associated with collecting and appropriately securing customer information.
The second edition of The Canadian Privacy and Data Security Toolkit, provides business owners with practical information, tools and resources to effectively handle the privacy and data security issues of today.
With a foreword written by Daniel Therrien, Privacy Commissioner of Canada, and an introduction by Dr. Ann Cavoukian, Executive Director of Ryerson University’s Privacy & Big Data Institute, this Toolkit addresses the importance of implementing sound privacy policies and practices.
“Increasingly, businesses have access to massive amounts of customer data. Canadians are understandably very concerned about the management and use of their personal information,” says Dr. Cavoukian. “Due to this fact, businesses need to ensure that they go beyond regulatory compliance and risk aversion and proactively implement procedures to protect consumer information.”
That sentiment is echoed by Nicholas Cheung, CPA Canada’s vice-president of member services. “No company wants to deal with the fallout from a data security breach,” he says. “It’s about protecting client or customer information along with your company’s distinguished reputation.”
The Toolkit’s author, Claudiu Popa, CEO and Principal Risk Advisor at Informatica Corporation, states that Canada is poised to be a global leader in privacy and data security.
“Canadian business is at an inflection point in risk maturity and will play an increasingly positive role on the global stage,” says Popa. “The publication is an essential read for any business concerned with the changing regulatory landscape, seeking to mitigate risk and looking to drive growth through savvy investment in privacy and security."
The Canadian Privacy and Data Security Toolkit features:
• self-assessments to help identify an organization's data security and privacy risks
• advice on privacy and security risks in specific departments