Compliance
10 articles in this category.
CPCSC Level 1: What Suppliers to the Government of Canada Need to Know
The Canadian Program for Cyber Security Certification (CPCSC) Level 1 sets a cyber-hygiene bar for federal suppliers. Here's who needs it and how to prepare.
Read articleA Small Business Guide to CASL: Canada's Anti-Spam Law
CASL governs the commercial emails and texts your business sends. Here's what consent, identification, and unsubscribe rules mean for Canadian SMBs.
Read articleWhy Cyber Insurance Claims Get Denied — and How to Stay Covered
Cyber insurance claims get denied more often than you'd think. Here are the most common reasons Canadian businesses lose coverage — and how to avoid them.
Read articleBill C-8 and the Critical Cyber Systems Protection Act: What It Means for Your Business
Bill C-8 would create the Critical Cyber Systems Protection Act. Here's who it covers, what it would require, and why it matters even if you're not regulated.
Read articleCyberSecure Canada Certification: Cost, the 13 Controls, and How to Get Certified
CyberSecure Canada certification explained: the 13 baseline controls, what it costs, how long it lasts, and the step-by-step path to getting certified.
Read articleWhat Canadian Cyber Insurers Now Require Before They'll Cover You
Cyber insurance requirements in Canada have tightened. Here are the security controls insurers now expect before they will issue or renew a policy.
Read articleA Plain-Language PIPEDA Compliance Checklist for Small Businesses
A plain-language PIPEDA compliance checklist for small businesses — the practical steps to handle personal information the way Canadian law expects.
Read articleQuebec's Law 25: What Businesses Outside Quebec Still Need to Know
Quebec's Law 25 has tightened privacy rules and can apply to businesses outside Quebec. Here's what small and mid-sized businesses need to know.
Read articleSOC 2 for Canadian Companies: Do You Actually Need It?
SOC 2 for Canadian companies, explained: what a SOC 2 report is, when you actually need one, and how to prepare without wasting effort.
Read articleWhat PIPEDA expects from you after a data breach
Canada's PIPEDA sets clear obligations for businesses after a data breach. Here's a plain-language overview of what's required.
Read article