Tag: spyware

CASL: the unofficial FAQ, regulatory impact statement, and compliance guidelineCASL: the unofficial FAQ, regulatory impact statement, and compliance guideline



The “anti-spam” portion of Canada’s anti-spam/spyware law (CASL) came into on July 1, 2014. The “malware/spyware” computer program provisions come into force on January 15, 2015.

Most organizations are having very difficult times adapting to CASL’s confusing and prescriptive rules. According to a recent mini-survey conducted by the Canadian Chamber of Commerce of over 160 of its members, from responses to questions answered over 90% of Canadian organizations believe that CASL should be scrapped, amended, or at least be subject to a Parliamentary review before it becomes law.

CASL don’t forget about the computer program “malware” and “spyware” provisionsCASL don’t forget about the computer program “malware” and “spyware” provisions



Earlier today, I co-chaired the program Countdown to Canada’s Anti-Spam Legislation: Make Sure You Are Ready, jointly provided by the Ontario Bar Association and the Law Society of Upper Canada. I gave an overview of CASL focusing on the computer program provisions before moderating the “Ask the Experts” Q&A panel.

My slides on the computer program provisions are shown below.

 

The Industry Canada CASL regulations and RIAS: a lost opportunityThe Industry Canada CASL regulations and RIAS: a lost opportunity



If it was not clear enough before that there are many problems with CASL, it became evident when Industry Canada released the final regulations and the Regulatory Impact Analysis Statement (the RIAS). CASL takes an extremely broad “ban all” approach to regulating commercial messages and the installation of computer programs. This structure makes the exceptions particularly important because every CEM sent without consent (and following the prescribed rules) and every computer program installed on any computer (machine or device) without consent (and making the required disclosures) as part of a commercial activity will be illegal.

Evaluating the Industry Canada CASL regulations: defining commercial electronic messageEvaluating the Industry Canada CASL regulations: defining commercial electronic message



In a previous post, Evaluating the Industry Canada CASL regulations: why they are needed, I suggested that close scrutiny needs to be given to Industry Canada’s new draft Electronic Commerce Protection Regulations. CASL’s “ban all” structure makes it imperative that generous regulations be adopted to ensure that the goal’s of Canada’s new anti-spam/anti-malware law (CASL) are met. In another post, Evaluating the Industry Canada CASL regulations: how to assess them, I proposed a framework for assessing the regulations.

Evaluating the Industry Canada CASL regulations: jurisdictional overreachEvaluating the Industry Canada CASL regulations: jurisdictional overreach



In a previous post, Evaluating the Industry Canada CASL regulations: why they are needed, I suggested that close scrutiny needs to be given to Industry Canada’s new draft Electronic Commerce Protection Regulations. CASL’s “ban all” structure makes it imperative that generous regulations be adopted to ensure that the goal’s of Canada’s new anti-spam/anti-malware law (CASL) are met. In another post, Evaluating the Industry Canada CASL regulations: how to assess them, I proposed a framework for assessing the regulations.

Evaluating the Industry Canada CASL regulations: family relationships and personal relationshipsEvaluating the Industry Canada CASL regulations: family relationships and personal relationships



In a previous post, Evaluating the Industry Canada CASL regulations: why they are needed, I suggested that close scrutiny needs to be given to Industry Canada’s new draft Electronic Commerce Protection Regulations. CASL’s “ban all” structure makes it imperative that generous regulations be adopted to ensure that the goal’s of Canada’s new anti-spam/anti-malware law (CASL) are met. In another post, Evaluating the Industry Canada CASL regulations: how to assess them, I proposed a framework for assessing the regulations.

Evaluating the Industry Canada CASL regulations: how to assess themEvaluating the Industry Canada CASL regulations: how to assess them



In a previous post,Evaluating the Industry Canada CASL regulations: why they are needed, I suggested thatclose scrutiny needs to be given toIndustry Canada’s new draft Electronic Commerce Protection Regulations. CASL’s “ban all” structure makes it imperative that regulations be adopted to ensure that the goal’s of Canada’s new anti-spam/anti-malware/spyware law (CASL) are met. Their adequacy and appropriateness should be measured against these and other generally recognized objectives. In this post I propose to lay out the framework for assessing the regulations.

CRTC guidance on interpreting its CASL regulations and guidelines at the IT-Can/TCLG meetingCRTC guidance on interpreting its CASL regulations and guidelines at the IT-Can/TCLG meeting



Lynne Perrault, and Ryan Caron of the CRTC gave a talk to members of IT-Can and the Toronto Computer Lawyers Group on the CRTC regulations and guidelines related to CASL. Kelly Anne Smith of the CRTC joined by phone. (I summarized these documents in a blog post, CRTC Issues CASL (Canada’s Anti-Spam Law) Guidelines, background and commentary.) The slides presented at the meeting are set out below.

The following are some highlights from the talk and the Q & A that followed.

CRTC clarifies questions about CASLCRTC clarifies questions about CASL



Earlier today, Andrea Rosen, Chief Compliance and Enforcement Officer at the CRTC and Lynne Perrault, Director – Electronic Commerce Enforcement Division, Compliance and Enforcement Sector of the CRTC, gave a talk to the ITAC Legal Affairs Forum in Toronto. The subject was the Commission’s plans for enforcement of CASL. Ryan Caron, manager of e-commerce enforcement from the CRTC participated by phone.

The following are some highlights from the talk.

  • The CRTC has hired staff and has the capability to engage in computer forensics and cyber investigations.

CRTC Issues CASL (Canada’s Anti-Spam Law) Guidelines, background and commentaryCRTC Issues CASL (Canada’s Anti-Spam Law) Guidelines, background and commentary



Last week the CRTC released its first two “information bulletins” intended to help businesses in interpreting CASL and the CRTC’s regulations under CASL. While certain of the Commission’s interpretations are helpful, some are troublesome as they would impose new requirements not contemplated either by the statute or the CRTC’s own regulations. They would necessitate costly compliance, which would particularly affect small and medium-sized businesses and mobile digital commerce.

Under the Commission’s interpretation of its regulations and the related provisions of CASL, among other things:

  • Users should be given the opportunity to unsubscribe from all messages from the sender, not merely CEMs.