Vito Pilieci reports:
The Office of the Privacy Commissioner of Canada will monitor American credit agency Equifax Inc. for the next six years after an investigation into a massive data breach of personal information at the firm in 2017.
[…]
The commissioner has also released a “compliance agreement” with the company that cracks down on Equifax demanding it develop better data retention policies, delete or anonymize all Canadian personal information, increase privacy and security measures when it comes to handling or storing data. The privacy commissioner has requested regular reports from bother Equifax Canada and it’s U.S. parent company for the next six years (until 2025) detailing how it is meeting the requirements. The commissioner also specified that it may ask for additional information or visit Equifax’s offices, either in Canada or anywhere around the world where Canadian personal information is being processed.
Read more on Ottawa Citizen.