IT Canada reports that effective November 1, 2018 Canada’s new mandatory data breach notification law took effect
It forces companies that come under the federal data protection act to report serious violations of personal data safeguards to tell victims and the federal privacy commissioner. Violations could result in fines of up to $100,000.
Details are found here
The New York Times has reported that the Marriott hotel chain asked guests checking in for a treasure trove of personal information: credit cards, addresses and sometimes passport numbers. On Friday November 30, 2018 consumers learned the risk. Marriott International revealed that hackers had breached its Starwood reservation system and had stolen the personal data of up to 500 million guests.
Here is the story https://www.nytimes.com/2018/11/30/business/marriott-data-breach.html