Consumer Privacy Protection Act (CPPA)

January 28, 2021

Canada’s new privacy law: A global comparison

The Consumer Privacy Protection Act (CPPA) introduces new privacy requirements, strengthens existing ones and promises fines of up to 5% of global revenue, the toughest in the world. Three of the most significant changes are more prescriptive requirements for meaningful consent, a new right to data mobility and algorithmic transparency requirements.

PwC Canada’s privacy team has analyzed and compared the CPPA with three other pieces of legislation: (1) Canada’s current privacy law, the Personal Information and Electronic Documents Act (PIPEDA), (2) the European Union’s General Data Protection Regulation (GDPR) and (3) the California Consumer Privacy Act (CCPA). We’ve designed this comparison chart to help our clients better understand their regulatory responsibilities across jurisdictions, analyze significantly different provisions and identify similar key compliance areas.

To honour Data Privacy Week—an annual international effort to empower individuals and businesses to respect privacy, safeguard data and enable trust—we’re sharing this chart with you. For a more comprehensive comparison chart, please connect with us.

Where can I find more information?

^{At PwC, we are committed to advancing the public policy discussion and thought leadership on responsible data use, privacy and innovation. We engage with companies, policymakers and privacy professionals to develop solutions to some of the most pressing privacy and cyber issues. If you have questions, or are seeking unique solutions for your own organization, set up a consultation with one of our PwC advisors.}

Key contacts

Our PwC Canada Privacy team will be actively involved in and engaged with updates relating to this process, and we’re available anytime to answer your questions: