Ryan Berger advises on data and privacy compliance, risk management strategies, breach response, transactions and litigation.
Ryan has practiced commercial and employment litigation for 18 years, with a growing emphasis on data, privacy and business confidentiality issues.
He counsels clients on a broad range of data, privacy, cybersecurity and information management issues. Ryan routinely advises and represents public bodies, financial institutions, retailers and telecommunications companies in compliance, risk management, investigations and inquiries. Experience in information law issues include data-based products and services, big data, use cases, marketing, corporate transactions, SaaS and vendor management, cross-border sharing and storage, cloud computing, incident and breach response and pre-response planning. Transactions commonly involve sensitive data, electronic medical records, e-commerce applications, new technology and compliance. Ryan has experience in data breach response and applies this in advising on litigation and risk reduction strategies.
He is past chair and current executive member of the British Columbia Information and Privacy section of the Canadian Bar Association.
Ryan advises employers in a wide range of employment and dismissal cases, as well as harassment and human rights complaints. He assists businesses with enforcement of restrictive covenants and protection of confidential information.
LL.B., University of British Columbia, 1998
B.A., Lee College, CA, 1994
Mr. Berger has acted in the following matters:
- Review and assessment of multinational information flows, security and privacy compliance, advice on policy and procedure improvements, and third party vendor agreements for a leader in the Canadian convenience store industry, with a significant presence in the US and Europe
- Canadian privacy review and analysis of existing apps and apps in development for a multinational bank, drafted and negotiated constellation of agreements for mobile wallet applications
- Privacy assessment for a large Western Canadian retailer and pharmacy, including its e-commerce platform, gap assessment, as well as revision and negotiation of third party vendor contracts
- Advising on Canadian privacy compliance and implementation of large vehicle fleet implementation and use of GPS systems, including negotiation of vendor agreement
Cyber risk management
- Advising on comprehensive incident response plans for a multitude of organizations, including financial institutions, to address data security and privacy incidents affecting critical infrastructure, system availability and personal information breaches
Inquiries and Investigations
- Representing publicly traded business in access to information inquiries
- Representing various public bodies in inquiries before the BC privacy commissioner
Employment and Litigation
- For employers in for-cause terminations resulting in wrongful dismissal claims and dismissal of human rights complaints alleging discrimination
- For shareholders in corporate oppression action and dispute amongst shareholders regarding company valuation. Obtained remedy and value for shareholders
Rankings and recognitions
- Best Lawyers in Canada, 2017: Recognized leading lawyer in the area of Labour + Employment Law
- Best Lawyers in Canada, 2016: Recognized leading lawyer in the area of Labour + Employment Law
Memberships and activities
- Adjunct professor of the University of British Columbia Allard School of Law (2012-2017)
- Canadian Bar Association - Civil Litigation, Employment Law, Freedom of Information and Privacy Law Section and Local Government Law
On Thursday, September 20, 2018 Norton Rose Fulbright’s Vancouver office hosted its Artificial Intelligence summit, in partnership with the BC Tech Association..
September 20, 2018
On Thursday, September 13, Norton Rose Fulbright was pleased to host a breakfast seminar on developments in data privacy law around the world..
September 13, 2018
Safeguarding data and complying with Canadian federal and provincial laws is a step-by-step process..
June 18, 2018
The EU General Data Protection Regulation (GDPR) comes into force on May 25, 2018, and will have implications for many Canadian organizations, particularly those controlling or processing personal information in the European Union or of EU data subjects..
April 20, 2018
Ryan Berger mentions that locally focused organizations are not immune from having to update agreements or clauses to comply with the European Union’s new General Data Protection Regulation (GDPR). .
August 08, 2018
Ryan Berger discusses how the new PIPEDA breach notification will affect organizations..
July 04, 2018