CanucktAI
Privacy Academy

Learn Canadian Privacy Law

Free, practical guides on PIPEDA, Quebec Law 25, and CASL — written for Canadian business owners, not lawyers. No jargon. No paywalls. Just what you need to know.

Free Guides

Start with the law that applies to you

Federal · Free15 min read

PIPEDA Complete Guide

Canada's federal private-sector privacy law. Who it applies to, what it requires, the 10 Fair Information Principles, and what happens when you get it wrong.

  • Who PIPEDA applies to
  • The 10 Fair Information Principles
  • Consent requirements
  • Breach reporting obligations
  • OPC complaints & enforcement
Read the PIPEDA Guide
Québec · Free18 min read

Law 25 Complete Guide

Quebec's Law 25 is stricter than PIPEDA and applies to any business that handles data of Quebec residents — including businesses outside Quebec.

  • How Law 25 differs from PIPEDA
  • Privacy Impact Assessments (PIAs)
  • Mandatory 72-hr breach reporting to CAI
  • Data retention & destruction rules
  • Penalties up to 4% of global revenue
Read the Law 25 Guide
Federal · Free12 min read

CASL Complete Guide

Canada's Anti-Spam Legislation. Every business that sends marketing email to Canadians must comply — and fines reach $10M per violation.

  • Express vs. implied consent
  • The 2-year implied consent window
  • Unsubscribe requirements (10 days)
  • CRTC enforcement & $10M fines
  • CASL vs. CAN-SPAM vs. GDPR
Read the CASL Guide
AI Governance · Free20 min read

AI Governance Guide

Govern the AI your organization builds and uses — inventory, risk classification, policies, and accountability. The foundation under ISO 42001, the EU AI Act, and Canada's AIDA.

  • What AI governance is (and why now)
  • Building an AI system inventory
  • Classifying AI risk
  • Policies, human oversight & bias testing
  • Roles, accountability & the frameworks landscape
Read the AI Governance Guide
EU · Global · Free22 min read

EU AI Act Guide

The world's first comprehensive AI law reaches Canadian businesses whose AI outputs touch the EU. Risk tiers, obligations, timelines, and penalties up to €35M.

  • Why it applies to Canadian companies
  • The four risk tiers
  • Provider vs. deployer obligations
  • High-risk requirements & FRIA
  • Timeline & penalties (up to 7% of turnover)
Read the EU AI Act Guide
ISO · Free20 min read

ISO 42001 Guide

The first certifiable AI management system standard. Build an AIMS, map the Annex A controls, and get certified to prove responsible AI to customers and regulators.

  • What an AI management system (AIMS) is
  • The Annex SL clause structure
  • Annex A controls & impact assessment
  • How it maps to ISO 27001 & the EU AI Act
  • The certification process
Read the ISO 42001 Guide
Full Courses

Go deeper with structured learning

From a free PIPEDA foundation to a full Privacy Officer certification. Each course includes quizzes, real Canadian case studies, and a completion certificate.

FREE COURSE

PIPEDA Fundamentals

Everything you need to know about Canada's federal privacy law. The 10 principles, consent rules, breach notification, individual rights, and real enforcement examples.

7

Modules

2 hours

Duration

Beginner

Level

Most Popular
PREMIUM

Provincial Privacy Laws

Deep dive into Law 25 (Quebec), PHIPA (Ontario), PIPA (BC & Alberta), FIPPA, FOIPOP, and all 13 provincial/territorial privacy frameworks.

10

Modules

4 hours

Duration

Intermediate

Level

49 $one-time
Coming Q3 2026
PREMIUM

AI Privacy for Professionals

How to use ChatGPT, Claude, and Copilot safely with client data. Real breach cases, anonymization workflows, and building an AI privacy policy.

7

Modules

3 hours

Duration

Intermediate

Level

99 $one-time
Coming Q3 2026
CERTIFICATION

Privacy Officer Certification

Comprehensive certification covering all 26 Canadian privacy frameworks. Templates, PIAs, breach response plans. Annual renewal. LinkedIn badge included.

15

Modules

10 hours

Duration

Advanced

Level

299 $/year
Coming Q4 2026

All courses include a completion certificate · Prices in Canadian dollars · One-time purchase, no subscription required (except Certification)

Why This Matters

Canadian privacy law is not optional — and it's not American

87%of Canadian SMBs have at least one material PIPEDA gap

Most don't know it until a complaint is filed.

$10Mmaximum CASL fine per violation

Fines have been issued to Canadian companies of every size.

72 hrsto report a data breach under Law 25

Miss this window and the fine doubles.

0US privacy tools that cover Law 25 by default

Quebec's law requires specific features that American tools don't have.

Put Knowledge into Practice

Learning is step one. Compliance is step two.

Start Free — No Credit Card

Shielk

Automatically anonymizes PII before it reaches AI tools. PIPEDA compliance certificates on every job.

Start Free — No Credit Card

Valdra

Runs your PIPEDA, Law 25, and CASL assessments. Generates the documents these guides describe — automatically.

Start Free — No Credit Card
Common Questions

About Canadian Privacy Law

Our own compliance

We run our own compliance programme inside Valdra — the product we sell. Our SOC 2, ISO 27001 and ISO 42001 programmes are actively in progress; we do not claim certifications we do not yet hold.

Valdra compliance badge — click to verify
  • PIPEDA
  • Law 25 (Quebec)
  • CASL
  • Data hosted in Canada 🇨🇦
  • AI governance
View our Trust Centre

Self-declared, not audited by a third party. Click the badge to verify it is genuine and see what it covers.

Privacy Academy — Free Canadian Privacy Courses | Canuckt AI