A long-withheld investigation into a 2019 hacking at LifeLabs Inc. that compromised millions of Canadians91裸聊视频� health data has finally been made public after an Ontario court dismissed the company91裸聊视频檚 appeal to prevent its release.

A statement from the privacy commissioners of both Ontario and British Columbia says their joint report, completed in June 2020, found that LifeLabs 91裸聊视频渇ailed to take reasonable steps91裸聊视频� to protect clients91裸聊视频� data while collecting more personal health information than was 91裸聊视频渞easonably necessary.91裸聊视频�

The report ordered LifeLabs to address a number of issues such as appropriately staffing its security team, and the commissioners91裸聊视频� statement says the company complied with all of the orders and recommendations.

LifeLabs had cited litigation and solicitor-client privilege to prevent the document91裸聊视频檚 publication, but this was opposed by the commissioners91裸聊视频� offices.

The company then sought a judicial review in Divisional Court in Ontario before the case made its way to the Ontario Court of Appeal, where LifeLabs91裸聊视频� appeal was dismissed.

B.C. Information and Privacy Commissioner Michael Harvey says in a statement that 91裸聊视频渢he road to accountability and transparency has been too long91裸聊视频� for the victims of the data breach.

91裸聊视频淟ifeLabs91裸聊视频� failure to put in place adequate safeguards to protect against this attack violated patients91裸聊视频� trust, and the risk it exposed them to was unacceptable,91裸聊视频� Harvey says. 91裸聊视频淲hen this happens, it is important to learn from past mistakes so others can prevent future breaches from happening.

91裸聊视频淏ut to learn from lessons, we need to share them.91裸聊视频�

Ontario Information and Privacy Commissioner Patricia Kosseim says in the statement that she is pleased with the court91裸聊视频檚 decision to uphold the decision by her office 91裸聊视频渢o help restore public trust in the oversight mechanisms designed to hold organizations accountable.91裸聊视频�

In May, Canadians who applied to be part of a class-action lawsuit against LifeLabs began receiving cheques and e-transfers, with administrator KPMG saying more than 900,000 valid claims were received.

An Ontario court had approved a total Canada-wide settlement of up to $9.8 million in the data breach, which allowed hackers to access the personal information of up to 15 million customers.