No wonder we have this trouble
> It (Canada's data protection regulator) made a series of recommendations to remediate violations, only to have the company sell its assets to Hong Kong-based Iron Mountain Technology Limited.
No wonder we have this trouble. The directors of that company knew full well what they were doing, and that they were breaking the law. What other type of fraud, when detected, is just met with a polite request to stop? When are such directors going to start getting substantial gaol sentences, like lone teenage crackers do?