Former Wattpad Executive Takes Leadership Role at AI Firm to Drive Innovation Through Disruption Management

Home
News
Former Wattpad Executive Takes Leadership Role at AI Firm to Drive Innovation Through Disruption Management

Canadian Tech’s Legal Future: How Rachael Glassman Built Solink’s Risk Framework

Rachael Glassman, Chief Legal Officer at Solink, is at the forefront of shaping legal risk management for Canada’s technology sector, especially in an era of rapid regulatory and technological change. Her work at Solink, a cloud-based video surveillance and analytics company, illustrates how legal, privacy, and risk frameworks are evolving to meet new challenges faced by Canadian tech firms.

Navigating a Shifting Regulatory Landscape

Glassman’s approach reflects the heightened complexities in Canada’s tech legal environment, which is impacted by ongoing changes and uncertainty in legislation:

– Artificial Intelligence Regulation: Canada is developing its Artificial Intelligence and Data Act (AIDA), which, once enacted, will impose strict obligations on companies developing and deploying AI systems in high-impact areas such as healthcare, employment, public safety, and online content. These requirements include transparency, risk management, incident reporting, and cooperation with regulatory audits, where non-compliance could result in substantial fines. Though AIDA has not yet been passed, companies are advised to proactively assess risks and ensure the explainability of their systems.

– Privacy Laws: Federal privacy law reform is currently stalled—a direct result of Parliament’s prorogation, placing the fate of Bill C-27 (intended to replace PIPEDA with new AI and privacy legislation) in limbo. Despite delays, changes are ongoing at the provincial level, such as Québec’s Private Sector Act, which introduces new rights like data portability and recordkeeping for anonymization practices.

– Cybersecurity: Increasing legislative focus requires organizations to maintain robust internal controls over sensitive customer data, adapt to evolving provincial obligations, and prepare for cybersecurity threats that could impact both operational and legal risk profiles. These shifts pose significant compliance challenges, especially given the fragmented nature of regulation between provinces.

Building Legal and Risk Frameworks

In this challenging context, Glassman has led the development of Solink’s risk management practices to address new technology and data governance requirements, focusing on:

– Anticipating and Preparing for Regulatory Changes: Solink’s legal team regularly monitors developments not only federally but also provincially, adjusting internal policies as privacy, cybersecurity, and AI laws evolve, or as new obligations are introduced ahead of major reforms. This ensures compliance and adaptability even if the regulatory landscape shifts abruptly.

– Cross-Border Considerations: Tech companies such as Solink face additional risk from international operations and cross-border transactions. Differences in privacy, tax laws, and regulatory reviews (which are becoming lengthier due to increased scrutiny) particularly affect deals with U.S. counterparts. Navigating these nuances is critical to successfully expanding or merging with other companies across jurisdictions.

– Risk Awareness in Product Development: Glassman emphasizes the need for risk frameworks that go beyond pure legal compliance. This includes ensuring that products handling sensitive data—such as video analytics powered by AI—are designed with privacy and risk mitigation in mind from the outset.

– Incident Response and Practical Governance: Reflecting requirements likely to be imposed under pending AI and privacy legislation, Solink’s practices include advanced incident response plans, regular internal audits, and thorough record-keeping for data practices. This prepares the organization for both existing provincial rules and anticipated federal oversight.

The Broader Implications for Canadian Tech

Glassman’s work at Solink is emblematic of how Canadian tech companies need to be dynamic in their legal strategies—ready to pivot with legislative changes and responsive to evolving global and domestic standards. The increasing regulatory focus on privacy, AI transparency, cybersecurity, and cross-border risks underscores the importance of building in-depth risk frameworks from the earliest stages of company growth.

Provincial laws—particularly in Québec—are leading reforms, requiring legal departments to pay close attention to differences between jurisdictions. The uncertainty at the federal level is not expected to resolve quickly, so tech companies must maintain readiness for abrupt change and possible retroactive obligations.

In summary, Rachael Glassman’s experience demonstrates that Canadian technology firms, especially those working with sensitive data and AI, must combine legal expertise with proactive risk management, multi-jurisdictional awareness, and flexible adaptation strategies to thrive in an increasingly complex regulatory environment.

As the Canadian tech sector continues to evolve, companies like Solink are setting a precedent for how legal and risk management frameworks can be effectively integrated into business operations. Rachael Glassman’s leadership in this space highlights the critical role of legal expertise in navigating the complexities of modern technology regulation.

The Challenges of Cross-Border Operations

One of the most significant challenges facing Canadian tech companies is the increasing complexity of cross-border operations. As Solink expands its operations into international markets, particularly in the U.S., the company must contend with differing privacy laws, tax regulations, and regulatory oversight. This is particularly true for deals involving U.S. counterparts, where the scrutiny of cross-border transactions has intensified in recent years.

Glassman has emphasized the importance of understanding these cross-border dynamics, especially as regulatory reviews become more thorough and time-consuming. For instance, the process of complying with both Canadian and U.S. privacy standards can be daunting, requiring careful navigation to avoid legal pitfalls. Solink has implemented specific strategies to address these challenges, including the development of detailed data transfer agreements and regular audits to ensure compliance with international standards.

Provincial Regulatory Variations

Another critical aspect of the regulatory landscape is the growing divergence between provincial laws. While federal privacy reform remains stalled, provinces like Québec are taking the lead in implementing stricter privacy and data governance rules. Québec’s Private Sector Act, for example, has introduced new requirements for data portability and anonymization practices, which have significant implications for companies operating within the province.

Glassman has noted that these provincial variations require legal teams to adopt a highly localized approach to compliance. Solink’s legal department works closely with provincial regulators to ensure that the company’s practices align with the specific requirements of each jurisdiction. This localized approach is particularly important in provinces like British Columbia and Alberta, where there are ongoing discussions about enhancing privacy protections.

The fragmented nature of provincial regulation also poses challenges for companies looking to operate nationally. Glassman has highlighted the need for legal teams to stay ahead of these developments, anticipating how provincial laws may evolve and preparing the company to adapt accordingly. This proactive approach is essential for avoiding legal and operational disruptions as the regulatory landscape continues to shift.

The Role of Legal Expertise in Risk Management

Glassman’s work at Solink underscores the importance of integrating legal expertise into risk management strategies. By combining a deep understanding of regulatory requirements with a forward-looking approach to risk assessment, companies can better navigate the uncertainties of the tech sector.

One of the key innovations in Solink’s risk management framework is the emphasis on proactive compliance. Rather than waiting for regulations to be finalized, the company takes a preemptive approach, implementing measures that anticipate future requirements. This strategy not only helps to mitigate legal risks but also positions Solink as a leader in responsible innovation.

The integration of legal expertise into product development is another critical aspect of Solink’s approach. By involving legal teams early in the development process, the company ensures that privacy and risk considerations are embedded into the design of its products. This approach is particularly important for AI-powered solutions, where transparency and explainability are becoming key regulatory focuses.

Glassman has also stressed the importance of fostering a culture of compliance within the organization. This involves regular training for employees, ongoing monitoring of regulatory developments, and the establishment of clear incident response protocols. By creating a compliance-focused culture, Solink is better equipped to handle the challenges of the evolving regulatory landscape.

Preparing for the Future of Tech Regulation

As the Canadian tech sector looks to the future, the lessons learned from Solink’s approach to legal and risk management will be invaluable. The company’s emphasis on anticipation, adaptation, and integration offers a roadmap for other tech firms seeking to navigate the complexities of modern regulation.

One of the most important takeaways from Glassman’s experience is the need for tech companies to adopt a holistic approach to risk management. This involves not only complying with current regulations but also anticipating future requirements and integrating legal considerations into every aspect of the business.

As the regulatory landscape continues to evolve, the ability to adapt quickly will be a key determinant of success for Canadian tech companies. By building robust legal and risk management frameworks, companies like Solink are positioning themselves to thrive in an increasingly complex and dynamic environment.

Conclusion

Solink’s approach to legal and risk management, under Rachael Glassman’s leadership, exemplifies how Canadian tech companies can navigate the complexities of modern regulation. By integrating legal expertise into business operations, adopting proactive compliance strategies, and fostering a culture of compliance, Solink has positioned itself as a leader in responsible innovation. As the tech sector continues to evolve, the lessons learned from Solink’s approach will serve as a valuable roadmap for companies seeking to thrive in an increasingly dynamic regulatory landscape.

FAQ

What is the significance of legal expertise in risk management for tech companies?

Legal expertise is crucial for navigating complex regulations, ensuring compliance, and mitigating risks. It helps companies anticipate future requirements and integrate compliance into product development, especially for AI-powered solutions.

What challenges do Canadian tech companies face in cross-border operations?

Canadian tech companies face challenges such as differing privacy laws, tax regulations, and regulatory oversight when expanding internationally, particularly in the U.S. market. Compliance with both Canadian and U.S. privacy standards is essential to avoid legal issues.

How do provincial regulatory variations impact tech companies in Canada?

Provincial regulatory variations, such as Québec’s stricter privacy laws, require companies to adopt localized compliance strategies. This fragmentation can complicate national operations and necessitate ongoing monitoring of provincial regulatory developments.

What strategies can tech companies use to prepare for future tech regulation?

Tech companies should adopt a holistic approach to risk management, anticipate future regulatory requirements, and integrate legal considerations into all aspects of business operations. Building robust legal and risk management frameworks is key to thriving in a dynamic environment.