British Columbia’s health sector is mainly governed by two privacy laws. The first is the Freedom of Information and Protection of Privacy Act (FIPPA) which applies to government bodies including hospitals, health authorities, and clinics. The second is the Personal Information Protection Act (PIPA) which applies to the private sector offices of doctors and other […]
Read MoreThe Manitoba Ombudsman, in reference to suggestions made by the Office of the Information and Privacy Commissioner of Alberta, has developed a guidance sheet on how to respond to privacy breaches which will be relevant for any jurisdiction. Summary of the key steps: Containing the Breach Change passwords + two-factor verification Contact the office in […]
Read MorePrivate sector organizations generally must give you access to your personal information; however, there are exceptions, which differ depending on whether BC’s Personal Information Protection Act (PIPA), or the Federal Personal Information Protection and Electronic Documents Act (PIPEDA) applies to the organization. Under PIPA, an organization may refuse to give you access to your personal […]
Read MoreIf access to all or part of the information is refused by a private sector organization in BC, they must tell you the reasons for refusal, the section of Personal Information Protection Act (PIPA) that applies, and the contact information of an employee who can answer your questions about the refusal. They must also inform […]
Read MorePast employees can request all their work emails, as individuals have a right to their personal information; however, the disclosure of work emails will be subject to several exceptions. The rights and rules around accessing work emails largely depend on whether your previous employer was a private sector organization or a public body, and what […]
Read MoreSince 2001, the Canadian federal government has undertaken a startling number of programs and initiatives requiring the collection and sharing of vast amounts of previously uncollected personal information of Canadians. Many of these programs have been shown to have inaccuracies in the data resulting in demonstrably arbitrary decision-making. The most recognizable program is the Passenger […]
Read MoreThe Privacy Commissioner of Canada has reviewed the Passenger Protect Program and has significant concerns about it. The Commissioner has said that the Passenger Protect Program involves the secretive use of personal information. Some problems include: The process for putting an individual’s name on the list is secretive and not transparent Individuals are not told […]
Read MoreYou have the right to access your personal health information held by your healthcare provider. In general, your healthcare provider cannot refuse to let you see the information in your file, except if they believe that the access may put you or someone else at risk. Typically, the easiest way to access your health records […]
Read MoreWhen requesting your personal information from a public body, one of the first things you should do is verify that the public body has the personal information you seek. Accessing information, even if it is your own, can sometimes be a long drawn-out process so it is important to verify they have it before starting […]
Read MoreIn BC, the private sector and public sector are governed by separate freedom of information (FOI) and privacy legislation. The Freedom of information and Protection of Privacy Act (FIPPA) regulates the FOI and privacy practices of organizations in the public sector. Public sector organizations (public bodies) covered by FIPPA include: Ministries The Office of the […]
Read MorePrivate sector organizations can collect your personal information for legitimate and reasonable purposes; however, they must follow the personal information and privacy rules set out in the Personal Information Protection Act, which are based on the ten principles of privacy protection. For example, the organization should identify the purpose for collecting personal information, including how […]
Read MoreAlmost all BC organizations in the private sector fall under the ambit of the Personal Information Protection Act. For example, PIPA covers but is not limited to corporations, partnerships, individuals involved in a commercial activity (e.g., business that is not incorporated), charities, societies, and not-for-profits. Under PIPA, private sector organizations have two main responsibilities, which […]
Read More