• Overcoming the Challenges of Privacy of Social Media in Canada

    In Canada data protection is regulated by both federal and provincial legislation. Organizations and other companies who capture and store personal information are subject to several laws in Canada. In the course of commercial activities, the federal Personal Information Protection and Electronic Documents Act (PIPEDA) became law in 2004. PIPEDA requires organizations to obtain consent […]

  • 7 Mandatory Breach Reporting Requirements and Examples — Ontario

    Mark you calendars , October 1st 2017 Mandatory Breach Reporting Requirements kick in. THERE ARE 7 SITUATIONS WHERE YOU MUST NOTIFY THE ONTARIO PRIVACY COMMISSIONER OF A PRIVACY BREACH Custodians will be required to start tracking privacy breach statistics as of January 1, 2018, and will be required to provide the Commissioner with an annual report […]

  • Amendments to the General Regulation (Ontario Regulation 329/04)

    The Ministry of Health and Long-Term Care (“ministry”) is proposing amendments to the General Regulation (Ontario Regulation 329/04) under the Personal Health Information Protection Act, 2004 (PHIPA). The purpose of the amendments has largely to do with clarifying the needs for health information custodian reporting of thefts, losses and unauthorized uses or disclosures of personal health information […]

  • How to withdraw and control my private health information in Ontario?

    Consent Management in Ontario Depending on the type of personal health information (PHI) involved, Ontarians can withdraw consent to the use and disclosure of their PHI by various health information networks. Calling Service Ontario allows you to: Block access to all personal health information used in Ontario labs. Calling Service Ontario – Ministry of Health Info-line, you […]