Table of Contents Table of Contents
Previous Page  9 / 42 Next Page
Information
Show Menu
Previous Page 9 / 42 Next Page
Page Background

5

ORGANIZATIONS’ RESPONSIBILITIES UNDER THE ACT

Organizations must follow a code for the protection of personal information, which

is included in the Act as Schedule 1. The code was developed by business, consumers,

academics and government under the auspices of the Canadian Standards Association.

The 10 principles that businesses must follow are:

1. Accountability

2. Identifying purposes

3. Consent

4. Limiting collection

5. Limiting use, disclosure, and retention

6. Accuracy

7. Safeguards

8. Openness

9. Individual access

10. Challenging compliance

These principles are described in detail in the following sections of this guide.

TO LEARN MORE

For more detailed information, please see the following documents on our website:

About the Office of the Privacy Commissioner

of Canada

Legal information related to the Personal

Information Protection and Electronic

Documents Act

PIPEDA Self-Assessment Tool

Questions and Answers regarding the

application of PIPEDA, Alberta and British

Columbia’s

Personal Information Protection

Acts

The Application of the

Personal Information

Protection and Electronic Documents Act

to

Charitable and Non-Profit Organizations