Announcement
This page has been archived on the Web
Information identified as archived is provided for reference, research or recordkeeping purposes. It is not subject to the Government of Canada Web Standards and has not been altered or updated since it was archived. Please contact us to request a format other than those available.
March 29, 2018
OPC posts new summaries of cases involving businesses
The Office of the Privacy Commissioner of Canada (OPC), today posted new summaries about cases involving businesses, examined by the OPC in accordance with, and to promote compliance with, the Personal Information Protection and Electronic Documents Act (PIPEDA).
- Incident case summary #2017-001: Multiple breach incidents as a result of password reuse
- PIPEDA Case Summary #2017-006: Using SIN for identity verification cannot be a condition of service
- PIPEDA Case Summary #2017-005: Insurance company required to delete individual’s personal information after individual withdraws consent
- Early resolution case summary #2016-03: First Nation develops a privacy policy following allegations of lost doctor’s notes
- Early resolved case summary #2015-07: Employee training a key factor in effectively satisfying customers’ requests about an organization’s personal information handling practices
The OPC regularly publishes case summaries on its Investigations into businesses page to provide concrete examples of how PIPEDA applies to the day-to-day management of personal information by businesses.
- Date modified: