Language selection

Respond to a privacy breach at your business

A privacy breach is the loss of, unauthorized access to, or disclosure of, personal information. Breaches can happen when personal information is stolen, lost or mistakenly shared.

Businesses subject to the Personal Information Protection and Electronic Documents Act (PIPEDA), have certain obligations following a breach. These may include reporting to our office and notifying affected individuals.

Our office has developed guidance to help businesses understand their obligations when a breach happens.

Tips for containing and reducing the risks of a privacy breach

Learn what businesses should do when responding to a privacy breach.

Report a privacy breach at your business

Forms and information for businesses subject to PIPEDA to report a breach to the OPC.

What you need to know about mandatory reporting of breaches of security safeguards

Guidance on mandatory reporting of privacy breaches.

Report a problem or mistake on this page
Please select all that apply (required): Error 1: This field is required.


Date modified: