Respond to a privacy breach at your business
A privacy breach is the loss of, unauthorized access to, or disclosure of, personal information. Breaches can happen when personal information is stolen, lost or mistakenly shared.
Businesses subject to the Personal Information Protection and Electronic Documents Act (PIPEDA), have certain obligations following a breach. These may include reporting to our office and notifying affected individuals.
Our office has developed guidance to help businesses understand their obligations when a breach happens.
Learn what businesses should do when responding to a privacy breach.
Forms and information for businesses subject to PIPEDA to report a breach to the OPC.
Guidance on mandatory reporting of privacy breaches.
Report a problem or mistake on this page
- Date modified: