Language selection


Issue-specific guidance for businesses

The Personal Information Protection and Electronic Documents Act (PIPEDA) sets out 10 principles of fair information principles, which form the ground rules for the collection, use and disclosure of personal information.

In addition to providing general guidance on how to comply with PIPEDA, the Office of the Privacy Commissioner (OPC) offers guidance and tips related to the application of PIPEDA in certain situations or for particular issues.

Start here to find information that will help you ensure you comply with PIPEDA.


10 tips for businesses using mobile apps

Best practices for protecting privacy on mobile apps.


Privacy guide for businesses

Privacy principles, complaints, audits, federal court


Privacy guidance for manufacturers of Internet of Things devices

Smart devices, legal obligations, privacy best practices


Guidance for businesses doing e-marketing

Collecting electronic addresses, anti-spam laws


Political parties

How political parties can respect privacy


Protecting personal information: Cannabis transactions

Personal information, limiting collection, safeguards, advice for retailers and purchasers


Policies and transparency

Good privacy policies, best practices


Preventing and responding to a privacy breach

Best practices for preventing a privacy breach, what do if a breach happens


Guidelines for obtaining meaningful consent

Practical and actionable guidance regarding what organizations should do to ensure that they obtain meaningful consent.


Guidance on inappropriate data practices: Interpretation and application of subsection 5(3)

Find examples of practices that the OPC generally considers inappropriate under PIPEDA.

Showing items 1 through 10 of 43.

Filter these results

Search by key word or choose from the filter options below to narrow the results.



Date modified: