Personal organization information can be any information that identifies a buyer, employee or perhaps partner. Whether your business collects these details through direct speak to or via the internet, you must take care of it in order that it does not be occupied as a liability for your company.

PIPEDA, Canada’s personal privacy rules, defines sensitive information as “information that relates to an individual and can be used to distinguish the person. ” This includes details that is linked or linkable to an specific (i. e. a person’s name, social security number or biometric information) and it is not or else publicly available.

Examples of PII include:

Sociable security numbers; a person’s date and place of start; their moms maiden brand; their operating licence amount; their particular medical reports and other health-related information; and credit card or perhaps purchase card account quantities.

Sensitive PII, also called PHI, is data that any time disclosed with no individual’s consent could cause harm, unpleasantness or difficulty to them. This includes the Social Security Number, medical record, disciplinary actions, effectiveness ratings, job history and any other information that may be used to identify or trace someone.

PIPEDA needs organizations to:

Be clear regarding the purpose pertaining to collecting your data before or perhaps at the time of collection, and explain why you need it. You can inquire from for more details or decline to provide that if you are unsatisfied while using explanation.

Limit the amount and type of personal information gathered to what is necessary with regards to the intended goal. If you present additional information, it should be for a goal related to the initial purpose and as long as you say yes to it.

Leave A Reply