Showing 15 of 249 results
| Title | Topic | Type | Date | ||
|---|---|---|---|---|---|
| Preventing health privacy breaches: Why training, policies, and confidentiality agreements matter | Case of Note | Read moreExpand | |||
Case of Note: PHIPA Decision 260BackgroundA public hospital was alerted to suspicious activity on a patient chart, and initiated an investigation, which included a targeted audit. The audit revealed that nearly 4,000 patient charts had been accessed by a physician without authorization, from a remote workstation outside of work hours. None of these patients were under the physician’s care. The physician admitted to accessing the electronic health records for educational purposes. The physician thought accessing the electronic health records of patients remotely for this purpose was permitted... |
|||||
| Interpretation Bulletin: Draft By-Law/Closed Meeting | Interpretation Bulletins | Download | Read moreExpand | ||
| Interpretation Bulletin: Cabinet Records | Interpretation Bulletins | Download | Read moreExpand | ||
| Interpretation Bulletin: Records Relating to an Ongoing Prosecution | Interpretation Bulletins | Download | Read moreExpand | ||
| This interpretation bulletin outlines the factors for determining how to apply the exclusion for records that relate to an ongoing prosecution, under section 65(5.2) of the Freedom of Information and Protection of Privacy Act (FIPPA) and section 52(2.1) of the Municipal Freedom of Information and Protection of Privacy Act (MFIPPA). |
|||||
| Interpretation Bulletin: Danger to Safety or Health | Interpretation Bulletins | Download | Read moreExpand | ||
| This interpretation bulletin discusses the threat to safety or health exemption, as set out in section 20 of the Freedom of Information and Protection of Privacy Act (FIPPA) and section 13 of the Municipal Freedom of Information and Protection of Privacy Act (MFIPPA). It outlines factors to consider in determining whether the threat to safety or health exemption applies. |
|||||
| Interpretation Bulletin: Information Available to the Public | Interpretation Bulletins | Download | Read moreExpand | ||
| This interpretation bulletin outlines the elements to consider when determining if a record falls under the published information or information available to the public exemption, as set out in section 22 of the Freedom of Information and Protection of Privacy Act (FIPPA) and section 15 of the Municipal Freedom of Information and Protection of Privacy Act (MFIPPA). |
|||||
| Interpretation Bulletin: Solicitor-Client Privilege | Interpretation Bulletins | Download | Read moreExpand | ||
| This interpretation bulletin addresses the solicitor-client privilege exemption, as set out in section 19 of the Freedom of Information and Protection of Privacy Act (FIPPA) and section 12 of the Municipal Freedom of Information and Protection of Privacy Act (MFIPPA). This document outlines the types of records that are exempted, specifically records subject to common law solicitor-client privilege (referred to as “branch one”) and those records that fall under statutory privilege (referred to as “branch two”). |
|||||
| Code of Procedure for Appeals Under FIPPA and MFIPPA | Professional Guidelines | Download | Read moreExpand | ||
| The updated Code of Procedure for appeals under the Freedom of Information and Protection of Privacy Act and the Municipal Freedom of Information and Protection of Privacy Act took effect on September 9, 2024. The IPC has also updated its Practice Directions under the new code which also take effect on the same date. For more information, please see our Code of Procedure section. |
|||||
| Reported Breach HR23-00282 | Case of Note , Letters | Download | Read moreExpand | ||
| A prescribed person under the Personal Health Information Protection Act reported a breach to the IPC regarding a cyberattack that involved the unauthorized copying of approximately 3.4 million individuals’ personal health information from the prescribed person’s secure file transfer server. The threat actors gained unauthorized access to the server by exploiting a zero-day vulnerability in the file transfer software, MOVEit, that was installed on this server. |
|||||
| Practice Direction #7 - Sharing of Representations | Practice Directions | Download | Read moreExpand | ||
| In effect September 9, 2024. |
|||||
| Practice Direction #6 - Affidavit and Other Evidence | Practice Directions | Download | Read moreExpand | ||
| In effect September 9, 2024. |
|||||
| Practice Direction #5 - Direction to Institutions When Making Representations | Practice Directions | Download | Read moreExpand | ||
| In effect September 9, 2024. |
|||||
| Fact Sheet: Guidelines for Parties Whose Commercial or Business Information is at Issue in an Appeal | Fact Sheets | Download | Read moreExpand | ||
| Formerly Practice Direction #4. Repealed as of September 9, 2024. |
|||||
| Fact Sheet: Guidelines for Individuals Whose Personal Information is at Issue in an Appeal | Fact Sheets | Download | Read moreExpand | ||
| Formerly Practice Direction #3. Repealed as of September 9, 2024. |
|||||
| Practice Direction #2 - Participating in a Written FIPPA or MFIPPA Inquiry | Practice Directions | Download | Read moreExpand | ||
| In effect September 9, 2024. |
|||||