Guidance
The Office of the Information and Privacy Commissioner publishes guidance documents to promote compliance with Ontario’s access and privacy laws.
New materials are posted on an ongoing basis. If you are looking for a guidance on a topic that is not listed here, please contact us.
This post is also available in: French
Found 257 results
| Title / Description | Topic | Type | Date |
|---|---|---|---|
| | |||
| IPC Comments on the Ontario Government’s Consultation on Ontario’s Trustworthy Artificial Intelligence (AI) Framework | Privacy And Transparency In A Modern Government | Advice And Submissions | Jun 07 2021 |
| | |||
| Submission to the Standing Committee on Finance and Economic Affairs of the Legislative Assembly of Ontario: Bill 288, the Building Opportunities in the Skilled Trades Act, 2021 This post is also available in: French | Advice And Submissions | May 25 2021 | |
| | |||
| PHIPA Workbook and Completion Guide Use this Workbook and Guide as a “how to” tool to complete the statistical report for the Information and Privacy Commissioner/Ontario about requests made under the Personal Health Information Protection Act, 2004 (PHIPA). | May 21 2021 | ||
| | |||
| PHIPA Breaches Workbook and Completion Guide This post is also available in: French | Health | May 21 2021 | |
| | |||
| Submission of the Information and Privacy Commissioner of Ontario Bill 283, Advancing Oversight and Planning in Ontario’s Health System Act, 2021 This post is also available in: French | Advice And Submissions | May 14 2021 | |
| | |||
| Submission to the Standing Committee on Justice Policy of the Legislative Assembly of Ontario: Bill 251, the Combating Human Trafficking Act, 2021 This post is also available in: French | Advice And Submissions | May 13 2021 | |
| | |||
| Digital Health under PHIPA: Selected Overview This post is also available in: French | Health | Trust In Digital Health | Papers | May 12 2021 |
| | |||
| IPC Strategic Priorities 2021-2025 This post is also available in: French | Apr 22 2021 | ||
| | |||
| Letter to Melissa Kittmer regarding Proposal Number: 21-SOLGEN001 – PRCs Reform Act, 2015, O. Reg. 347/18 Exemptions, Exemptions Proposal (Instrument Type: Regulation – LGIC) This post is also available in: French | Advice And Submissions | Mar 17 2021 | |
| | |||
| Privacy and security considerations for virtual health care visits This post is also available in: French | Health | Privacy | Best Practices | Professional Guidelines | Feb 25 2021 |
| | |||
| Letter to Toronto Police Services Board and Toronto Police Service regarding The Governance Framework for Toronto’s Police Body-Worn Camera Program This post is also available in: French | Law Enforcement/policing | Next-Generation Law Enforcement | Advice And Submissions | Jan 15 2021 |
| | |||
| Letter to Toronto Police Services Board re: Toronto Police Services Board Body-Worn Camera Public Consultation This post is also available in: French | Advice And Submissions | Nov 09 2020 | |
| | |||
| IPC Comments on the Ontario Government’s Discussion Paper: “Ontario Private Sector Privacy Reform: Improving private sector privacy for Ontarians in a digital age” This post is also available in: French | Advice And Submissions | Oct 29 2020 | |
| | |||
| Submission to the Government of Ontario regarding the Ontario Private Sector Privacy Reform Discussion Paper This post is also available in: French | Privacy | Advice And Submissions | Oct 16 2020 |
| | |||
| It’s About You: Your File and Your Rights Under Ontario’s Child and Family Services Law (printable brochure) Print double-sided (flip on short edge) on legal size paper, fold on dotted lines | Youth | Brochures | Oct 15 2020 |
| | |||
| Letter to Michael Maddock regarding Installing COVID Alert app on OPS-issued mobile devices This post is also available in: French | Advice And Submissions | Oct 15 2020 | |
| | |||
| Letter to Mayor Tory regarding Installing COVID Alert app on City of Toronto mobile devices This post is also available in: French | Advice And Submissions | Oct 15 2020 | |
| | |||
| Letter from Commissioner Kosseim to Toronto Police Service Board regarding Approval of Body-Worn Camera Contract Award and Project Implementation This post is also available in: French | Advice And Submissions | Aug 18 2020 | |
| | |||
| Submission of the Information and Privacy Commissioner of Ontario to the Special Committee to Review the Personal Information Protection Act (British Columbia) This post is also available in: French | Advice And Submissions | Aug 14 2020 | |
| | |||
| Letter from Commissioner Kosseim to Toronto Police Services Board on body-worn camera program This post is also available in: French | Advice And Submissions | Jul 31 2020 | |
| | |||
| Comments of the Information and Privacy Commissioner of Ontario on Proposed Interoperability Regulations under PHIPA This post is also available in: French | Advice And Submissions | Jul 24 2020 | |
| | |||
| Working from home during the COVID-19 pandemic This post is also available in: French | Privacy | Fact Sheets | Jul 23 2020 |
| | |||
| Comments of the Information and Privacy Commissioner of Ontario on Proposed Regulation under PHIPA with respect to the Health Data Platform This post is also available in: French | Health | Trust In | Trust In Digital Health | Advice And Submissions | Jul 06 2020 |
| | |||
| IPC protocol for appeals involving solicitor-client privilege claims where the institution does not provide the records at issue to the IPC This post is also available in: French | Appeal Process | Professional Guidelines | Jun 30 2020 |
| | |||
| The Labour Relations and Employment Exclusion This post is also available in: French | Access | Professional Guidelines | Jun 26 2020 |
| | |||
| Comments of the Information and Privacy Commissioner of Ontario on Proposed Regulations Under Part V.I of PHIPA This post is also available in: French | Advice And Submissions | Jun 22 2020 | |
| | |||
| Child, Youth and Family Services Act Addendum to the Manual for the Review and Approval of Prescribed Persons and Prescribed Entities This post is also available in: French | Privacy | Youth | Best Practices | Professional Guidelines | Apr 29 2020 |
| | |||
| Office of the Information and Privacy Commissioner of Ontario Submission on Consultation Paper: Strengthening Corporate Beneficial Ownership Transparency in Canada This post is also available in: French | Advice And Submissions | Mar 26 2020 | |
| | |||
| Form to file a privacy complaint under the Child, Youth and Family Services Act (CYFSA) This post is also available in: French | Privacy | Cyfsa Faq | Forms | Jan 15 2020 |
| | |||
| Access and Correction Form under CYFSA This post is also available in: French | Access | Access Request Process | Youth | Forms | Dec 31 2019 |
| | |||
| Access/Correction Complaint Form (PHIPA) This post is also available in: French | Access | Health | Privacy | Forms | Dec 31 2019 |
| | |||
| Privacy Complaint Form (FIPPA/MFIPPA) A form for filing a privacy complaint under the provincial or municipal Freedom of Information and Protection of Privacy Act, if you feel your personal information has been improperly collected, used or disclosed by a government organization | Privacy | Forms | Dec 31 2019 |
| | |||
| Comments of the Information and Privacy Commissioner of Ontario on Bill 138 This post is also available in: French | Advice And Submissions | Dec 03 2019 | |
| | |||
| IPC’s letter to Minister Lisa M. Thompson regarding the Government of Ontario’s Better, Smarter Government Discussion Paper This post is also available in: French | Advice And Submissions | Nov 28 2019 | |
| | |||
| Providing Access to Personal Information under the Child, Youth and Family Services Act: A Guide for Service Providers This post is also available in: French | Access | Youth | Best Practices | Professional Guidelines | Nov 27 2019 |
| | |||
| Privacy Complaint Report MC17-32 Privacy Complaint MC17-32 | Privacy | Reports | Special Reports | Nov 22 2019 |
| | |||
| Know Your Rights: Your File and Your Rights Under Ontario’s Child and Family Services Law This post is also available in: French | Youth | Brochures | Oct 21 2019 |
| | |||
| Guidelines for Submitting Annual Statistics to the IPC Guidelines for service providers under Part X of the Child, Youth and Family Services Act | Youth | Professional Guidelines | Oct 17 2019 |
| | |||
| Reporting a Privacy Breach to the Information and Privacy Commissioner: Guidelines for Service Providers Guidelines for service providers under Part X of the Child, Youth and Family Services Act | Youth | Best Practices | Professional Guidelines | Oct 17 2019 |
| | |||
| It’s About You: Your File and Your Rights Under Ontario’s Child and Family Services Law (brochure) This post is also available in: French | Youth | Brochures | Oct 17 2019 |
| | |||
| It’s About You: Your File and Your Rights Under Ontario’s Child and Family Services Law (poster) This post is also available in: French | Youth | Posters | Oct 17 2019 |
| | |||
| IPC letter to Minister Lisa M. Thompson regarding the Government of Ontario’s Creating Economic Benefits Discussion Paper This post is also available in: French | Advice And Submissions | Oct 15 2019 | |
| | |||
| Coroners Act Addendum to the Manual for the Review and Approval of Prescribed Persons and Prescribed Entities This post is also available in: French | Privacy | Best Practices | Professional Guidelines | Oct 03 2019 |
| | |||
| IPC letter to Minister Lisa M. Thompson regarding Government of Ontario’s “Promoting Trust and Confidence in Ontario’s Data Economy” discussion paper This post is also available in: French | Advice And Submissions | Sep 17 2019 | |
| | |||
| Reporting a Privacy Breach to the IPC: Guidelines for the Health Sector This post is also available in: French | Health | Privacy | Best Practices | Professional Guidelines | Sep 17 2019 |
| | |||
| Privacy Breaches: Guidelines for Public Sector Organizations This post is also available in: French | Privacy | Best Practices | Professional Guidelines | Sep 05 2019 |
| | |||
| Practice Direction #9 – Constitutional questions This post is also available in: French | Access | Appeal Process | Best Practices | Practice Directions | Professional Guidelines | Aug 21 2019 |
| | |||
| Police record checks This post is also available in: French | Access | Fact Sheets | Aug 12 2019 |
| | |||
| Release of personal information to police: your privacy rights This post is also available in: French | Law Enforcement/policing | Privacy | Fact Sheets | Aug 12 2019 |
| | |||
| Protect Against Phishing This post is also available in: French | Technology And Security | Fact Sheets | Jul 04 2019 |
| | |||
| Part X of the Child, Youth and Family Services Act: A Guide to Access and Privacy for Service Providers This post is also available in: French | Youth | Professional Guidelines | May 13 2019 |
| | |||
| Accessing Your Deceased Relative’s Personal Information This post is also available in: French | Access | Access Request Process | Health | Personal Information | Privacy | Fact Sheets | Apr 24 2019 |
| | |||
| Succession Planning to Help Prevent Abandoned Records This post is also available in: French | Health | Fact Sheets | Apr 15 2019 |
| | |||
| Comments of the Information and Privacy Commissioner of Ontario on Bill 74 This post is also available in: French | Health | Advice And Submissions | Mar 29 2019 |
| | |||
| Avoiding Abandoned Health Records: Guidance for Health Information Custodians Changing Practice This post is also available in: French | Health | Best Practices | Professional Guidelines | Feb 26 2019 |
| | |||
| Dispelling Some Myths about the Personal Health Information Protection Act This post is also available in: French | Health | Best Practices | Professional Guidelines | Feb 15 2019 |
| | |||
| Privacy and Access to Information in Ontario Schools: A Guide for Educators (Fact Sheet) This post is also available in: French | Access | Privacy | Youth | Best Practices | Brochures | Fact Sheets | Jan 10 2019 |
| | |||
| Privacy in the School (Fact Sheet) This post is also available in: French | Access | Privacy | Youth | Best Practices | Brochures | Fact Sheets | Jan 10 2019 |
| | |||
| Protecting Your Students’ Privacy Online (Fact Sheet) This post is also available in: French | Access | Privacy | Youth | Best Practices | Brochures | Fact Sheets | Jan 10 2019 |
| | |||
| Your Child’s Privacy in School (Fact Sheet) This post is also available in: French | Access | Privacy | Youth | Best Practices | Brochures | Fact Sheets | Jan 10 2019 |
| | |||
| A Guide to Privacy and Access in Ontario Schools This post is also available in: French | Access | Privacy | Youth | Best Practices | Brochures | Fact Sheets | Jan 10 2019 |
| | |||
| Disclosure of Personal Information to Law Enforcement This post is also available in: French | Law Enforcement/policing | Privacy | Fact Sheets | Nov 22 2018 |
| | |||
| Responding to a Health Privacy Breach: Guidelines for the Health Sector This publication replaces the guidance document, What to do When Faced With a Privacy Breach: Guidelines for the Health Sector. | Health | Best Practices | Papers | Professional Guidelines | Oct 04 2018 |
| | |||
| Access Fact Sheet: Third Party Information Exemption This post is also available in: French | Access | Access Request Process | Fact Sheets | Sep 26 2018 |
| | |||
| Privacy Fact Sheet: General Data Protection Regulation This post is also available in: French | Legislation | Privacy | Fact Sheets | Jul 11 2018 |
| | |||
| Lesson Plan: Privacy Rights of Children and Teens This post is also available in: French | Personal Information | Privacy | Technology And Security | Youth | Educational Material | Jun 18 2018 |
| | |||
| Lesson Plan: Know the Deal: The Value of Privacy This post is also available in: French | Personal Information | Privacy | Technology And Security | Youth | Educational Material | Jun 18 2018 |
| | |||
| Lesson Plan: Getting the Toothpaste Back into the Tube: A Lesson on Online Information This post is also available in: French | Personal Information | Privacy | Technology And Security | Youth | Educational Material | Jun 18 2018 |
| | |||
| Fees, Fee Estimates and Fee Waivers This post is also available in: French | Access Request Process | Best Practices | Professional Guidelines | Jun 11 2018 |
| | |||
| Smart Cities and Your Privacy Rights This post is also available in: French | Privacy | Technology And Security | Fact Sheets | Apr 27 2018 |
| | |||
| Joint Federal Provincial Territorial Letter to Minister of Infrastructure and Communities on Smart Cities Challenge This post is also available in: French | Privacy | Technology And Security | Letters | Apr 26 2018 |
| | |||
| Disposing of Your Electronic Media This fact sheet provides guidance on how Ontario public institutions and health information custodians can securely destroy personal information when disposing of electronic media. | Information Management | Technology And Security | Best Practices | Fact Sheets | Mar 06 2018 |
| | |||
| Privacy by Design This post is also available in: French | Privacy | Papers | Jan 30 2018 |
| | |||
| Comments of the Information and Privacy Commissioner of Ontario on the Proposed Regulation under Part X of the Child, Youth and Family Services Act, 2017 Comments from the Information and Privacy Commissioner on the proposed regulation under Part X of the Child, Youth and Family Services Act. | Legislation | Youth | Advice And Submissions | Jan 22 2018 |
| | |||
| Comments of the Information and Privacy Commissioner of Ontario on Bill 160 This post is also available in: French | Advice And Submissions | Nov 20 2017 | |
| | |||
| Annual Reporting of Privacy Breach Statistics to the Commissioner – Requirements for the Health Sector This post is also available in: French | Health | Legislation | Privacy | Best Practices | Professional Guidelines | Nov 10 2017 |
| | |||
| Joint Federal Provincial Territorial Letter to Council of Ministers of Education on the Importance of Privacy Education This post is also available in: French | Privacy | Technology And Security | Youth | Letters | Nov 08 2017 |
| | |||
| IPC 2017 GPEN Sweep Report: Online Educational Services This post is also available in: French | Personal Information | Privacy | Technology And Security | Youth | Best Practices | Reports | Oct 24 2017 |
| | |||
| Frivolous and Vexatious Requests This post is also available in: French | Access Request Process | Fact Sheets | Aug 22 2017 |
| | |||
| Guidance on the Use of Automated Licence Plate Recognition Systems by Police Services This guidance document outlines the key obligations of police under privacy legislation in their use of ALPR systems and provides guidance, including best practices, on using these systems in a privacy-protective manner. It addresses the use of ALPR systems for public safety purposes, in particular for the purpose of alerting an officer in an ALPR-equipped vehicle to the... | Law Enforcement/policing | Privacy | Technology And Security | Best Practices | Papers | Professional Guidelines | Jul 04 2017 |
| | |||
| Big Data Guidelines This post is also available in: French | May 17 2017 | ||
| | |||
| Comments of the Information and Privacy Commissioner of Ontario on the Proposed Open Meeting Amendments in Bill 68 This post is also available in: French | Apr 11 2017 | ||
| | |||
| Fact Sheet: Reasonable Search This fact sheet answers some frequently asked questions about reasonable searches for records. | Access | Access Request Process | Appeal Process | Fact Sheets | Professional Guidelines | Apr 11 2017 |
| | |||
| Submission to the Standing Committee on Bill 89, Supporting Children, Youth and Families Act, 2017 Commissioner Brian Beamish presented his submission on Bill 89, Supporting Children, Youth and Families Act, 2017 to the Standing Committee on Justice Policy on Thursday, March 30, 2017. | Legislation | Advice And Submissions | Mar 30 2017 |
| | |||
| Submission to the Standing Committee on Bill 84, Medical Assistance in Dying Statute Law Amendment Act, 2017 Commissioner Brian Beamish presented this submission to the Standing Committee on Finance and Economic Affairs on March 23, 2017. | Mar 23 2017 | ||
| | |||
| Open Government and Protecting Privacy The IPC strongly supports Open Government initiatives and encourages Ontario institutions to be more open and transparent, and to enhance their engagement with the public. This document offers guidance for institutions on how to move towards increased government transparency without negatively affecting individuals’ privacy. | Open Government | Privacy | Mar 15 2017 | |
| | |||
| Collection, Use and Disclosure Complaint Form (PHIPA) This post is also available in: French | Health | Privacy | Forms | Feb 28 2017 |
| | |||
| Code of Procedure for Matters under the Personal Health Information Protection Act, 2004 PHIPA Code of Procedure | Health | Legislation | Best Practices | Professional Guidelines | Feb 28 2017 |
| | |||
| PHIPA Practice Direction #5: Collection, Use, and Disclosure Complaint Form This post is also available in: French | Health | Best Practices | Practice Directions | Professional Guidelines | Feb 28 2017 |
| | |||
| PHIPA Practice Direction #4: Access/Correction Complaint Form This post is also available in: French | Access | Access Request Process | Health | Best Practices | Practice Directions | Professional Guidelines | Feb 28 2017 |
| | |||
| PHIPA Practice Direction #3: Publicly Released Decisions Under the Personal Health Information Protection Act, 2004 This post is also available in: French | Access | Health | Best Practices | Practice Directions | Professional Guidelines | Feb 28 2017 |
| | |||
| PHIPA Practice Direction #2: Responding to a Request for Access to Personal Health Information This post is also available in: French | Access | Access Request Process | Best Practices | Practice Directions | Professional Guidelines | Feb 28 2017 |
| | |||
| PHIPA Practice Direction #1: Clarifying Access Requests This post is also available in: French | Access | Access Request Process | Health | Best Practices | Practice Directions | Professional Guidelines | Feb 28 2017 |
| | |||
| Submission to the Standing Committee on Social Policy on Schedule 2 of Bill 59, Putting Consumers First Act, 2016 Commissioner Brian Beamish submitted comments to the Standing Committee on Social Policy on Bill 59, Schedule 2 of Bill 59, Putting Consumers First Act, 2016. | Advice And Submissions | Feb 08 2017 | |
| | |||
| Big Data and Your Privacy Rights The emergence of big data as a tool to manage and analyze large and complex data sets offers great promise and opportunity, but also raises serious privacy challenges and considerations, especially to personal privacy. Public and health sector institutions increasingly use big data tools to improve programs and public services and ensure they are supported by better... | Privacy | Fact Sheets | Jan 25 2017 |
| | |||
| The Privacy Protective Roadmap-Issues and solutions in the context of a collaborative service delivery development: The Situation Table | Webinars | Dec 06 2016 | |
| | |||
| Online Educational Services: What Educators Need to Know This post is also available in: French | Personal Information | Youth | Brochures | Professional Guidelines | Nov 25 2016 |
| | |||
| Submission to the Standing Committee on the Legislative Assembly on Bill 41, Patients First Act, 2016 This submission addresses the privacy implications of the proposed Bill. The goal of our recommendations is to enhance the protection of personal health information of Ontarians. | Health | Personal Information | Advice And Submissions | Nov 23 2016 |
| | |||
| Fact Sheet: Video Surveillance This fact sheet highlights the important factors an institution must consider before implementing a video surveillance system. | Privacy | Surveillance | Technology And Security | Best Practices | Fact Sheets | Professional Guidelines | Nov 09 2016 |
| | |||
| Improving Access and Privacy with Records and Information Management This guidance is designed to help institutions implement better record and information management practices and enhance the public’s ability to access information. | Access | Access Request Process | Appeal Process | Legislation | Open Government | Best Practices | Papers | Professional Guidelines | Nov 03 2016 |
| | |||
| Fact Sheet: What is Personal Information? This fact sheet explains the meaning of the term “personal information,” and answers frequently asked questions. | Access | Access Request Process | Personal Information | Privacy | Fact Sheets | Professional Guidelines | Oct 20 2016 |
| | |||
| Your Business is Affected by a Freedom of Information Request: What You Should Know This fact sheet outlines what to expect when an institution contacts you about an access request, your options for appeal, and other frequently asked questions. This document is part of a series designed to keep the public and professionals up to date with the IPC’s interpretations of access and privacy laws. | Access | Access Request Process | Fact Sheets | Oct 04 2016 |
| | |||
| Investigation into Records Management Practices at TO2015 Full report on the Commissioner’s investigation into the records management practices of the Toronto Organizing Committee for the 2015 Pan American and Parapan American Games (TO2015). | Access | Special Reports | Sep 29 2016 |
| | |||
| You are Affected by a Freedom of Information Request: What You Should Know This fact sheet seeks to answer some of the common questions you may have about the freedom of information process. This document is part of a series designed to keep the public and professionals up to date with the IPC’s interpretations of access and privacy laws. | Access | Appeal Process | Privacy | Best Practices | Fact Sheets | Sep 26 2016 |
| | |||
| Fact Sheet: Communicating Personal Health Information by Email This fact sheet describes the risks of using email and custodians’ obligations under the Personal Health Information Protection Act. It outlines some of the technical, physical and administrative safeguards needed to protect personal health information when communicating by email and the policies, procedures and training custodians should have in place. | Health | Technology And Security | Best Practices | Fact Sheets | Professional Guidelines | Sep 15 2016 |
| | |||
| Open Government: Key Implementation Considerations This guidance document provides institutions with an overview of important factors to consider when implementing Open Government including the need for institutional leadership, commitment, governance and resources to support culture change and sustain the program over time, learning from others, engaging both internal and external users, and meeting legal... | Open Government | Papers | Sep 06 2016 |
| | |||
| Open Government: Key Concepts and Benefits This guidance paper is intended as a starting point for institutions considering Open Government and highlights two critical goals: enhancing access to government-held information and public participation. It includes a discussion about making government-held information open by default and at little or no cost, and ways to enable a true two-way dialogue with the... | Access | Open Government | Papers | Professional Guidelines | Sep 05 2016 |
| | |||
| Speaking Engagement Request Form This post is also available in: French | Aug 19 2016 | ||
| | |||
| Technology Fact Sheet – Protecting Against Ransomware This Fact Sheet from the IPC discusses how ransomware has become an increasingly dangerous threat to the security of electronic records and provides guidance on how public institutions and healthcare organizations can protect themselves against it. | Technology And Security | Fact Sheets | Jul 15 2016 |
| | |||
| De-identification Guidelines for Structured Data This document highlights the key issues to consider when de-identifying personal information in the form of structured data and it provides a step-by-step process that institutions can follow when removing personal information from data sets. | Information Management | Best Practices | Jun 08 2016 |
| | |||
| Instant Messaging and Personal Email Accounts: Meeting Your Access and Privacy Obligations This document was developed to help Ontario’s public institutions manage the use of instant messaging and personal email accounts when doing business. All public servants should be aware records relating to an institution’s business that are created, sent or received through instant messaging or personal email accounts are subject to Ontario’s access and privacy laws.... | Access | Privacy | Papers | Jun 07 2016 |
| | |||
| Submission to the Ministry of Community Safety and Correctional Services on its Strategy for a Safer Ontario Submission to the Ministry of Community Safety and Correctional Services on its Strategy for a Safer Ontario | Law Enforcement/policing | Privacy | Advice And Submissions | Apr 29 2016 |
| | |||
| The Municipal Freedom of Information and Protection of Privacy Act and Councillors’ records Our office is sometimes required to decide access to information appeals relating to requests for records held by municipal councillors. Unfortunately, the Municipal Freedom of Information and Protection of Privacy Act (MFIPPA) does not expressly refer to records of municipal councillors. | Access | Legislation | Privacy | Fact Sheets | Apr 22 2016 |
| | |||
| Submission of the Information and Privacy Commissioner of Ontario to the Standing Committee on Justice Policy on Bill 119 Submission of the Information and Privacy Commissioner of Ontario to the Standing Committee on Justice Policy on Bill 119: The Health Information Protection Act, 2015. | Health | Advice And Submissions | Mar 03 2016 |
| | |||
| Thinking About Clouds? Privacy, security and compliance considerations for Ontario public sector institutions The IPC has prepared this new guidance document, Thinking About Clouds? Privacy, security and compliance considerations for Ontario public sector institutions, to help institutions evaluate whether cloud computing services are suitable for their information management needs. In particular, it seeks to raise awareness of the risks associated with using cloud computing... | Privacy | Technology And Security | Feb 20 2016 | |
| | |||
| Yes, You Can. Dispelling the Myths About Sharing Information with Children’s Aid Societies Common misunderstandings about privacy are frequently cited as reasons for not sharing information with a children’s aid society (CAS) about a child who may be at risk. In fact, Ontario law permits professionals working with children to share this information. To help professionals understand that privacy is not a barrier to disclosing this important information, the IPC... | Law Enforcement/policing | Legislation | Privacy | Youth | Best Practices | Professional Guidelines | Jan 20 2016 |
| | |||
| FIPPA and MFIPPA: Bill 8 — The Recordkeeping Amendments Bill 8, the Public Sector and MPP Accountability and Transparency Act, 2014, will come into effect on January 1, 2016. | Access | Information Management | Legislation | Best Practices | Papers | Dec 22 2015 |
| | |||
| Letter and Submission to the Honourable Yasir Naqvi, on Draft Street Checks Regulations Letter and submission from the IPC to the the Honourable Yasir Naqvi, Minister of Community Safety and Correctional Services, the Commissioner offers recommendations on the draft regulation proposed on October 28, 2015, which seeks to regulate the practice of police street checks across the province. | Law Enforcement/policing | Advice And Submissions | Dec 11 2015 |
| | |||
| IPC Submission on Draft Street Checks Regulations Submission from the IPC to the the Honourable Yasir Naqvi, Minister of Community Safety and Correctional Services, the Commissioner offers recommendations on the draft regulation proposed on October 28, 2015, which seeks to regulate the practice of police street checks across the province. | Law Enforcement/policing | Advice And Submissions | Dec 11 2015 |
| | |||
| MFIPPA Workbook and Completion Guide This workbook and guide is designed to provide step-by-step instructions for the completion of the Information and Privacy Commissioner’s (IPC) Year-End Statistical Report as required by the Municipal Freedom of Information and Protection of Privacy Act (MFIPPA). | Nov 24 2015 | ||
| | |||
| FIPPA Workbook and Completion Guide This workbook and guide is designed to provide step-by-step instructions for the completion of the Information and Privacy Commissioner’s (IPC) Year-End Statistical Report as required by the Freedom of Information and Protection of Privacy Act (FIPPA). | Nov 24 2015 | ||
| | |||
| Submission to the Standing Committee on Justice Policy: Police Record Checks Reform Act This post is also available in: French | Law Enforcement/policing | Advice And Submissions | Nov 05 2015 |
| | |||
| Frequently Asked Questions: Personal Health Information Protection Act This revised FAQ has a new look and feel and has been rewritten with cleaner, easy to understand, gender-neutral language. Also included are a few additions to the original publication: | Health | Legislation | Privacy | Best Practices | Nov 02 2015 |
| | |||
| Frequently Asked Questions: Health Cards and Health Numbers Our frequently asked questions on health cards and health numbers clarify who may collect, use or disclose health numbers for health care purposes, as well as the use of health cards as a proof of identity. The guidance covers: | Health | Privacy | Professional Guidelines | Nov 01 2015 |
| | |||
| Submission to the Standing Committee on the Legislative Assembly: e-Petitions This post is also available in: French | Open Government | Advice And Submissions | Oct 21 2015 |
| | |||
| Guidelines for the Use of Video Surveillance
| Privacy | Surveillance | Best Practices | Professional Guidelines | Oct 06 2015 |
| | |||
| Open Contracting: Proactive Disclosure of Procurement Records
| Access | Open Government | Papers | Professional Guidelines | Sep 21 2015 |
| | |||
| Circle of Care: Sharing Personal Health Information for Health-Care Purposes This document was thoroughly reviewed and updated in August, 2015, introducing clear and easy to understand gender-neutral language. | Health | Professional Guidelines | Aug 16 2015 |
| | |||
| Transparency, Privacy and the Internet: Municipal Balancing Acts Municipalities are turning to the Internet as a means of making information public in an effort to improve accessibility, transparency and accountability. This may include publishing records directly to their website or including records in searchable databases that can be accessed online. Publishing materials online is an effective means of ensuring that the public has... | Legislation | Privacy | Technology And Security | Papers | Professional Guidelines | Aug 04 2015 |
| | |||
| Planning for Success PIA Worksheets This post is also available in: French | May 19 2015 | ||
| | |||
| Planning for Success: Privacy Impact Assessment Guide Ontario public sector institutions must meet high standards of care and trust whenever collecting, using and disclosing personal and other sensitive information. Any public institution considering new information technologies, systems, and program services that may affect privacy are strongly encouraged to complete a privacy impact assessment... | Access | Information Management | Privacy | Technology And Security | Professional Guidelines | May 19 2015 |
| | |||
| Best Practices for Protecting Individual Privacy in Conducting Survey Research
| Information Management | Privacy | Best Practices | Papers | Professional Guidelines | Apr 07 2015 |
| | |||
| Guidance for the Use of Body-Worn Cameras by Law Enforcement Authorities This guidance document aims to identify some of the privacy considerations law enforcement authorities should take into account when deciding whether to outfit law enforcement officers with body-worn cameras. Published by the federal Privacy Commissioner and privacy and personal information protection Ombudspersons and Commissioners in all provinces and territories, the... | Access | Law Enforcement/policing | Privacy | Best Practices | Papers | Professional Guidelines | Feb 18 2015 |
| | |||
| Detecting and Deterring Unauthorized Access to Personal Health Information Unauthorized access continues to be a growing problem in the health sector in Ontario. The province’s Personal Health Information Protection Act, (PHIPA), permits health information custodians (HIC) to collect, use and disclose personal health information for the purposes of providing or assisting in the provision of health care based on implied or assumed implied consent... | Health | Privacy | Best Practices | Papers | Professional Guidelines | Jan 28 2015 |
| | |||
| De-identification Protocols: Essential for Protecting Privacy Information is becoming far more valuable as businesses seek to learn more about their customers and those of their competitors, and as advertisers seek to gain a competitive advantage by finding new and innovative ways to use information to target advertisements that are most relevant to their consumers. | Information Management | Privacy | Technology And Security | Papers | Professional Guidelines | Jun 25 2014 |
| | |||
| Freedom and Control: Engineering a New Paradigm for the Digital World Privacy and cybersecurity professionals, creators of digital property, and countless policy-makers have spent decades fighting to civilize the digital world, but they have lacked the most fundamental tool they need to succeed, namely — information systems engineering that enables true control of digital data. | Information Management | Privacy | Technology And Security | Papers | May 08 2014 |
| | |||
| Privacy Exposures and Risk Reduction Strategies for Small Organizations As a small business becomes more networked and data-intensive, personal information and customer trust are critical assets that must be protected. This paper was written to help small business avoid data breaches that are harmful to both brand reputation and costly. Privacy policies and procedures alone, without a concrete strategy for implementation, will not protect an... | Privacy | Papers | Oct 22 2013 |
| | |||
| A Primer on Metadata: Separating Fact from Fiction Since the recent revelations of the NSA’s sweeping surveillance of the public’s metadata, the term “metadata” has been regularly used in the media, frequently without any explanation of its meaning. Metadata’s reach can be extensive – including information that reveals the time and duration of a communication, the particular devices used, email addresses, or... | Information Management | Technology And Security | Papers | Jul 17 2013 |
| | |||
| Dispelling the Myths Under the Personal Health Information Protection Act There are many myths surrounding how information may be collected, used and disclosed under the Personal Health Information Protection Act. Working with our partners in the health care community, we have created this one-page document to dispel some of the more common myths. | Health | Privacy | Best Practices | Papers | Professional Guidelines | Sep 28 2012 |
| | |||
| A Policy is Not Enough: It Must be Reflected in Concrete Practices Privacy policies and procedures alone, without a concrete strategy for implementation, will not protect an organization from privacy risks. The policies and procedures must be actively communicated, and staff must be educated about measures that need to be in place, so that policies will be reflected in actions. This paper sets out a series of seven steps that organizations... | Privacy | Papers | Sep 05 2012 |
| | |||
| Privacy and Drones: Unmanned Aerial Vehicles Unmanned Aerial Vehicles (UAV) present unique challenges due to their ability to use a variety of sensors to gather information from unique vantage points – often for long periods and on a continuous basis. The prospect of having our every move monitored, and possibly recorded, raises profound civil liberty and privacy concerns. At the same time, there are many desirable... | Privacy | Technology And Security | Papers | Aug 16 2012 |
| | |||
| Fact Sheet #18 – Secure Transfer of Personal Health Information In Order HO-011, the Information and Privacy Commissioner of Ontario (IPC) ordered Cancer Care Ontario to discontinue its practice of transferring records of personal health information relating to its colon cancer screening program in paper format, after several courier packages containing the personal health information of over 7,000 individuals were lost. Cancer Care... | Health | Information Management | Privacy | Technology And Security | Aug 01 2012 | |
| | |||
| Identity Theft: A Crime of Opportunity Practical information about identity theft, how to avoid it, and what to do if you find you are a victim. | Privacy | Technology And Security | Brochures | Jul 17 2012 |
| | |||
| Mobile Near Field Communications (NFC) “Tap ‘n Go” – Keep it Secure and Private This paper examines Near Field Communications (NFC) technologies and their growing deployment in mobile devices. Four consumer use cases illustrate NFC functionalities and benefits. Privacy and security risks are identified, and solutions are offered for NFC mobile device and application developers that are informed by the Privacy by Design Foundational Principles. ... | Privacy | Technology And Security | Papers | Nov 28 2011 |
| | |||
| What Students Need to Know – Grade 11 & 12 Teacher’s Guide Other Resources: Grade 11/12 Fact Sheet | Privacy | Youth | Educational Material | Sep 27 2011 |
| | |||
| Applying PHIPA and FIPPA to Personal Health Information: Guide for Hospitals This post is also available in: French | Access | Access Request Process | Health | Legislation | Brochures | Educational Material | Apr 20 2011 |
| | |||
| Fact Sheet #17 – Applying PHIPA and FIPPA/MFIPPA to Personal Health Information The purpose of this Fact Sheet is to provide organizations that are defined as both health information custodians under the Personal Health Information Protection Act (PHIPA) and institutions under public sector privacy and access to information legislation, namely the provincial Freedom of Information and Protection of Privacy Act (FIPPA)... | Access | Access Request Process | Health | Privacy | Educational Material | Fact Sheets | Apr 19 2011 |
| | |||
| What Students Need to Know – Grade 10 Teacher’s Guide Other Resources: Grade 10 Fact Sheet | Access | Privacy | Youth | Educational Material | Dec 06 2010 |
| | |||
| Fact Sheet #16 – Health-Care Requirement for Strong Encryption The Office of the Information and Privacy Commissioner, in Order HO-004 and Order HO-007, required that health information be safeguarded at all times, specifically by ensuring that any personal health information stored on any mobile devices (e.g., laptops, memory sticks, PDAs) be strongly encrypted.This Fact Sheet paper provides a working definition of strong encryption... | Health | Privacy | Technology And Security | Educational Material | Fact Sheets | Jul 16 2010 |
| | |||
| Manual For The Review and Approval Of Prescribed Persons And Prescribed Entities The purpose of the Manual For The Review and Approval of Prescribed Persons and Prescribed Entities is to outline the new process that will be followed by the Information and Privacy Commissioner of Ontario, commencing on January 31, 2010, in reviewing the practices and procedures implemented by prescribed persons and prescribed entities to protect the privacy of individuals... | Health | Best Practices | Apr 21 2010 |
| | |||
| A Positive-Sum Paradigm in Action in the Health Sector Health information custodians frequently rely on de-identification when using or disclosing health information – a measure that can protect individual privacy, but often at the expense of data quality (zero-sum paradigm). Dr. Khaled El Emam, a senior investigator at the Children’s Hospital of Eastern Ontario Research Institute (CHEO), has resolved this dilemma through... | Health | Privacy | Papers | Mar 30 2010 |
| | |||
| A Discussion Paper on Privacy Externalities, Security Breach Notification and the Role of Independent Oversight Prepared for The Eighth Workshop on the Economics of Information Security University College, London, England June 24, 2009 | Privacy | Papers | Dec 22 2009 |
| | |||
| Get rid of it Securely to keep it Private – Best Practices for the Secure Destruction of Personal Health Information This is joint publication between Commissioner, Dr. Ann Cavoukian and Robert Johnson, Executive Director of the National Association for Information Destruction (NAID). This publication was borne out of a particular Health Order (HO-006) which Commissioner Cavoukian issued this past summer regarding records containing personal health information being found scattered on... | Access | Information Management | Privacy | Papers | Oct 29 2009 |
| | |||
| Online Privacy: Make Youth Awareness and Education a Priority This paper is a chronicle describing the IPC’s work to enhance awareness about the privacy challenges youth face on the Internet. | Privacy | Youth | Papers | Mar 25 2009 |
| | |||
| Adding an On/Off Device to Activate the RFID in Enhanced Driver’s Licences: Pioneering a Made-in-Ontario Transformative Technology that Delivers Both Privacy and Security This discussion paper describes the IPC’s work in toward the implementation of an on/off device allowing holders of an Enhanced Drivers Licence (EDL) to prevent the Radio Frequency Identification (RFID) from being read by unauthorized third parties and disengage the RFID when not required for border-crossing purposes | Privacy | Technology And Security | Papers | Mar 19 2009 |
| | |||
| Practice Tool for Exercising Discretion: Emergency Disclosure of Personal Information by Universities, Colleges and other Educational Institutions In emergency situations, privacy laws in Ontario and British Columbia1 do not prohibit universities, colleges or other educational institutions from responsibly disclosing a student’s | Information Management | Legislation | Privacy | Best Practices | Papers | Oct 30 2008 |
| | |||
| Your Rights under Ontario’s Freedom of Information Laws | Access | Access Request Process | Legislation | Educational Material | Jul 24 2008 |
| | |||
| RFID and Privacy: Guidance for Health-Care Providers RFID and Privacy: Guidance for Health-Care Providers. RFID technology can help save lives – and preserve privacy. | Health | Privacy | Papers | Jan 23 2008 |
| | |||
| Practice Direction #12 – Accommodating persons with disabilities This post is also available in: French | Access | Access Request Process | Privacy | Best Practices | Practice Directions | Professional Guidelines | Nov 27 2007 |
| | |||
| Reference Check: Is Your Boss Watching? The New World of Social Media: Privacy and Your Facebook Profile Social networking websites such as Facebook are now so popular that they are being used by employers to screen prospects. Information you post on your profile for the amusement of you and your friends may, therefore, be viewed in a different light. This short paper cautions users of these sites about this growing trend in use of these sites and offers tips on how to reduce... | Privacy | Technology And Security | Oct 24 2007 | |
| | |||
| Privacy Guidelines for Municipalities Regulating Businesses Dealing in Second-hand Goods Commissioner Ann Cavoukian prepared these Guidelines to provide Ontario municipalities with a framework to meet the privacy requirements under MFIPPA. | Open Government | Privacy | Professional Guidelines | Sep 14 2007 |
| | |||
| Safeguarding Privacy on Mobile Devices A brochure outlining suggested best practices for securing mobile devices (PDAs, laptops, etc.) and protecting the information carried out of the workplace on them. Steps are organized into sections: Before you Walk out of the Workplace, While you are Out and When You have Completed Your Work. Includes a checklist and list of IPC resources. | Health | Privacy | Brochures | Professional Guidelines | Jun 14 2007 |
| | |||
| Safeguarding Privacy on Mobile Devices A brochure outlining suggested best practices for securing mobile devices (PDAs, laptops, etc.) and protecting the information carried out of the workplace on them. Steps are organized into sections: Before you Walk out of the Workplace, While you are Out and When You have Completed Your Work. Includes a checklist and list of IPC resources. Revised: May 2014 ... | Privacy | Technology And Security | Jun 14 2007 | |
| | |||
| Fact Sheet #13 – Wireless Communications Technologies: Video Surveillance Systems Fact Sheet about the use of wireless CCTV cameras. | Privacy | Surveillance | Technology And Security | Fact Sheets | Jun 07 2007 |
| | |||
| Mediation Best Practices for Institutions This post is also available in: French | Access Request Process | Best Practices | Jan 19 2007 |
| | |||
| Mediation Tips for Institutions This post is also available in: French | Access | Appeal Process | Best Practices | Professional Guidelines | Jan 19 2007 |
| | |||
| Mediation checklist This post is also available in: French | Appeal Process | Open Government | Best Practices | Professional Guidelines | Jan 19 2007 |
| | |||
| Breach Notification Assessment Tool This document assists organizations in making key decisions about notifying individuals after a privacy breach occurs by presenting checklists covering factors affecting whether to notify, when and how to notify, what to include in a notification and other organizations that should be contacted. The document was produced jointly by the Office of the Information and Privacy... | Information Management | Privacy | Papers | Dec 11 2006 |
| | |||
| Practice Direction #1 – Providing records to the IPC during an appeal Practice Direction #1 – Providing records to the IPC during an appeal | Practice Directions | Apr 06 2006 | |
| | |||
| Practice Direction #10 – Appeal fees Practice Direction #10 – Appeal fees | Access | Appeal Process | Best Practices | Practice Directions | Professional Guidelines | Apr 06 2006 |
| | |||
| Practice Direction #11 – Appeal Form This post is also available in: French | Access | Appeal Process | Best Practices | Practice Directions | Professional Guidelines | Apr 06 2006 |
| | |||
| Practice Direction #8 – Reasonable Search Appeals and Fee Appeals This post is also available in: French | Access | Access Request Process | Appeal Process | Best Practices | Practice Directions | Professional Guidelines | Apr 06 2006 |
| | |||
| Practice Direction #6 – Affidavit and other evidence This post is also available in: French | Access | Appeal Process | Legislation | Best Practices | Practice Directions | Professional Guidelines | Apr 06 2006 |
| | |||
| Practice Direction #5 – Guidelines for institutions in making representations This post is also available in: French | Access | Appeal Process | Best Practices | Practice Directions | Professional Guidelines | Apr 06 2006 |
| | |||
| Practice Direction #3 – Guidelines for individuals whose personal information is at issue in an appeal This post is also available in: French | Appeal Process | Best Practices | Practice Directions | Professional Guidelines | Apr 06 2006 |
| | |||
| Practice Direction #4 – Guidelines for parties whose commercial or business information is at issue in an appeal This post is also available in: French | Appeal Process | Best Practices | Practice Directions | Professional Guidelines | Apr 06 2006 |
| | |||
| Providing records to the IPC during an appeal This post is also available in: French | Appeal Process | Apr 06 2006 | |
| | |||
| Practice Direction #2 – Participating in a written FIPPA or MFIPPA inquiry Revised February 2012 | Access | Privacy | Best Practices | Practice Directions | Professional Guidelines | Apr 06 2006 |
| | |||
| Practice Direction #7 – Sharing of representations Revised March 2014 | Appeal Process | Best Practices | Practice Directions | Professional Guidelines | Apr 06 2006 |
| | |||
| Access to Information under Ontario’s Information and Privacy Acts Information on how to file an access to information request under FIPPA or MFIPPA. | Access | Legislation | Brochures | Apr 01 2006 |
| | |||
| Fact Sheet #11- Health Information Custodians Working for Non-Health Information Custodians This post is also available in: French | Health | Privacy | Fact Sheets | Feb 01 2006 |
| | |||
| Fact Sheet #10 – Secure Destruction of Personal Information This post is also available in: French | Information Management | Privacy | Fact Sheets | Dec 04 2005 |
| | |||
| Drafting a Letter Responding to a Request for Information This post is also available in: French | Access | Open Government | Professional Guidelines | Nov 04 2005 |
| | |||
| IPC Practices No. 1 – Drafting a Letter Refusing Access to a Record Tip sheet for government organizations on handling information | Access | Access Request Process | Best Practices | IPC Practices | Professional Guidelines | Nov 04 2005 |
| | |||
| Privacy Impact Assessment Guidelines for the Ontario Personal Health Information Protection Act This post is also available in: French | Health | Privacy | Professional Guidelines | Oct 16 2005 |
| | |||
| Request to Correct Personal Health Information (PHIPA) A generic request form for filing a request to correct your personal health information held by a health information custodian. This request form should be submitted directly to the health information custodian. | Health | Forms | Oct 03 2005 |
| | |||
| Fact Sheet #09 – Long-term Care Homes: Consent and Access under the Personal Health Information Protection Act, 2004 This post is also available in: French | Access | Health | Fact Sheets | Oct 01 2005 |
| | |||
| What Students Need to Know – Grade 5 Teacher’s Guide This guide focuses on introducing students to the importance of the public values of access to government-held information and personal privacy. | Privacy | Youth | Educational Material | Sep 01 2005 |
| | |||
| Authorization to Act as an Agent for Appeal (FIPPA/MFIPPA) A form to be signed by an appellant who is represented by someone other than a lawyer in an appeal relating to a request for general information or for the appellant’s personal information/correction of personal information. | Appeal Process | Legislation | Forms | Jul 11 2005 |
| | |||
| Authorization to Act as an Agent For A Complaint under the Personal Health Information Protection Act A form to be signed by a complainant who is represented by someone other than a lawyer. | Health | Legislation | Privacy | Forms | Jul 11 2005 |
| | |||
| Fact Sheet #08 – Lock-box Fact Sheet This post is also available in: French | Health | Privacy | Fact Sheets | Jul 01 2005 |
| | |||
| Fact Sheet #07 – Disclosure of Information Permitted in Emergency or other Urgent Circumstances This post is also available in: French | Health | Privacy | Fact Sheets | Jul 01 2005 |
| | |||
| Your Health Information and Your Privacy in Our Office (Brochure) Short Notices to the Public under the Personal Health Information Protection Act | Health | Privacy | Brochures | Educational Material | Jun 16 2005 |
| | |||
| Your Health Information and Your Privacy in Our Office (Poster) Short Notices to the Public under the Personal Health Information Protection Act | Health | Privacy | Educational Material | Posters | Jun 16 2005 |
| | |||
| Your Health Information and Your Privacy in Our Hospital (Brochure) Short Notices to the Public under the Personal Health Information Protection Act | Health | Privacy | Brochures | Educational Material | Jun 16 2005 |
| | |||
| Your Health Information and Your Privacy in Our Hospital (Poster) Short Notices to the Public under the Personal Health Information Protection Act | Health | Privacy | Educational Material | Posters | Jun 16 2005 |
| | |||
| Your Health Information and Your Privacy in Our Facility (Brochure) Short Notices to the Public under the Personal Health Information Protection Act | Health | Brochures | Educational Material | Jun 16 2005 |
| | |||
| Your Health Information and Your Privacy in Our Facility (Poster) Short Notices to the Public under the Personal Health Information Protection Act | Health | Privacy | Posters | Jun 16 2005 |
| | |||
| Privacy and the Open Networked Enterprise Updated: December 2006. | Information Management | Privacy | Papers | Jun 01 2005 |
| | |||
| Fact Sheet #06 – Reporting Requests under PHIPA Revised October 2012 | Health | Fact Sheets | Apr 01 2005 |
| | |||
| Fact Sheet #04 – Fundraising under PHIPA Revised Sept. 2014. | Health | Fact Sheets | Apr 01 2005 |
| | |||
| Fact Sheet #02 – Your health information – Your access and correction rights This post is also available in: French | Access | Health | Fact Sheets | Jan 01 2005 |
| | |||
| Fact Sheet #01 – Safeguarding Personal Health Information This post is also available in: French | Health | Privacy | Fact Sheets | Jan 01 2005 |
| | |||
| Request to Access Personal Health Information (PHIPA) A generic request form for filing a request for access to your personal health information held by a health information custodian. This request form should be submitted directly to the health information custodian. | Access | Access Request Process | Health | Forms | Jan 01 2005 |
| | |||
| Access and Correction Complaints – Personal Health Information Protection Act This brochure provides information on complaints about access or correction of personal health information under PHIPA. | Access | Health | Brochures | Educational Material | Dec 16 2004 |
| | |||
| Collection, Use, Disclosure and Other Complaints – Personal Health Information Protection Act This brochure provides information about collection, use, disclosure and other complaints under PHIPA. | Health | Privacy | Brochures | Educational Material | Dec 01 2004 |
| | |||
| A Guide to the Personal Health Information Protection Act This guide is a tool to help health information custodians understand their rights and obligations under the Personal Health Information Protection Act, (PHIPA). | Health | Privacy | Papers | Dec 01 2004 |
| | |||
| Code of Procedure for appeals under the Freedom of Information and Protection of Privacy Act and the Municipal Freedom of Information and Protection of Privacy Act This post is also available in: French | Appeal Process | Privacy | Professional Guidelines | Oct 14 2004 |
| | |||
| Providing Records to the IPC during an Appeal This post is also available in: French | Appeal Process | Professional Guidelines | Oct 01 2004 |
| | |||
| The Personal Health Information Protection Act and Your Privacy [Revised February 2019] | Health | Privacy | Brochures | Oct 01 2004 |
| | |||
| Grade 11/12 Brochure – What Students Need to Know About Freedom of Information and Protection of Privacy The brochure explains the IPC’s outreach program to schools in Ontario, specifically for grades 11/12 | Legislation | Youth | Brochures | Educational Material | Sep 01 2004 |
| | |||
| What Students Need to Know – A Resource for Grade 11/12 Teachers Program focuses on introducing students to the importance of the public values of access to government-held information and personal privacy. Expanded program for Grade 11/12. | Legislation | Privacy | Youth | Educational Material | Sep 01 2004 |
| | |||
| Appeal Form (FIPPA/MFIPPA) A form for filing an appeal of a decision by a government organization relating to a request made under the provincial or municipal Freedom of Information and Protection of Privacy Act. | Appeal Process | Forms | Jul 19 2004 |
| | |||
| Promoting Transparency through the Electronic Dissemination of Information An IPC paper prepared for the Symposium on E-Governance for the 21st Century, sponsored by the Saskatchewan Institute of Public Policy. It has been included as a chapter in E-Government Reconsidered: Transformation of Governance for the Knowledge Age, a book published in April, 2004. | Open Government | Papers | Apr 01 2004 |
| | |||
| The Advantages of Electronically Processing Freedom of Information Requests: The MNR Experience Produced by the Ministry of Natural Resources and the Office of the Information and Privacy Commissioner of Ontario. | Access | Access Request Process | Papers | Apr 01 2004 |
| | |||
| Best Practices for Institutions in Mediating Appeals under the Freedom of Information and Protection of Privacy Act and the Municipal Freedom of Information and Protection of Privacy Act A Joint Project of the Office of the Information and Privacy Commissioner of Ontario and the Ministry of the Attorney General. | Appeal Process | Best Practices | Papers | Mar 01 2004 |
| | |||
| IPC Practices No. 15 – Clarifying Access Requests Tip sheet for government organizations on handling information | Access | Access Request Process | Best Practices | IPC Practices | Professional Guidelines | Sep 24 2003 |
| | |||
| IPC Practices No. 14 – The Indirect Collection of Personal Information Tip sheet for government organizations on handling information. | Access | Personal Information | Best Practices | IPC Practices | Professional Guidelines | Sep 24 2003 |
| | |||
| Index of Records (FIPPA/MFIPPA) A form that should be used by institutions when responding to a request under the provincial or municipal Act or providing information to the IPC during the course of an appeal. It is a listing of all of the enclosed records being released by the institution. | Access | Forms | Sep 24 2003 |
| | |||
| Clarifying Access Requests Tip sheet for government organizations on handling information | Access | Access Request Process | Sep 24 2003 | |
| | |||
| IPC Practices No. 8 – Providing Notice of Collection Tip sheet for government institutions on information management. | Legislation | Privacy | Best Practices | IPC Practices | Professional Guidelines | Sep 24 2003 |
| | |||
| IPC Practices No. 9 – Responding to Requests for Personal Information Tip sheet for government organizations on handling information | Access | Access Request Process | Privacy | IPC Practices | Professional Guidelines | Sep 24 2003 |
| | |||
| IPC Practices No. 26: Safe and Secure Disposal Procedures for Municipal Institutions Tip sheet for government insitutions on handling information. | Information Management | Privacy | Best Practices | IPC Practices | Professional Guidelines | Aug 13 2003 |
| | |||
| Request Form (FIPPA/MFIPPA) A generic request form for filing a request for information held by a government organization or to request a correction of your personal information held by a government organization. | Access Request Process | Forms | Aug 07 2003 |
| | |||
| The Security-Privacy Paradox: Issues, Misconceptions and Strategies This joint paper produced by IPC Ontario and Deloitte & Touche provides hands-on advice for developing strategies for information security and privacy protection. | Privacy | Surveillance | Technology And Security | Papers | Aug 01 2003 |
| | |||
| Electronic Records and Document Management Systems: A New Tool for Enhancing the Public’s Right to Access Government-Held Information? This paper examines the role that electronic records and document management systems (ERDMSs) can play in enhancing the public’s right to access information from government institutions in Ontario. | Access | Information Management | Open Government | Papers | Jul 01 2003 |
| | |||
| Inspection Reports and Municipal Freedom of Information and Protection of Privacy Act A joint project of the Town of Newmarket and the IPC | Legislation | Privacy | Jun 01 2003 | |
| | |||
| Guidelines on Facsimile Transmission Security This post is also available in: French | Jan 22 2003 | ||
| | |||
| Guidelines on Facsimile Transmission Security This updated paper sets out guidelines for government institutions to consider when developing systems and procedures to maintain the confidentiality and integrity of information transmitted by fax. | Privacy | Technology And Security | Best Practices | Papers | Professional Guidelines | Jan 01 2003 |
| | |||
| Authorization to Act as an Agent for Privacy Complaint (FIPPA/MFIPPA) A form to be signed by a complainant who is represented by someone other than a lawyer in a privacy complaint. | Privacy | Forms | Dec 30 2002 |
| | |||
| Concerns and Recommendations Regarding Government Public Key Infrastructures for Citizens Examines the potential impact of PKI on the protection of personal privacy and makes recommendations for officials establishing such systems. | Privacy | Surveillance | Papers | Dec 01 2002 |
| | |||
| Research Agreement (MFIPPA) A form to be used where a researcher has requested access to records that contain personal information and are in the custody or under the control of an institution subject to the municipal Act. | Privacy | Forms | Sep 12 2002 |
| | |||
| Research Agreement (FIPPA) A form to be used where a researcher has requested access to records that contain personal information and are in the custody or under the control of an institution subject to the provincial Act. (PDF format) | Privacy | Forms | Sep 12 2002 |
| | |||
| Processing Voluminous Requests A Best Practice for Institutions A joint project of the Office of the Information and Privacy Commissioner/Ontario and the Information and Privacy Unit, Ministry of Natural Resources, this publication provides a selection of strategies when dealing with voluminous requests. September 2002. | Access | Access Request Process | Best Practices | Sep 01 2002 |
| | |||
| Exercising Discretion under section 38(b) of the Municipal Freedom of Information and Protection of Privacy Act Provides institutions with an outline of what constitutes a valid exercise of discretion in the application of section 38(b), and some practical tips on how to properly exercise discretion when dealing with a specific category of records. | Access | Access Request Process | Best Practices | Jan 01 2002 |
| | |||
| Working with the Municipal Freedom of Information and Protection of Privacy Act: A Councillor’s Guide This post is also available in: French | Access | Access Request Process | Legislation | Privacy | Nov 01 2001 | |
| | |||
| Privacy Diagnostic Tool (PDT) Workbook The PDT is an instrument that uses a series of questions to give businesses a ‘read’ on how well they manage their customers’ personal information. The PDT uses internationally recognized fair information practices as its basis. | Information Management | Privacy | Best Practices | Professional Guidelines | Aug 01 2001 |
| | |||
| Guidelines for Protecting the Privacy and Confidentiality of Personal Information When Working Outside the Office Provides best practices and tips to assist government organizations in developing policies that address the privacy obligations of employees who are working in locations outside the traditional office setting. | Information Management | Privacy | Best Practices | Professional Guidelines | Jul 01 2001 |
| | |||
| Best Practices for Online Privacy Protection An educative tool designed to help companies identify and implement appropriate practices for protecting the privacy of their online customers. | Privacy | Technology And Security | Best Practices | Professional Guidelines | Jun 01 2001 |
| | |||
| Routine Disclosure/Active Dissemination: A Best Practice in the City of Mississauga This post is also available in: French | Access | Open Government | Best Practices | Nov 01 2000 |
| | |||
| The Appeal Process and Ontario’s Information and Privacy Commissioner Consumer information regarding appeals of a decision made to an access request under FIPPA or MFIPPA. | Appeal Process | Brochures | Sep 01 2000 |
| | |||
| Ontario’s Freedom of Information and Protection of Privacy Act: A Mini Guide A quick overview of the key points of the provincial Act. | Access | Legislation | Privacy | Brochures | Mar 01 2000 |
| | |||
| Backgrounder for Senior Managers on the Role of Freedom of Information and Privacy Co-ordinators relating to Access to Information Each provincial and municipal government organization has a Co-ordinator. This Backgrounder looks at the critically important role that Co-ordinators play. | Access | Access Request Process | Open Government | Privacy | Papers | Sep 01 1999 |
| | |||
| Grade 5 Brochure – What Students Need to Know About Freedom of Information and Protection of Privacy The brochure explains the IPC’s outreach program to schools in Ontario, specifically for grade 5 | Access | Privacy | Youth | Brochures | Jan 01 1999 |
| | |||
| IPC Practices No. 18 – How to Protect Personal Information in the Custody of a Third Party This post is also available in: French | Personal Information | Best Practices | IPC Practices | Sep 01 1998 |
| | |||
| IPC Practices No. 5 – Third Party Information at the Request Stage Tip sheet for government organizations on handling information. | Access Request Process | Appeal Process | Best Practices | IPC Practices | Professional Guidelines | Sep 01 1998 |
| | |||
| IPC Practices No. 7 – The Collection and Use of the Social Insurance Number Tip sheet for government organizations on handling personal information with regards to social insurance numbers. | Information Management | Privacy | Best Practices | IPC Practices | Professional Guidelines | Sep 01 1998 |
| | |||
| IPC Practices No. 16 – Maintaining the Confidentiality of Requesters and Privacy Complainants Tip sheet for government institutions on information management. | Access Request Process | Privacy | Best Practices | IPC Practices | Professional Guidelines | Sep 01 1998 |
| | |||
| IPC Practices No. 22 – Routine Disclosure/Active Dissemination (RD/AD) of Government Information Tip sheet for government organizations on information management. | Access | Information Management | Open Government | Best Practices | IPC Practices | Professional Guidelines | Sep 01 1998 |
| | |||
| IPC Practices No. 25 – You and Your Personal Information at the Ministry of Transportation Tip sheet for government institutions on handling personal information. Revised July, 2009. | Information Management | Privacy | Best Practices | IPC Practices | Professional Guidelines | Sep 01 1998 |
| | |||
| Ontario’s Municipal Freedom of Information and Protection of Privacy Act: A Mini Guide A quick overview of the key points of the municipal Act. | Access | Legislation | Privacy | Brochures | Jun 01 1998 |
| | |||
| A Model Access and Privacy Agreement Provides a template designed for insertion into contracts drawn up when a government function is transferred over to the private sector. The model contract will provide assurances to the public that their personal information will be kept secure and their right to privacy preserved when government functions are transferred over to the private sector. | Access | Privacy | Best Practices | Aug 01 1997 |
| | |||
| Privacy Protection Principles for Voice Mail Systems Examines privacy issues surrounding the use of voice mail in the workplace and outlines a number of general principles for organizations to consider in their development of corporate privacy protection policies regarding the use of voice mail. The related Highlight is Privacy Protection Principles for Voice Mail Systems. October 1995. | Oct 01 1995 | ||
| | |||
| Indirect Collection Guideline Appendix B This post is also available in: French | Personal Information | Professional Guidelines | Apr 02 1993 |
| | |||
| Indirect Collection Guidelines Appendix A This post is also available in: French | Personal Information | Professional Guidelines | Apr 02 1993 |
| | |||
| Indirect Collection Guidelines – Municipal Municipal Guidelines on Applications to the Office of the Information and Privacy Commissioner/Ontario for Authorization of Indirect Collection by Institutions Covered Under the Municipal Freedom of Information and Protection of Privacy Act. | Personal Information | Professional Guidelines | Apr 02 1993 |
| | |||
| Indirect Collection Guidelines – Provincial Provincial Guidelines on Applications to the Office of the Information and Privacy Commissioner/Ontario for Authorization of Indirect Collection by Institutions Covered Under the Freedom of Information and Protection of Privacy Act. | Personal Information | Professional Guidelines | Apr 02 1993 |
