Guidance

The Office of the Information and Privacy Commissioner publishes guidance documents to promote compliance with Ontario’s access and privacy laws.

New materials are posted on an ongoing basis. If you are looking for a guidance on a topic that is not listed here, please contact us.

Found 192 results

Title / Description	Topic	Type	Date

Comments of the Information and Privacy Commissioner of Ontario on Bill 138		Submissions	Dec 03 2019

IPC’s letter to Minister Lisa M. Thompson regarding the Government of Ontario’s Better, Smarter Government Discussion Paper		Submissions	Nov 28 2019

Providing Access to Personal Information under the Child, Youth and Family Services Act: A Guide for Service Providers	Access \| Youth	Best Practices \| Professional Guidelines	Nov 27 2019

Privacy Complaint Report MC17-32 Privacy Complaint MC17-32	Privacy	Reports \| Special Reports	Nov 22 2019

Know Your Rights: Your File and Your Rights Under Ontario’s Child and Family Services Law	Youth	Brochures	Oct 21 2019

Guidelines for Submitting Annual Statistics to the IPC Guidelines for service providers under Part X of the Child, Youth and Family Services Act	Youth	Professional Guidelines	Oct 17 2019

Reporting a Privacy Breach to the Information and Privacy Commissioner: Guidelines for Service Providers Guidelines for service providers under Part X of the Child, Youth and Family Services Act	Youth	Best Practices \| Professional Guidelines	Oct 17 2019

It’s About You: Your File and Your Rights Under Ontario’s Child and Family Services Law (brochure)	Youth	Brochures	Oct 17 2019

It’s About You: Your File and Your Rights Under Ontario’s Child and Family Services Law (poster)	Youth	Posters	Oct 17 2019

IPC letter to Minister Lisa M. Thompson regarding the Government of Ontario’s Creating Economic Benefits Discussion Paper		Submissions	Oct 15 2019

Coroners Act Addendum to the Manual for the Review and Approval of Prescribed Persons and Prescribed Entities	Privacy	Best Practices \| Professional Guidelines	Oct 03 2019

IPC letter to Minister Lisa M. Thompson regarding Government of Ontario’s “Promoting Trust and Confidence in Ontario’s Data Economy” discussion paper		Submissions	Sep 17 2019

Reporting a Privacy Breach to the IPC: Guidelines for the Health Sector	Health \| Privacy	Best Practices \| Professional Guidelines	Sep 17 2019

Privacy Breaches: Guidelines for Public Sector Organizations	Privacy	Best Practices \| Professional Guidelines	Sep 05 2019

Practice Direction #9 – Constitutional questions	Access \| Appeal Process	Best Practices \| Practice Directions \| Professional Guidelines	Aug 21 2019

Police record checks	Access	Fact Sheets	Aug 12 2019

Release of personal information to police: your privacy rights	Law Enforcement/policing \| Privacy	Fact Sheets \| Law Enforcement	Aug 12 2019

Protect Against Phishing	Technology And Security	Fact Sheets	Jul 04 2019

Part X of the Child, Youth and Family Services Act: A Guide to Access and Privacy for Service Providers	Youth	Professional Guidelines	May 13 2019

Accessing Your Deceased Relative’s Personal Information	Access \| Access Request Process \| Health \| Personal Information \| Privacy	Fact Sheets	Apr 24 2019

Succession Planning to Help Prevent Abandoned Records	Health	Fact Sheets	Apr 15 2019

Comments of the Information and Privacy Commissioner of Ontario on Bill 74	Health	Submissions	Mar 29 2019

Avoiding Abandoned Health Records: Guidance for Health Information Custodians Changing Practice	Health	Best Practices \| Professional Guidelines	Feb 26 2019

Dispelling Some Myths about the Personal Health Information Protection Act	Health	Best Practices \| Professional Guidelines	Feb 15 2019

Privacy and Access to Information in Ontario Schools: A Guide for Educators (Fact Sheet)	Access \| Privacy \| Youth	Best Practices \| Brochures \| Fact Sheets	Jan 10 2019

Privacy in the School (Fact Sheet)	Access \| Privacy \| Youth	Best Practices \| Brochures \| Fact Sheets	Jan 10 2019

Protecting Your Students’ Privacy Online (Fact Sheet)	Access \| Privacy \| Youth	Best Practices \| Brochures \| Fact Sheets	Jan 10 2019

Your Child’s Privacy in School (Fact Sheet)	Access \| Privacy \| Youth	Best Practices \| Brochures \| Fact Sheets	Jan 10 2019

A Guide to Privacy and Access in Ontario Schools	Access \| Privacy \| Youth	Best Practices \| Brochures \| Fact Sheets	Jan 10 2019

Personal Health Information Privacy Breaches Workbook and Completion Guide			Dec 13 2018

Disclosure of Personal Information to Law Enforcement	Law Enforcement/policing \| Privacy	Fact Sheets	Nov 22 2018

Responding to a Health Privacy Breach: Guidelines for the Health Sector This publication replaces the guidance document, What to do When Faced With a Privacy Breach: Guidelines for the Health Sector.	Health	Best Practices \| Papers \| Professional Guidelines	Oct 04 2018

Access Fact Sheet: Third Party Information Exemption	Access \| Access Request Process	Fact Sheets	Sep 26 2018

Privacy Fact Sheet: General Data Protection Regulation	Legislation \| Privacy	Fact Sheets	Jul 11 2018

Lesson Plan: Privacy Rights of Children and Teens	Personal Information \| Privacy \| Technology And Security \| Youth	Educational Material	Jun 18 2018

Lesson Plan: Know the Deal: The Value of Privacy	Personal Information \| Privacy \| Technology And Security \| Youth	Educational Material	Jun 18 2018

Lesson Plan: Getting the Toothpaste Back into the Tube: A Lesson on Online Information	Personal Information \| Privacy \| Technology And Security \| Youth	Educational Material	Jun 18 2018

Fees, Fee Estimates and Fee Waivers	Access Request Process	Best Practices \| Professional Guidelines	Jun 11 2018

Smart Cities and Your Privacy Rights	Privacy \| Technology And Security	Fact Sheets	Apr 27 2018

Joint Federal Provincial Territorial Letter to Minister of Infrastructure and Communities on Smart Cities Challenge	Privacy \| Technology And Security	Letters	Apr 26 2018

Disposing of Your Electronic Media This fact sheet provides guidance on how Ontario public institutions and health information custodians can securely destroy personal information when disposing of electronic media.	Information Management \| Technology And Security	Best Practices \| Fact Sheets	Mar 06 2018

Privacy by Design	Privacy	Papers	Jan 30 2018

Comments of the Information and Privacy Commissioner of Ontario on the Proposed Regulation under Part X of the Child, Youth and Family Services Act, 2017 Comments from the Information and Privacy Commissioner on the proposed regulation under Part X of the Child, Youth and Family Services Act.	Legislation \| Youth	Submissions	Jan 22 2018

Comments of the Information and Privacy Commissioner of Ontario on Bill 160		Submissions	Nov 20 2017

Annual Reporting of Privacy Breach Statistics to the Commissioner – Requirements for the Health Sector	Health \| Legislation \| Privacy	Best Practices \| Professional Guidelines	Nov 10 2017

Joint Federal Provincial Territorial Letter to Council of Ministers of Education on the Importance of Privacy Education	Privacy \| Technology And Security \| Youth	Letters	Nov 08 2017

IPC 2017 GPEN Sweep Report: Online Educational Services	Personal Information \| Privacy \| Technology And Security \| Youth	Best Practices \| Reports	Oct 24 2017

Frivolous and Vexatious Requests	Access Request Process	Fact Sheets	Aug 22 2017

Guidance on the Use of Automated Licence Plate Recognition Systems by Police Services This guidance document outlines the key obligations of police under privacy legislation in their use of ALPR systems and provides guidance, including best practices, on using these systems in a privacy-protective manner. It addresses the use of ALPR systems for public safety purposes, in particular for the purpose of alerting an officer in an ALPR-equipped vehicle to the...	Law Enforcement/policing \| Privacy \| Technology And Security	Best Practices \| Papers \| Professional Guidelines	Jul 04 2017

Big Data Guidelines			May 17 2017

Comments of the Information and Privacy Commissioner of Ontario on the Proposed Open Meeting Amendments in Bill 68			Apr 11 2017

Fact Sheet: Reasonable Search This fact sheet answers some frequently asked questions about reasonable searches for records.	Access \| Access Request Process \| Appeal Process	Fact Sheets \| Professional Guidelines	Apr 11 2017

Submission to the Standing Committee on Bill 89, Supporting Children, Youth and Families Act, 2017 Commissioner Brian Beamish presented his submission on Bill 89, Supporting Children, Youth and Families Act, 2017 to the Standing Committee on Justice Policy on Thursday, March 30, 2017.	Legislation	Submissions	Mar 30 2017

Submission to the Standing Committee on Bill 84, Medical Assistance in Dying Statute Law Amendment Act, 2017 Commissioner Brian Beamish presented this submission to the Standing Committee on Finance and Economic Affairs on March 23, 2017.			Mar 23 2017

Open Government and Protecting Privacy The IPC strongly supports Open Government initiatives and encourages Ontario institutions to be more open and transparent, and to enhance their engagement with the public. This document offers guidance for institutions on how to move towards increased government transparency without negatively affecting individuals’ privacy.	Open Government \| Privacy		Mar 15 2017

Collection, Use and Disclosure Complaint Form (PHIPA)	Health \| Privacy	Forms	Feb 28 2017

Access/Correction Complaint Form (PHIPA)	Access \| Health \| Privacy	Forms	Feb 28 2017

Code of Procedure for Matters under the Personal Health Information Protection Act, 2004 PHIPA Code of Procedure	Health \| Legislation	Best Practices \| Professional Guidelines	Feb 28 2017

PHIPA Practice Direction #5: Collection, Use, and Disclosure Complaint Form	Health	Best Practices \| Practice Directions \| Professional Guidelines	Feb 28 2017

PHIPA Practice Direction #4: Access/Correction Complaint Form	Access \| Access Request Process \| Health	Best Practices \| Practice Directions \| Professional Guidelines	Feb 28 2017

PHIPA Practice Direction #3: Publicly Released Decisions Under the Personal Health Information Protection Act, 2004	Access \| Health	Best Practices \| Practice Directions \| Professional Guidelines	Feb 28 2017

PHIPA Practice Direction #2: Responding to a Request for Access to Personal Health Information	Access \| Access Request Process	Best Practices \| Practice Directions \| Professional Guidelines	Feb 28 2017

PHIPA Practice Direction #1: Clarifying Access Requests	Access \| Access Request Process \| Health	Best Practices \| Practice Directions \| Professional Guidelines	Feb 28 2017

Submission to the Standing Committee on Social Policy on Schedule 2 of Bill 59, Putting Consumers First Act, 2016 Commissioner Brian Beamish submitted comments to the Standing Committee on Social Policy on Bill 59, Schedule 2 of Bill 59, Putting Consumers First Act, 2016.		Submissions	Feb 08 2017

Big Data and Your Privacy Rights The emergence of big data as a tool to manage and analyze large and complex data sets offers great promise and opportunity, but also raises serious privacy challenges and considerations, especially to personal privacy. Public and health sector institutions increasingly use big data tools to improve programs and public services and ensure they are supported by better...	Privacy	Fact Sheets	Jan 25 2017

The Privacy Protective Roadmap-Issues and solutions in the context of a collaborative service delivery development: The Situation Table		Webinars	Dec 06 2016

Online Educational Services: What Educators Need to Know	Personal Information \| Youth	Brochures \| Professional Guidelines	Nov 25 2016

Submission to the Standing Committee on the Legislative Assembly on Bill 41, Patients First Act, 2016 This submission addresses the privacy implications of the proposed Bill. The goal of our recommendations is to enhance the protection of personal health information of Ontarians.	Health \| Personal Information	Submissions	Nov 23 2016

Fact Sheet: Video Surveillance This fact sheet highlights the important factors an institution must consider before implementing a video surveillance system.	Privacy \| Surveillance \| Technology And Security	Best Practices \| Fact Sheets \| Professional Guidelines	Nov 09 2016

Improving Access and Privacy with Records and Information Management This guidance is designed to help institutions implement better record and information management practices and enhance the public’s ability to access information.	Access \| Access Request Process \| Appeal Process \| Legislation \| Open Government	Best Practices \| Papers \| Professional Guidelines	Nov 03 2016

Fact Sheet: What is Personal Information? This fact sheet explains the meaning of the term “personal information,” and answers frequently asked questions.	Access \| Access Request Process \| Personal Information \| Privacy	Fact Sheets \| Professional Guidelines	Oct 20 2016

Your Business is Affected by a Freedom of Information Request: What You Should Know This fact sheet outlines what to expect when an institution contacts you about an access request, your options for appeal, and other frequently asked questions. This document is part of a series designed to keep the public and professionals up to date with the IPC’s interpretations of access and privacy laws.	Access \| Access Request Process	Fact Sheets	Oct 04 2016

Investigation into Records Management Practices at TO2015 Full report on the Commissioner’s investigation into the records management practices of the Toronto Organizing Committee for the 2015 Pan American and Parapan American Games (TO2015).	Access	Special Reports	Sep 29 2016

You are Affected by a Freedom of Information Request: What You Should Know This fact sheet seeks to answer some of the common questions you may have about the freedom of information process. This document is part of a series designed to keep the public and professionals up to date with the IPC’s interpretations of access and privacy laws.	Access \| Appeal Process \| Privacy	Best Practices \| Fact Sheets	Sep 26 2016

Fact Sheet: Communicating Personal Health Information by Email This fact sheet describes the risks of using email and custodians’ obligations under the Personal Health Information Protection Act. It outlines some of the technical, physical and administrative safeguards needed to protect personal health information when communicating by email and the policies, procedures and training custodians should have in place.	Health \| Technology And Security	Best Practices \| Fact Sheets \| Professional Guidelines	Sep 15 2016

Open Government: Key Implementation Considerations This guidance document provides institutions with an overview of important factors to consider when implementing Open Government including the need for institutional leadership, commitment, governance and resources to support culture change and sustain the program over time, learning from others, engaging both internal and external users, and meeting legal requirements.	Open Government	Papers	Sep 06 2016

Open Government: Key Concepts and Benefits This guidance paper is intended as a starting point for institutions considering Open Government and highlights two critical goals: enhancing access to government-held information and public participation. It includes a discussion about making government-held information open by default and at little or no cost, and ways to enable a true two-way dialogue with the public.	Access \| Open Government	Papers \| Professional Guidelines	Sep 05 2016

Speaking Engagement Request Form			Aug 19 2016

Technology Fact Sheet – Protecting Against Ransomware This Fact Sheet from the IPC discusses how ransomware has become an increasingly dangerous threat to the security of electronic records and provides guidance on how public institutions and healthcare organizations can protect themselves against it.	Technology And Security	Fact Sheets	Jul 15 2016

De-identification Guidelines for Structured Data This document highlights the key issues to consider when de-identifying personal information in the form of structured data and it provides a step-by-step process that institutions can follow when removing personal information from data sets.	Information Management	Best Practices	Jun 08 2016

Instant Messaging and Personal Email Accounts: Meeting Your Access and Privacy Obligations This document was developed to help Ontario’s public institutions manage the use of instant messaging and personal email accounts when doing business. All public servants should be aware records relating to an institution’s business that are created, sent or received through instant messaging or personal email accounts are subject to Ontario’s access and privacy laws. The...	Access \| Privacy	Papers	Jun 07 2016

Submission to the Ministry of Community Safety and Correctional Services on its Strategy for a Safer Ontario Submission to the Ministry of Community Safety and Correctional Services on its Strategy for a Safer Ontario	Law Enforcement/policing \| Privacy	Submissions	Apr 29 2016

The Municipal Freedom of Information and Protection of Privacy Act and Councillors’ records Our office is sometimes required to decide access to information appeals relating to requests for records held by municipal councillors. Unfortunately, the Municipal Freedom of Information and Protection of Privacy Act (MFIPPA) does not expressly refer to records of municipal councillors.	Access \| Legislation \| Privacy	Fact Sheets	Apr 22 2016

Submission of the Information and Privacy Commissioner of Ontario to the Standing Committee on Justice Policy on Bill 119 Submission of the Information and Privacy Commissioner of Ontario to the Standing Committee on Justice Policy on Bill 119: The Health Information Protection Act, 2015.	Health	Submissions	Mar 03 2016

Thinking About Clouds? Privacy, security and compliance considerations for Ontario public sector institutions The IPC has prepared this new guidance document, Thinking About Clouds? Privacy, security and compliance considerations for Ontario public sector institutions, to help institutions evaluate whether cloud computing services are suitable for their information management needs. In particular, it seeks to raise awareness of the risks associated with using cloud computing services...	Privacy \| Technology And Security		Feb 20 2016

Yes, You Can. Dispelling the Myths About Sharing Information with Children’s Aid Societies Common misunderstandings about privacy are frequently cited as reasons for not sharing information with a children’s aid society (CAS) about a child who may be at risk. In fact, Ontario law permits professionals working with children to share this information. To help professionals understand that privacy is not a barrier to disclosing this important information, the IPC...	Law Enforcement/policing \| Legislation \| Privacy \| Youth	Best Practices \| Professional Guidelines	Jan 20 2016

FIPPA and MFIPPA: Bill 8 — The Recordkeeping Amendments Bill 8, the Public Sector and MPP Accountability and Transparency Act, 2014, will come into effect on January 1, 2016.	Access \| Information Management \| Legislation	Best Practices \| Papers	Dec 22 2015

Letter and Submission to the Honourable Yasir Naqvi, on Draft Street Checks Regulations Letter and submission from the IPC to the the Honourable Yasir Naqvi, Minister of Community Safety and Correctional Services, the Commissioner offers recommendations on the draft regulation proposed on October 28, 2015, which seeks to regulate the practice of police street checks across the province.	Law Enforcement/policing	Submissions	Dec 11 2015

IPC Submission on Draft Street Checks Regulations Submission from the IPC to the the Honourable Yasir Naqvi, Minister of Community Safety and Correctional Services, the Commissioner offers recommendations on the draft regulation proposed on October 28, 2015, which seeks to regulate the practice of police street checks across the province.	Law Enforcement/policing	Submissions	Dec 11 2015

PHIPA Workbook and Completion Guide Use this Workbook and Guide as a “how to” tool to complete the statistical report for the Information and Privacy Commissioner/Ontario about requests made under the Personal Health Information Protection Act, 2004 (PHIPA).			Nov 24 2015

MFIPPA Workbook and Completion Guide This workbook and guide is designed to provide step-by-step instructions for the completion of the Information and Privacy Commissioner’s (IPC) Year-End Statistical Report as required by the Municipal Freedom of Information and Protection of Privacy Act (MFIPPA).			Nov 24 2015

FIPPA Workbook and Completion Guide This workbook and guide is designed to provide step-by-step instructions for the completion of the Information and Privacy Commissioner’s (IPC) Year-End Statistical Report as required by the Freedom of Information and Protection of Privacy Act (FIPPA).			Nov 24 2015

Submission to the Standing Committee on Justice Policy: Police Record Checks Reform Act	Law Enforcement/policing	Submissions	Nov 05 2015

Frequently Asked Questions: Personal Health Information Protection Act This revised FAQ has a new look and feel and has been rewritten with cleaner, easy to understand, gender-neutral language. Also included are a few additions to the original publication:	Health \| Legislation \| Privacy	Best Practices	Nov 02 2015

Frequently Asked Questions: Health Cards and Health Numbers Our frequently asked questions on health cards and health numbers clarify who may collect, use or disclose health numbers for health care purposes, as well as the use of health cards as a proof of identity. The guidance covers: Who may require individuals to produce their health cards? Who may collect, use or disclose health numbers and under what circumstances? ...	Health \| Privacy	Professional Guidelines	Nov 01 2015

Submission to the Standing Committee on the Legislative Assembly: e-Petitions	Open Government	Submissions	Oct 21 2015

Guidelines for the Use of Video Surveillance Many institutions turn to video surveillance to help them fulfil their obligations to protect the safety of individuals and the security of their equipment and property. Video footage captured by cameras is regularly used to assist in the investigation of wrongdoing. However, the use of these surveillance technologies can put individuals’ privacy at risk. Therefore, it is...	Privacy \| Surveillance	Best Practices \| Professional Guidelines	Oct 06 2015

Open Contracting: Proactive Disclosure of Procurement Records Proactive disclosure of procurement records strengthens clarity and accountability around government spending. It can also provide tangible benefits to institutions by reducing the number of procurement-related freedom of information requests, appeals and associated costs.	Access \| Open Government	Papers \| Professional Guidelines	Sep 21 2015

Circle of Care: Sharing Personal Health Information for Health-Care Purposes This document was thoroughly reviewed and updated in August, 2015, introducing clear and easy to understand gender-neutral language. Updated: August 2015	Health	Professional Guidelines	Aug 16 2015

Transparency, Privacy and the Internet: Municipal Balancing Acts Municipalities are turning to the Internet as a means of making information public in an effort to improve accessibility, transparency and accountability. This may include publishing records directly to their website or including records in searchable databases that can be accessed online. Publishing materials online is an effective means of ensuring that the public has access...	Legislation \| Privacy \| Technology And Security	Papers \| Professional Guidelines	Aug 04 2015

Planning for Success PIA Worksheets			May 19 2015

Planning for Success: Privacy Impact Assessment Guide Ontario public sector institutions must meet high standards of care and trust whenever collecting, using and disclosing personal and other sensitive information. Any public institution considering new information technologies, systems, and program services that may affect privacy are strongly encouraged to complete a privacy impact assessment (PIA).	Access \| Information Management \| Privacy \| Technology And Security	Professional Guidelines	May 19 2015

Best Practices for Protecting Individual Privacy in Conducting Survey Research	Information Management \| Privacy	Best Practices \| Papers \| Professional Guidelines	Apr 07 2015

Guidance for the Use of Body-Worn Cameras by Law Enforcement Authorities This guidance document aims to identify some of the privacy considerations law enforcement authorities should take into account when deciding whether to outfit law enforcement officers with body-worn cameras. Published by the federal Privacy Commissioner and privacy and personal information protection Ombudspersons and Commissioners in all provinces and territories, the...	Access \| Law Enforcement/policing \| Privacy	Best Practices \| Papers \| Professional Guidelines	Feb 18 2015

Detecting and Deterring Unauthorized Access to Personal Health Information Unauthorized access continues to be a growing problem in the health sector in Ontario. The province’s Personal Health Information Protection Act, (PHIPA), permits health information custodians (HIC) to collect, use and disclose personal health information for the purposes of providing or assisting in the provision of health care based on implied or assumed implied consent but...	Health \| Privacy	Best Practices \| Papers \| Professional Guidelines	Jan 28 2015

Dispelling the Myths Under the Personal Health Information Protection Act There are many myths surrounding how information may be collected, used and disclosed under the Personal Health Information Protection Act. Working with our partners in the health care community, we have created this one-page document to dispel some of the more common myths.	Health \| Privacy	Best Practices \| Papers \| Professional Guidelines	Sep 28 2012

Fact Sheet #18 – Secure Transfer of Personal Health Information In Order HO-011, the Information and Privacy Commissioner of Ontario (IPC) ordered Cancer Care Ontario to discontinue its practice of transferring records of personal health information relating to its colon cancer screening program in paper format, after several courier packages containing the personal health information of over 7,000 individuals were lost. Cancer Care Ontario...	Health \| Information Management \| Privacy \| Technology And Security		Aug 01 2012

Identity Theft: A Crime of Opportunity Practical information about identity theft, how to avoid it, and what to do if you find you are a victim.	Privacy \| Technology And Security	Brochures	Jul 17 2012

What Students Need to Know – Grade 11 & 12 Teacher’s Guide Other Resources: Grade 11/12 Fact Sheet	Privacy \| Youth	Educational Material	Sep 27 2011

Applying PHIPA and FIPPA to Personal Health Information: Guide for Hospitals	Access \| Access Request Process \| Health \| Legislation	Brochures \| Educational Material	Apr 20 2011

Fact Sheet #17 – Applying PHIPA and FIPPA/MFIPPA to Personal Health Information The purpose of this Fact Sheet is to provide organizations that are defined as both health information custodians under the Personal Health Information Protection Act (PHIPA) and institutions under public sector privacy and access to information legislation, namely the provincial Freedom of Information and Protection of Privacy Act (FIPPA) or its municipal counterpart the...	Access \| Access Request Process \| Health \| Privacy	Educational Material \| Fact Sheets	Apr 19 2011

What Students Need to Know – Grade 10 Teacher’s Guide Other Resources: Grade 10 Fact Sheet	Access \| Privacy \| Youth	Educational Material	Dec 06 2010

Fact Sheet #16 – Health-Care Requirement for Strong Encryption The Office of the Information and Privacy Commissioner, in Order HO-004 and Order HO-007, required that health information be safeguarded at all times, specifically by ensuring that any personal health information stored on any mobile devices (e.g., laptops, memory sticks, PDAs) be strongly encrypted.This Fact Sheet paper provides a working definition of strong encryption and...	Health \| Privacy \| Technology And Security	Educational Material \| Fact Sheets	Jul 16 2010

Manual For The Review and Approval Of Prescribed Persons And Prescribed Entities The purpose of the Manual For The Review and Approval of Prescribed Persons and Prescribed Entities is to outline the new process that will be followed by the Information and Privacy Commissioner of Ontario, commencing on January 31, 2010, in reviewing the practices and procedures implemented by prescribed persons and prescribed entities to protect the privacy of individuals...	Health	Best Practices	Apr 21 2010

A Positive-Sum Paradigm in Action in the Health Sector Health information custodians frequently rely on de-identification when using or disclosing health information – a measure that can protect individual privacy, but often at the expense of data quality (zero-sum paradigm). Dr. Khaled El Emam, a senior investigator at the Children’s Hospital of Eastern Ontario Research Institute (CHEO), has resolved this dilemma through the...	Health \| Privacy	Papers	Mar 30 2010

Get rid of it *Securely* to keep it Private – Best Practices for the Secure Destruction of Personal Health Information This is joint publication between Commissioner, Dr. Ann Cavoukian and Robert Johnson, Executive Director of the National Association for Information Destruction (NAID). This publication was borne out of a particular Health Order (HO-006) which Commissioner Cavoukian issued this past summer regarding records containing personal health information being found scattered on...	Access \| Information Management \| Privacy	Papers	Oct 29 2009

Online Privacy: Make Youth Awareness and Education a Priority This paper is a chronicle describing the IPC’s work to enhance awareness about the privacy challenges youth face on the Internet.	Privacy \| Youth	Papers	Mar 25 2009

Your Rights under Ontario’s Freedom of Information Laws Your Rights under Ontario’s Freedom of Information Laws	Access \| Access Request Process \| Legislation	Educational Material	Jul 24 2008

RFID and Privacy: Guidance for Health-Care Providers RFID and Privacy: Guidance for Health-Care Providers. RFID technology can help save lives – and preserve privacy.	Health \| Privacy	Papers	Jan 23 2008

Reference Check: Is Your Boss Watching? The New World of Social Media: Privacy and Your Facebook Profile Social networking websites such as Facebook are now so popular that they are being used by employers to screen prospects. Information you post on your profile for the amusement of you and your friends may, therefore, be viewed in a different light. This short paper cautions users of these sites about this growing trend in use of these sites and offers tips on how to reduce the...	Privacy \| Technology And Security		Oct 24 2007

Safeguarding Privacy on Mobile Devices A brochure outlining suggested best practices for securing mobile devices (PDAs, laptops, etc.) and protecting the information carried out of the workplace on them. Steps are organized into sections: Before you Walk out of the Workplace, While you are Out and When You have Completed Your Work. Includes a checklist and list of IPC resources. Revised: May 2014	Privacy \| Technology And Security		Jun 14 2007

Fact Sheet #13 – Wireless Communications Technologies: Video Surveillance Systems Fact Sheet about the use of wireless CCTV cameras.	Privacy \| Surveillance \| Technology And Security	Fact Sheets	Jun 07 2007

Mediation Best Practices for Institutions	Access Request Process	Best Practices	Jan 19 2007

Mediation Tips for Institutions	Access \| Appeal Process	Best Practices \| Professional Guidelines	Jan 19 2007

Mediation checklist	Appeal Process \| Open Government	Best Practices \| Professional Guidelines	Jan 19 2007

Breach Notification Assessment Tool This document assists organizations in making key decisions about notifying individuals after a privacy breach occurs by presenting checklists covering factors affecting whether to notify, when and how to notify, what to include in a notification and other organizations that should be contacted. The document was produced jointly by the Office of the Information and Privacy...	Information Management \| Privacy	Papers	Dec 11 2006

Practice Direction #1 – Providing records to the IPC during an appeal Practice Direction #1 – Providing records to the IPC during an appeal		Practice Directions	Apr 06 2006

Practice Direction #10 – Appeal fees Practice Direction #10 – Appeal fees	Access \| Appeal Process	Best Practices \| Practice Directions \| Professional Guidelines	Apr 06 2006

Practice Direction #3 – Guidelines for individuals whose personal information is at issue in an appeal	Appeal Process	Best Practices \| Practice Directions \| Professional Guidelines	Apr 06 2006

Practice Direction #2 – Participating in a written FIPPA or MFIPPA inquiry Revised February 2012	Access \| Privacy	Best Practices \| Practice Directions \| Professional Guidelines	Apr 06 2006

Access to Information under Ontario’s Information and Privacy Acts Information on how to file an access to information request under FIPPA or MFIPPA.	Access \| Legislation	Brochures	Apr 01 2006

Fact Sheet #11- Health Information Custodians Working for Non-Health Information Custodians	Health \| Privacy	Fact Sheets	Feb 01 2006

Fact Sheet #10 – Secure Destruction of Personal Information	Information Management \| Privacy	Fact Sheets	Dec 04 2005

Drafting a Letter Responding to a Request for Information	Access \| Open Government	Professional Guidelines	Nov 04 2005

Privacy Impact Assessment Guidelines for the Ontario Personal Health Information Protection Act	Health \| Privacy	Professional Guidelines	Oct 16 2005

Request to Correct Personal Health Information (PHIPA) A generic request form for filing a request to correct your personal health information held by a health information custodian. This request form should be submitted directly to the health information custodian.	Health	Forms	Oct 03 2005

Fact Sheet #09 – Long-term Care Homes: Consent and Access under the Personal Health Information Protection Act, 2004	Access \| Health	Fact Sheets	Oct 01 2005

What Students Need to Know – Grade 5 Teacher’s Guide This guide focuses on introducing students to the importance of the public values of access to government-held information and personal privacy.	Privacy \| Youth	Educational Material	Sep 01 2005

Authorization to Act as an Agent for Appeal (FIPPA/MFIPPA) A form to be signed by an appellant who is represented by someone other than a lawyer in an appeal relating to a request for general information or for the appellant’s personal information/correction of personal information.	Appeal Process \| Legislation	Forms	Jul 11 2005

Authorization to Act as an Agent For A Complaint under the Personal Health Information Protection Act A form to be signed by a complainant who is represented by someone other than a lawyer.	Health \| Legislation \| Privacy	Forms	Jul 11 2005

Fact Sheet #08 – Lock-box Fact Sheet	Health \| Privacy	Fact Sheets	Jul 01 2005

Fact Sheet #07 – Disclosure of Information Permitted in Emergency or other Urgent Circumstances	Health \| Privacy	Fact Sheets	Jul 01 2005

Your Health Information and Your Privacy in Our Office (Brochure) Short Notices to the Public under the Personal Health Information Protection Act	Health \| Privacy	Brochures \| Educational Material	Jun 16 2005

Your Health Information and Your Privacy in Our Office (Poster) Short Notices to the Public under the Personal Health Information Protection Act	Health \| Privacy	Educational Material \| Posters	Jun 16 2005

Your Health Information and Your Privacy in Our Hospital (Brochure) Short Notices to the Public under the Personal Health Information Protection Act	Health \| Privacy	Brochures \| Educational Material	Jun 16 2005

Your Health Information and Your Privacy in Our Hospital (Poster) Short Notices to the Public under the Personal Health Information Protection Act	Health \| Privacy	Educational Material \| Posters	Jun 16 2005

Your Health Information and Your Privacy in Our Facility (Brochure) Short Notices to the Public under the Personal Health Information Protection Act	Health	Brochures \| Educational Material	Jun 16 2005

Your Health Information and Your Privacy in Our Facility (Poster) Short Notices to the Public under the Personal Health Information Protection Act	Health \| Privacy	Posters	Jun 16 2005

Fact Sheet #06 – Reporting Requests under PHIPA Revised October 2012	Health	Fact Sheets	Apr 01 2005

Fact Sheet #04 – Fundraising under PHIPA Revised Sept. 2014.	Health	Fact Sheets	Apr 01 2005

Fact Sheet #02 – Your health information – Your access and correction rights	Access \| Health	Fact Sheets	Jan 01 2005

Fact Sheet #01 – Safeguarding Personal Health Information	Health \| Privacy	Fact Sheets	Jan 01 2005

Request to Access Personal Health Information (PHIPA) A generic request form for filing a request for access to your personal health information held by a health information custodian. This request form should be submitted directly to the health information custodian.	Access \| Access Request Process \| Health	Forms	Jan 01 2005

Access and Correction Complaints – Personal Health Information Protection Act This brochure provides information on complaints about access or correction of personal health information under PHIPA.	Access \| Health	Brochures \| Educational Material	Dec 16 2004

Collection, Use, Disclosure and Other Complaints – Personal Health Information Protection Act This brochure provides information about collection, use, disclosure and other complaints under PHIPA.	Health \| Privacy	Brochures \| Educational Material	Dec 01 2004

A Guide to the Personal Health Information Protection Act This guide is a tool to help health information custodians understand their rights and obligations under the Personal Health Information Protection Act, (PHIPA).	Health \| Privacy	Papers	Dec 01 2004

Code of Procedure for appeals under the Freedom of Information and Protection of Privacy Act and the Municipal Freedom of Information and Protection of Privacy Act	Appeal Process \| Privacy	Professional Guidelines	Oct 14 2004

Providing Records to the IPC during an Appeal	Appeal Process	Professional Guidelines	Oct 01 2004

The Personal Health Information Protection Act and Your Privacy [Revised July 2014]	Health \| Privacy	Brochures	Oct 01 2004

Grade 11/12 Brochure – What Students Need to Know About Freedom of Information and Protection of Privacy The brochure explains the IPC’s outreach program to schools in Ontario, specifically for grades 11/12	Legislation \| Youth	Brochures \| Educational Material	Sep 01 2004

What Students Need to Know – A Resource for Grade 11/12 Teachers Program focuses on introducing students to the importance of the public values of access to government-held information and personal privacy. Expanded program for Grade 11/12.	Legislation \| Privacy \| Youth	Educational Material	Sep 01 2004

Appeal Form (FIPPA/MFIPPA) A form for filing an appeal of a decision by a government organization relating to a request made under the provincial or municipal Freedom of Information and Protection of Privacy Act.	Appeal Process	Forms	Jul 19 2004

Best Practices for Institutions in Mediating Appeals under the Freedom of Information and Protection of Privacy Act and the Municipal Freedom of Information and Protection of Privacy Act A Joint Project of the Office of the Information and Privacy Commissioner of Ontario and the Ministry of the Attorney General.	Appeal Process	Best Practices \| Papers	Mar 01 2004

Privacy Complaint Form (FIPPA/MFIPPA) A form for filing a privacy complaint under the provincial or municipal Freedom of Information and Protection of Privacy Act, if you feel your personal information has been improperly collected, used or disclosed by a government organization	Privacy	Forms	Feb 16 2004

IPC Practices No. 15 – Clarifying Access Requests Tip sheet for government organizations on handling information	Access \| Access Request Process	Best Practices \| IPC Practices \| Professional Guidelines	Sep 24 2003

IPC Practices No. 14 – The Indirect Collection of Personal Information Tip sheet for government organizations on handling information.	Access \| Personal Information	Best Practices \| IPC Practices \| Professional Guidelines	Sep 24 2003

Index of Records (FIPPA/MFIPPA) A form that should be used by institutions when responding to a request under the provincial or municipal Act or providing information to the IPC during the course of an appeal. It is a listing of all of the enclosed records being released by the institution.	Access	Forms	Sep 24 2003

IPC Practices No. 9 – Responding to Requests for Personal Information Tip sheet for government organizations on handling information	Access \| Access Request Process \| Privacy	IPC Practices \| Professional Guidelines	Sep 24 2003

IPC Practices No. 26: Safe and Secure Disposal Procedures for Municipal Institutions Tip sheet for government insitutions on handling information.	Information Management \| Privacy	Best Practices \| IPC Practices \| Professional Guidelines	Aug 13 2003

Request Form (FIPPA/MFIPPA) A generic request form for filing a request for information held by a government organization or to request a correction of your personal information held by a government organization.	Access Request Process	Forms	Aug 07 2003

Guidelines on Facsimile Transmission Security			Jan 22 2003

Authorization to Act as an Agent for Privacy Complaint (FIPPA/MFIPPA) A form to be signed by a complainant who is represented by someone other than a lawyer in a privacy complaint.	Privacy	Forms	Dec 30 2002

Backgrounder for Senior Managers and Information and Privacy Co-ordinators: Raising the profile of Access and Privacy Each provincial and municipal government organization has a Co-ordinator. This backgrounder looks at ways Co-ordinators can help staff integrate an awareness and understanding of access and privacy into their daily work.	Access \| Open Government \| Privacy	Papers \| Professional Guidelines	Dec 01 2001

Privacy Diagnostic Tool (PDT) Workbook The PDT is an instrument that uses a series of questions to give businesses a ‘read’ on how well they manage their customers’ personal information. The PDT uses internationally recognized fair information practices as its basis.	Information Management \| Privacy	Best Practices \| Professional Guidelines	Aug 01 2001

Guidelines for Protecting the Privacy and Confidentiality of Personal Information When Working Outside the Office Provides best practices and tips to assist government organizations in developing policies that address the privacy obligations of employees who are working in locations outside the traditional office setting.	Information Management \| Privacy	Best Practices \| Professional Guidelines	Jul 01 2001

Best Practices for Online Privacy Protection An educative tool designed to help companies identify and implement appropriate practices for protecting the privacy of their online customers.	Privacy \| Technology And Security	Best Practices \| Professional Guidelines	Jun 01 2001

The Appeal Process and Ontario’s Information and Privacy Commissioner Consumer information regarding appeals of a decision made to an access request under FIPPA or MFIPPA.	Appeal Process	Brochures	Sep 01 2000

Ontario’s Freedom of Information and Protection of Privacy Act: A Mini Guide A quick overview of the key points of the provincial Act. [Revised July 2014]	Access \| Legislation \| Privacy	Brochures	Mar 01 2000

Backgrounder for Senior Managers on the Role of Freedom of Information and Privacy Co-ordinators relating to Access to Information Each provincial and municipal government organization has a Co-ordinator. This Backgrounder looks at the critically important role that Co-ordinators play.	Access \| Access Request Process \| Open Government \| Privacy	Papers	Sep 01 1999

Grade 5 Brochure – What Students Need to Know About Freedom of Information and Protection of Privacy The brochure explains the IPC’s outreach program to schools in Ontario, specifically for grade 5	Access \| Privacy \| Youth	Brochures	Jan 01 1999

IPC Practices No. 18 – How to Protect Personal Information in the Custody of a Third Party	Personal Information	Best Practices \| IPC Practices	Sep 01 1998

IPC Practices No. 5 – Third Party Information at the Request Stage Tip sheet for government organizations on handling information.	Access Request Process \| Appeal Process	Best Practices \| IPC Practices \| Professional Guidelines	Sep 01 1998

IPC Practices No. 7 – The Collection and Use of the Social Insurance Number Tip sheet for government organizations on handling personal information with regards to social insurance numbers.	Information Management \| Privacy	Best Practices \| IPC Practices \| Professional Guidelines	Sep 01 1998

IPC Practices No. 16 – Maintaining the Confidentiality of Requesters and Privacy Complainants Tip sheet for government institutions on information management.	Access Request Process \| Privacy	Best Practices \| IPC Practices \| Professional Guidelines	Sep 01 1998

IPC Practices No. 22 – Routine Disclosure/Active Dissemination (RD/AD) of Government Information Tip sheet for government organizations on information management.	Access \| Information Management \| Open Government	Best Practices \| IPC Practices \| Professional Guidelines	Sep 01 1998

IPC Practices No. 25 – You and Your Personal Information at the Ministry of Transportation Tip sheet for government institutions on handling personal information. Revised July, 2009.	Information Management \| Privacy	Best Practices \| IPC Practices \| Professional Guidelines	Sep 01 1998

Ontario’s Municipal Freedom of Information and Protection of Privacy Act: A Mini Guide A quick overview of the key points of the municipal Act. [Revised July 2014]	Access \| Legislation \| Privacy	Brochures	Jun 01 1998

A Model Access and Privacy Agreement Provides a template designed for insertion into contracts drawn up when a government function is transferred over to the private sector. The model contract will provide assurances to the public that their personal information will be kept secure and their right to privacy preserved when government functions are transferred over to the private sector.	Access \| Privacy	Best Practices	Aug 01 1997

Indirect Collection Guideline Appendix B	Personal Information	Professional Guidelines	Apr 02 1993

Indirect Collection Guidelines Appendix A	Personal Information	Professional Guidelines	Apr 02 1993

Indirect Collection Guidelines – Municipal Municipal Guidelines on Applications to the Office of the Information and Privacy Commissioner/Ontario for Authorization of Indirect Collection by Institutions Covered Under the Municipal Freedom of Information and Protection of Privacy Act.	Personal Information	Professional Guidelines	Apr 02 1993

Indirect Collection Guidelines – Provincial Provincial Guidelines on Applications to the Office of the Information and Privacy Commissioner/Ontario for Authorization of Indirect Collection by Institutions Covered Under the Freedom of Information and Protection of Privacy Act.	Personal Information	Professional Guidelines	Apr 02 1993

Guidance

Found 192 results

GET UPDATES FROM US:

Contact us

Follow us

What's new at IPC:

Guidance

Found 192 results

Cookie/Analytics/Tracking/Opt-in/Opt-out