Frequently Asked Questions – Compliance with PIPEDA’s Security Breach Obligations

Canada’s federal Personal Information Protection and Electronic Documents Act (“PIPEDA”) imposes obligations on private sector organizations that suffer a breach of security safeguards affecting personal information under their control. Details of those obligations are set out in PIPEDA, the Breach of Security Safeguards Regulations and the guidance document titled “What you need to know about mandatory reporting of breaches of security safeguards” issued by the Office of the Privacy Commissioner (OPC) (the “Guidance”). Following are some frequently asked questions about the breach of security safeguards obligations and related issues.

This content has been updated on May 2, 2024 at 13 h 56 min.