Data Privacy Day was January 28th and is marked annually around the world to highlight the impact technology is having on privacy and to promote the importance of valuing and protecting personal information. In Canada, this year’s Data Privacy Day theme was: “Take control of your information. Don’t let it come back to haunt you.”
Taking control of personal information is useful advice for individuals, businesses and organizations that collect personal information. Protecting personal information has much greater value to organizations than simply complying with privacy laws – it helps to develop consumer trust.
This session will give attendees an overview of the provincial privacy legislation - both the Access to Information and Protection of Privacy Act (ATIPPA) and the Personal Health Information Act (PHIA); as well as an overview of privacy legislation at the federal level.
The ATIPPA governs access to records in the custody of or under the control of a public body and sets out requirements for the collection, use, storage and disclosure of personal information contained in the records they maintain. The provisions of Part IV limit the extent and means by which public bodies can collect personal information, as well as the extent to which public bodies can use and disclose that information. Part IV requires public bodies to make every reasonable effort to ensure that personal information is accurate and complete, to make reasonable security arrangements against unauthorized access, collection, use, disclosure or disposal of personal information, and to retain certain personal information about an individual in order to allow that individual a reasonable opportunity to obtain access to the information.
Newfoundland and Labrador’s Personal Health Information Act (PHIA) is a law which establishes rules regarding how your personal health information is to be handled. It protects your privacy as well as your right of access to your own personal health information. PHIA governs information held by custodians of your personal health information, whether in the public sector or the private sector. This presentation will address areas including:
· An overview of legislative requirements
· Defining personal information as it applies to the Acts
· Requirements for public bodies to prevent the unauthorized collection, use and disclosure of personal information
· Common privacy mistakes made by organizations
IIA Members - $40
Non-members - $50
The deadline for registration is Friday, February 8.