NEW Checklist for Healthcare Organizations Considering the use of an AI Scribe

Privacy Commissioner of Canada to investigate cybersecurity breach at WestJet

PowerSchool commits to strengthened breach measures following engagement with the Privacy Commissioner of Canada

Sask. information and privacy commissioner brings a focus on cyber security, AI

Guardrails for Police Use of Investigative Genetic Genealogy in Ontario

Access to Information Act, Protection of Privacy Act implemented in Alberta

Commissioner Dufresne launches exploratory consultation on children’s privacy code

Survey conducted by OPC found that most parents worry about their children’s online privacy

Information and Privacy Commissioner of Ontario and The French Language Services Commissioner discuss your rights of access to information and services in French June 4, 2025

Ontario IPC releases a new independent research report on emerging technology- Emerging Uses of Neurotechnology.

Year: 2020

June 23, 2020 - Sherri Fowler, Analyst

Notifying affected individuals: What should I put in the letter?

Notifying affected individuals that their privacy has been breached is a very important step in responding to a privacy breach and should happen very quickly once you have identified who has been affected by the privacy breach. In cases where the privacy breach is potentially very large, or you may not be able to identify... read more

Categories: BlogTags:

June 15, 2020 - Raianne Engel, Analyst

Should you provide your child’s HSN to their school?

Have you ever filled out a form for your child’s school and wondered if they really need all the information they are asking for? Among other personal information, your child’s school might request their health services number (HSN). The Commissioner has not yet dealt with this issue in a formal report so this is just... read more

Categories: BlogTags: ,

April 20, 2020 - Ron Kruzeniski, Information and Privacy Commissioner

Sample access request policy and checklist

In a number of reports issued by my office, we have recommended that the towns/villages/municipalities develop an operational policy regarding processing access to information requests. After a number of questions, it became clear that there didn’t seem to be a sample policy developed for small towns/villages/municipalities. Larger organizations have developed policies that are applicable to... read more

Categories: BlogTags:

February 13, 2020 - Ron Kruzeniski, Information and Privacy Commissioner

Circle of Care

When my office investigates privacy breaches in the health care sector, at times, the defense, the explanation, or the reason given is that one believed they were in the “circle of care”. What is the circle of care? It certainly is not used in The Health Information Protection Act (HIPA). I did find one definition on the... read more

Categories: BlogTags:

Google Translate Disclaimer

Translations on the IPC Website are performed by Google Translate. Please note that not all text may be translated accurately or be translated at all. The IPC is not responsible for incorrect or inaccurate translations. The IPC will not be held responsible for any damage or issues that may result from using Google Translate.

For more information, read our full disclaimer.