The right way to Protect Personal Business Data
Personal organization information can be any information that identifies a client, employee or partner. Whether your business collects this info through direct contact or over the internet, you must take care of it so that it does not be occupied as a liability for your company.
PIPEDA, Canada’s privacy rules, defines sensitive information as “information that pertains to an individual and can be used to spot the person. ” This includes any information that is linked or linkable to an specific (i. e. a person’s name, social security number or biometric information) and it is not normally publicly offered.
Examples of PII include:
Interpersonal protection numbers; the date and place of start; their mums maiden identity; their driving a vehicle licence amount; their medical documents and other health-related information; and credit card or purchase cards account quantities.
Sensitive PII, also called PHI, is info that if disclosed without the individual’s consent could cause harm, distress or difficulty to these people. This includes the Social Security Number, medical record, disciplinary actions, efficiency ratings, career history and some other information that may continue reading this use to identify or trace an individual.
PIPEDA needs organizations to:
Be clear regarding the purpose for the purpose of collecting your information before or perhaps at the time of collection, and discuss why you need it. Ask for more details or diminish to provide it if you are not satisfied along with the explanation.
Limit the amount and type of private information gathered about what is necessary with regards to the intended purpose. If you provide additional information, it should be for a purpose related to the original purpose and only when you consent to it.