Personal business information is definitely any information that identifies a client, employee or perhaps partner. Whether your company collects these details through direct get in touch with or on line, you must defend it in order that it does not become a liability to your company.
PIPEDA, Canada’s personal privacy legislations, defines personal data as “information that pertains to an individual and that can be used to name the person. ” This includes details that is linked or linkable to an person official website (i. e. a person’s name, social security number or biometric information) which is not or else publicly offered.
Examples of PII include:
Cultural reliability numbers; a person’s date and place of delivery; their mother’s maiden term; their cruising licence quantity; their very own medical records and other health-related information; and credit card or purchase greeting card account figures.
Sensitive PII, also called PHI, is information that in cases where disclosed without the individual’s consent may cause harm, distress or difficulty to all of them. This includes a person’s Social Security Number, medical record, disciplinary actions, overall performance ratings, job history and any other information that can provide to identify or trace someone.
PIPEDA needs organizations to:
Be clear about the purpose with regards to collecting your details before or at the time of collection, and explain why you require it. Ask for more details or drop to provide it if you are not satisfied along with the explanation.
Limit the amount and type of personal information gathered as to what is necessary for the intended purpose. If you offer additional information, it should be for a purpose related to the original purpose and only if you accept it.