FRANÇAIS   Contact Us CA Store Login
Chartered Accountants of Canada
Home  >  Research & Guidance  >  Research Activities  >  Recent Publications
Bookmark and Share
Uniting the Canadian Accounting Profession
Subscribe / Unsubscribe
Annual Report 2010-2011
RSS Feed

 

Privacy Compliance: A Guide for Organizations & Assurance Practitioners

 











Privacy Compliance:
A Guide for Organizations & Assurance Practitioners (Revised February 2004) (80 pages)


Visit the CICA's Online Privacy Resource Centre

Staff contact
J. Paul-Emile Roy, CA
research.studies@cica.ca

Executive summary

About the Guide
Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) creates an enforceable right to privacy with respect to the collection, use and disclosure of personal information by private sector organizations. To ensure compliance with the information privacy requirements of the PIPEDA and any corresponding provincial legislation, businesses must establish a privacy compliance regime. This Guide will assist organizations in developing appropriate personal information privacy systems. It will also assist practitioners in assessing management's compliance with the PIPEDA privacy principles.

Originally published in February 2002, the Guide was revised and reissued in February 2004. The revised guidance recognizes that the PIPEDA came into full force on January 1, 2004. At that time, all organizations that collect, use or disclose personal information in the course of a commercial activity became subject to the PIPEDA. This includes organizations operating strictly within provincial boundaries, unless that province has enacted its own private sector privacy legislation.

In addition to numerous editorial changes, primarily to update references and links, the Guide includes the following significant revisions:

  • In Chapter 4, the section on Value-Added Privacy Products and Services was rewritten to make reference to various privacy-related materials published by the CICA since 2002 and to comment on the work of the joint AICPA/CICA Privacy Task Force resulting in publication of the Privacy Framework and CICA Privacy Resource Guide during the latter part of 2003.
  • Appendix A was updated to reflect recent International Privacy Developments, especially in the United States.
  • Appendix B was updated to reflect recent changes in Privacy Legislation in Canadian Provinces & Territories; notably, British Columbia and Alberta passed privacy laws that came into force on January 1, 2004.
  • Appendix F was added to provide additional guidance for Implementing a Security Program to Protect Privacy by taking into consideration security-related measures to protect personal information from loss, misuse, unauthorized access, disclosure, alteration and destruction.
  • The Bibliography was updated and expanded to provide additional Internet links to privacy legislation, directives and guidelines, as well as privacy-related web sites.

The Guide was prepared under the direction of the CICA's Information Technology Advisory Committee (ITAC).

  Privacy Statement  |  Copyright  |  Site Map  |  Links
Share |
THE CANADIAN INSTITUTE OF CHARTERED ACCOUNTANTS
277 Wellington Street West Toronto ON M5V 3H2 Canada
Tel: 1.416.977.3222 Fax: 1.416.977.8585