Canadian Data Protection Laws
In Canada there are more than 25 federal, provincial and territorial privacy statutes that govern the protection of personal information in the private, public and health sectors. Although these statutes vary in scope, requirements, and enforcement, there are similar provisions covering the collection, use and disclosure of personal information.
The primary federal data protection statute is the Personal Information Protection and Electronic Documents Act (PIPEDA) which applies to organizations who collect, use and disclose personal information in the course of a commercial activity, including banks, financial services organizations, telecommunications companies, airlines, railways, and other inter-provincial organizations.
Data Protection Requirements:
Breach Notification Requirements and Exemptions
CipherCloud Enables Compliance with Canadian Data Protection Law with:
- Strong encryption and tokenization for cloud data, meeting compliance standards for data protection
- Encryption keys controlled exclusively by customers, meeting “pseudonymization” requirements
- Exemption from breach notification requirements by effectively anonymizing data
- Technology specifically called for to meet Privacy by Design and Default principals
- Dramatic reduction in audit scope by removing data exposure to cloud providers
Questions? We'll put you on the right path.
OR CALL 1-855-524-7437