Personal organization information is any information that identifies a buyer, employee or perhaps partner. www.bizinfoportal.co.uk/2021/04/15/identifying-the-business-finance-function-you-may-have/ Whether your company collects this information through direct contact or over the internet, you must protect it so that it does not become a liability for your company.
PIPEDA, Canada’s personal privacy laws, defines personal information as “information that pertains to an individual and can be used to recognize the person. ” This includes any information that is linked or linkable to an person (i. e. the name, ssn or biometric information) and is also not usually publicly readily available.
Examples of PII include:
Cultural security numbers; the date make of birth and labor; their mother’s maiden brand; their travelling licence number; their particular medical documents and other health-related information; and credit card or purchase cards account quantities.
Sensitive PII, also called PHI, is details that in cases where disclosed without the individual’s consent may cause harm, shame or inconvenience to these people. This includes a person’s Social Security Number, medical record, disciplinary actions, functionality ratings, employment history and any other information that could be applied to identify or perhaps trace a person.
PIPEDA needs organizations to:
Be clear about the purpose to get collecting your details before or perhaps at the time of collection, and demonstrate why you require it. Ask for more details or diminish to provide it if you are not satisfied with the explanation.
Limit the amount and type of sensitive information gathered about what is necessary with respect to the intended purpose. If you give additional information, it should be for a goal related to the original purpose and as long as you receive it.