Search

Displaying 1 - 20 of 125

Toronto Public Library cyberattack: A wake-up call for stronger security

Toronto Public Library cyberattack: A wake-up call for stronger security … Case of Note: File MR23-00112 Background In November 2023, the Toronto Public Library (TPL) reported a cybersecurity breach to the Office of the Information and Privacy Commissioner of Ontario (IPC). The breach, which …

Resource

- Published on March 14, 2025

Ensuring secure disposal of health records: Out of sight is not out of mind!

Ensuring secure disposal of health records: Out of sight is not out of mind! … Case of Note: PHIPA Decision 266 Background A complaint was brought to the Information and Privacy Commissioner of Ontario (IPC) alleging that a health clinic had failed to securely dispose of records of personal health …

Resource

- Published on February 10, 2025

Toronto Public Library Cyberattack: Importance of reasonable security measures and notifying affected individuals under MFIPPA

Toronto Public Library Cyberattack: Importance of reasonable security measures and notifying affected individuals under MFIPPA … A cyberattack on the Toronto Public Library exposed vulnerabilities in its systems that contained a significant number of individuals’ personal information. Read the …

Resource

- Published on December 19, 2024

Preventing health privacy breaches: Why training, policies, and confidentiality agreements matter

Preventing health privacy breaches: Why training, policies, and confidentiality agreements matter … Case of Note: PHIPA Decision 260 Background A public hospital was alerted to suspicious activity on a patient chart, and initiated an investigation, which included a targeted audit. The audit …

Resource

- Published on November 18, 2024

Reported Breach HR23-00282

Reported Breach HR23-00282 … A prescribed person under the Personal Health Information Protection Act reported a breach to the IPC regarding a cyberattack that involved the unauthorized copying of approximately 3.4 million individuals’ personal health information from the prescribed person’s secure …

Resource

- Published on August 14, 2024

Ransomware reality: Case study in health care cybersecurity and recovery

Ransomware reality: Case study in health care cybersecurity and recovery … Unfortunately, ransomware attacks are not an uncommon occurrence, especially in this era of rapidly advancing technologies. Bad actors use ransomware attacks to extract money and cause harm to others. As these types of …

Resource

- Published on July 18, 2024

Cyberattack response: Duty to notify individuals under PHIPA and CYFSA

Cyberattack response: Duty to notify individuals under PHIPA and CYFSA … Background The following decisions involved different cyberattacks against four different organizations. Three involved health information custodians (HICs) subject to the Personal Health Information Protection Act (PHIPA), …

Basic page

- Published on August 2, 2024

Ransomware reality: Case study in health care cybersecurity and recovery

Ransomware reality: Case study in health care cybersecurity and recovery … Case of Note: PHIPA Decision 249 Introduction Unfortunately, ransomware attacks are not an uncommon occurrence, especially in this era of rapidly advancing technologies. Bad actors use ransomware attacks to extract money and …

Basic page

- Published on July 18, 2024

Privacy Pursuit Lesson Plan - My Privacy, Your Privacy (Grades 7 – 8)

Privacy Pursuit Lesson Plan - My Privacy, Your Privacy (Grades 7 – 8) … Privacy Pursuit Lesson Plan - My Privacy, Your Privacy (Grades 7 – 8) …

Resource

- Published on April 20, 2023

Privacy Pursuit Lesson Plan - The Value of Privacy (Grades 6-7)

Privacy Pursuit Lesson Plan - The Value of Privacy (Grades 6-7) … Privacy Pursuit Lesson Plan - The Value of Privacy (Grades 6-7) …

Resource

- Published on April 20, 2023

Privacy Pursuit Lesson Plan - Protecting Your Privacy (Grades 4-5)

Privacy Pursuit Lesson Plan - Protecting Your Privacy (Grades 4-5) … Privacy Pursuit Lesson Plan - Protecting Your Privacy (Grades 4-5) …

Resource

- Published on April 20, 2023

Privacy Pursuit Lesson Plan - What is Privacy? (Grades 2-3)

Privacy Pursuit Lesson Plan - What is Privacy? (Grades 2-3) … Privacy Pursuit Lesson Plan - What is Privacy? (Grades 2-3) …

Resource

- Published on April 20, 2023

Review of Ontario Health: The Prescribed Organization under the Personal Health Information Protection Act

Review of Ontario Health: The Prescribed Organization under the Personal Health Information Protection Act … Review of Ontario Health: The Prescribed Organization under the Personal Health Information Protection …

Resource

- Published on October 29, 2021

Privacy Pursuit: Games and Activities for Kids

Privacy Pursuit: Games and Activities for Kids … Privacy Pursuit: Games and Activities for Kids …

Resource

- Published on September 23, 2021

Lesson Plan: Privacy Rights of Children and Teens

Lesson Plan: Privacy Rights of Children and Teens … Lesson Plan: Privacy Rights of Children and Teens …

Resource

- Published on June 18, 2018

Lesson Plan: Know the Deal: The Value of Privacy

Lesson Plan: Know the Deal: The Value of Privacy … Lesson Plan: Know the Deal: The Value of Privacy …

Resource

- Published on June 18, 2018

Lesson Plan: Getting the Toothpaste Back into the Tube: A Lesson on Online Information

Lesson Plan: Getting the Toothpaste Back into the Tube: A Lesson on Online Information … Lesson Plan: Getting the Toothpaste Back into the Tube: A Lesson on Online …

Resource

- Published on June 18, 2018

2017 Affidavit Related to the Review of the Pediatric Oncology Group of Ontario (POGO)

2017 Affidavit Related to the Review of the Pediatric Oncology Group of Ontario (POGO) … 2017 Affidavit Related to the Review of the Pediatric Oncology Group of Ontario …

Resource

- Published on October 10, 2017

2017 Affidavit Related to the Three-Year Review of the Practices and Procedures of Cancer Care Ontario

2017 Affidavit Related to the Three-Year Review of the Practices and Procedures of Cancer Care Ontario … 2017 Affidavit Related to the Three-Year Review of the Practices and Procedures of Cancer Care …

Resource

- Published on October 10, 2017

Three-Year Review of Cancer Care Ontario (CCO): A Prescribed Entity under the Personal Health Information Protection Act

Three-Year Review of Cancer Care Ontario (CCO): A Prescribed Entity under the Personal Health Information Protection Act … Three-year review and approval by the Information and Privacy Commissioner/Ontario, mandated by the Personal Health Information Protection Act, 2004 , of the practices and …

Resource

- Published on October 31, 2014