Service Overview
A PIA is a risk management tool used to anticipate and address the potential privacy risks or impacts of a new or modified collection, use or disclosure of personal information, or of a proposed or existing information system, technology, program, process or other activity. For institutions subject to sections 38(3)-(6) of FIPPA, conducting a PIA is a legal requirement that must be fulfilled before collecting personal information, subject to any exceptions set out in regulation. Privacy risks or impacts fall into two broad categories:
• Risks to individuals, including the theft, loss, or unauthorized use or disclosure of personal information, which may lead to identity theft and other forms of fraud, adverse impacts on employment or business opportunities, damage to reputation, embarrassment, distress, or financial loss.
• Risks to institutions, including the financial, legal, and reputational impacts of privacy breaches, and the consequences of failing to comply with FIPPA and MFIPPA.
The Information and Privacy Commissioner of Ontario provide this guide and templates for completing PIAs:
Available To
Data Trustees (SMT), Data Stewards (Administrators) & Data Custodians
Getting Started
Contact the College's Privacy Officer to request a PIA.
https://department.flemingcollege.ca/foi/contact-us/
Additional Information