Privacy

The Privacy Act gives Canadians the right to access personal information held by the government and protection of that information against unauthorized use and disclosure.

This page provides links to the Privacy Act, its policy instruments and tools necessary for the administration of the legislation.

Act and Policy Instruments

• Privacy Act
• Privacy Regulations
• Policy on Privacy Protection – This policy replaces the Policy on Privacy and Data Protection (dated 1993) and all mandatory policy requirements contained in Implementation Reports issued up to the new policy's effective date.
• Directive on Privacy Impact Assessment - Privacy impact assessments provide a framework for ensuring that privacy is considered throughout the design or re-design of programs or services.
• Directive on Privacy Practices – Provides direction to facilitate the implementation and public reporting of consistent and sound privacy management practices for personal information under the control of government institutions.
• Directive on Privacy Requests and Correction of Personal Information – Provides direction to establish consistent practices and procedures for processing requests for access to or correction of personal information that is under the control of government institutions.
• Directive on the Social Insurance Number – Outlines specific restrictions on the collection, use, and disclosure of the social insurance number (SIN) by government institutions and specifies the processes for establishing policy authorization for a new collection or new consistent use of the SIN.
• Standard on Privacy and Web Analytics – Outlines the requirements when using Web analytics in accordance with sound privacy practices that safeguard the privacy of visitors to Government of Canada websites.
• Implementation Reports and Information Notices – Provide guidance on the interpretation and application of the Privacy Act and related policies.

Guidance, Best Practices and Tools

• Taking Privacy into Account Before Making Contracting Decisions - Provides advice to federal government institutions whenever they consider contracting out activities in which personal information about Canadians is handled or accessed by private sector agencies under contract.
• Guidance on Preparing Information Sharing Agreements Involving Personal Information – Provides advice in the consideration and development of information sharing agreements involving personal information shared with other governments within Canada and across international borders. 
• Cookies Guidelines – Guidance on the use of website cookies.
• Fact Sheet: Policies on Access to Information and Privacy for Employees of Government Institutions – A quick reference tool on access to information and privacy for government institution employees.
• Notice and Consent Guidelines – Explain how best to inform visitors to Government of Canada websites about what will be done with any personal information they volunteer over the Internet to a government program.

Links of Interest

• Privacy Toolkit
• How to make a request for government information
• Training and learning activities available to the Access to Information and Privacy Community
• Information resources on the Access to Information Act and the Privacy Act as well as provincial and territorial legislation