Guide to FOIP-Chapter 6

Office of the Saskatchewan Information and Privacy Commissioner. Guide to FOIP, Chapter 6, Protection of Privacy. Updated 27 February 2023. 107 Subsection 24.1(a) Duty of government institution to protect 24.1 Subject to the regulations, a government institution shall establish policies and procedures to maintain administrative, technical and physical safeguards that: (a) protect the integrity, accuracy and confidentiality of the personal information in its possession or under its control; Subsection 24.1(a) of FOIP requires government institutions to establish written policies and procedures that protect the integrity, accuracy and confidentiality of personal information. Integrity refers to the condition of information being whole or complete; not modified, deleted, or corrupted.319 Accuracy means correct in all details.320 Part of protecting the accuracy of personal information is ensuring the source of information can be clarified and all access, disclosure and changes can be tracked and audited.321 Confidentiality implies a trust relationship between the person supplying information and the individual or organization collecting it. The relationship is built on the assurance that the information will only be used by or disclosed to authorized persons or to others with the individual’s permission. Protecting the confidentiality of personal information implies that individually identifying personal information is concealed from all but authorized parties.322 Threats to the security of information include threats to its integrity, accuracy and confidentiality. Common threats are: 319 Government of Alberta, Health Information Act, Guidelines and Practices Manual, March 2011 at p. 135. Available at https://open.alberta.ca/dataset/50877846-0fba-4dbb-a99feeb651533bc4/resource/3e16d527-2618-48ae-80b8-93f69973878e/download/hia-guidelinespractices-manual.pdf. Accessed June 18, 2020. 320 Pearsall, Judy, Concise Oxford Dictionary, 10th Ed. at p. 9, (Oxford University Press). 321 Government of Alberta, Health Information Act, Guidelines and Practices Manual, March 2011 at p. 145. Available at https://open.alberta.ca/dataset/50877846-0fba-4dbb-a99feeb651533bc4/resource/3e16d527-2618-48ae-80b8-93f69973878e/download/hia-guidelinespractices-manual.pdf. Accessed June 19, 2020. 322 Adapted from Government of Alberta, Health Information Act, Guidelines and Practices Manual, March 2011 at p. 134. Available at https://open.alberta.ca/dataset/50877846-0fba-4dbb-a99feeb651533bc4/resource/3e16d527-2618-48ae-80b8-93f69973878e/download/hia-guidelinespractices-manual.pdf. Accessed June 18, 2020.

RkJQdWJsaXNoZXIy MTgwMjYzOA==