Office of the Saskatchewan Information and Privacy Commissioner. Guide to FOIP, Chapter 6, Protection of Privacy. Updated 27 February 2023. 366 In Ontario: • A Masters of Social Work student was ordered to pay a $20,000 fine plus a $5,000 victim surcharge for snooping on the personal health information of five individuals. • Two radiation therapists at University Health Network were ordered to pay $2,000 fines. • A registration clerk at a regional hospital who snooped on 443 patients was ordered to pay a $10,000 fine. Methods to deter snooping include government institutions establishing policies that set the expectation that employees are to only access personal information or personal health information that is necessary for their work. Government institutions should be delivering training on such policies and provide regular reminders of the expectation. Further, government institutions should be conducting audits to ensure employees are accessing personal information appropriately. For more information on this topic, see: Office of the Information and Privacy Commissioner of Saskatchewan • Audit and Monitoring Guidelines for Trustees, Office of the Information and Privacy Commissioner of Saskatchewan and eHealth Saskatchewan: https://oipc.sk.ca/assets/audit-and-monitoring-guidelines-for-trustees.pdf • Insurance Brokers Snooping, Office of the Information and Privacy Commissioner of Saskatchewan (December 16, 2016): https://oipc.sk.ca/insurance-brokerssnooping/ • Investigation Report 228-2015 (SaskPower): https://oipc.sk.ca/assets/foipinvestigation-228-2015.pdf – employee accessed the personal information of 4382 current and former SaskPower employees and copied two files from that data. Recommendation to forward file to Ministry of Justice, Public Prosecutions Division. Office of the Information and Privacy Commissioner of Ontario • Snooping – Rights and Responsibilities, (January 31, 2017): https://www.ipc.on.ca/wp-content/uploads/2017/02/2017-01-31-david-goodissnooping.pdf
RkJQdWJsaXNoZXIy MTgwMjYzOA==