MLA Guide to Protecting Personal Information

Office of the Saskatchewan Information and Privacy Commissioner. MLA Guide to Protecting Personal Information. Effective April 2018. Updated 9 July 2024. 14 For more information on consent, see the IPC’s resource: Best Practices for Gathering Informed Consent and the Content of Consent Forms. For more on consent requirements, see the Guide to FOIP, Chapter 6, “Protection of Privacy” starting at page 25. Common Safeguards Required for Compliance with Part IV of FOIP MLA offices should consider the following safeguards: • Does the office have a policy relating to the collection, use, disclosure and safeguarding of personal information? • Have the employees in the office received privacy training? Training should include: o What is FOIP. o What is personal information. o What is a collection. A use. A disclosure. o What are best practices for the collection, use and disclosure of personal information. o What administrative, physical and technical safeguards are in place to protect personal information. o How to identify the purpose of collecting personal information. o What is consent. When is consent required. How do you obtain consent. o When and how should personal information be destroyed. • Is there a record classification system? • Is there a record destruction schedule? Does it outline how personal information should be destroyed? • Is there a policy regarding the use of personal email to conduct constituency business which involves personal information? • Has each employee in the office signed a confidentiality statement or agreement?

RkJQdWJsaXNoZXIy MTgwMjYzOA==