Request a Demo

Personal Information Protection & Electronic Documents Act

Request a Demo
Registration_Service.YML code window over FidesOps Dashboard

What’s Included in PIPEDA?


Right to Withdraw Consent

Under PIPEDA, Canadians have the ability to withdraw consent at any time, even if they had previously consented to the collection and processing of their PII.

Fair Information Principles

Businesses must follow the 10 Fair Information Principles laid out in PIPEDA: accountability, Identifying purposes, consent, limiting collection, limiting use, disclosure and retention, accuracy, safeguards, openness, individual access, and challenging compliance.

Sensitive Information Safeguards

PIPEDA requires organizations to create protections on information deemed sensitive, such as health and financial data, ethnic and racial origins, political opinions, genetic and biometric data, an individual’s sex life or sexual orientation, and religious beliefs.

Introduction to Canada’s Privacy Law

The Personal Information Protection and Electronic Documents Act (PIPEDA) is Canada's federal privacy law.

PIPEDA went into effect in 2000 as a way of facilitating the use of electronic documents, and reassuring the EU that data transfers between the two territories would be adequate.

As PIPEDA was created with GDPR in mind, if your company is GDPR compliant, or getting ready to be, you'll only need minimal adjustments to comply with PIPEDA. Some regions like Alberta, British Columbia, and Quebec have their own provincial privacy laws, and are generally (but not always) exempt from following the federal privacy law.

Read on to earn how Ethyca can help you easily comply with PIPEDA.

See Privacy Engineering Intelligence in Action

Get a Demo