Support Centre

You have out of 5 free articles left for the month

Signup for a trial to access unlimited content.

Start Trial

Continue reading on DataGuidance with:

Free Member

Limited Articles

Create an account to continue accessing select articles, resources, and guidance notes.

Free Trial

Unlimited Access

Start your free trial to access unlimited articles, resources, guidance notes, and workspaces.

Manitoba: Ombudsman issues Privacy Breach Practices report

The Manitoba Ombudsman released, on 20 December 2016, its survey report 'Privacy Breach Practices in Manitoba' in which it issued guidance on data breaches for companies specified under the Personal Health Information Act 2010 ('PHIA') ('the Report'), following a consultation with 238 organisations.

In the Report, the Ombudsman issued guidance to all health custodians to assist them in complying with their data security obligations under PHIA. In particular, the Report includes best practices on voluntary breach notification and reporting covering issues such as the use of de-identification and encryption, internal documentation of breaches, the establishment of privacy breach policies for staff, and the inclusion of data security and notification obligations in contracts with third parties.

You can read the Report here.

Feedback