Step 1: Understand Your Business Operations
- What personal information does your business collect?
- How is personal information collected?
- What is the purpose of collecting personal information?
- How is personal information used and disclosed?
- How is personal information protected and secured?
PIPEDA outlines specific requirements for privacy policies, including:
- What personal information is being collected
- Why personal information is being collected
- How personal information is being collected
- How personal information is being used
- Who personal information is being disclosed to
- How personal information is being protected and secured
- How individuals can access their personal information
- How individuals can correct their personal information
- How individuals can make complaints