What is Personal Information?
Personal Information is information about an identifiable individual such as information that relates to the individual’s personal characteristics (e.g. gender, age, income, home address or phone number, or family status), their health (e.g. disabilities) or their activities and views (e.g. religion or politics). Personal Information is to be contrasted with business information (e.g. an employee’s business address and telephone number), which is not protected by privacy legislation.
Our products and services and Personal Information
DataPassports creates, markets, licenses and provides software products and services that are used by our clients in a variety of applications notably in the banking, insurance and health industries but they may find uses in other contexts (“Clients”). While Individuals, your employees or advisors (collectively the “Users”) do not typically access our products or services directly, in the normal course of their operations, our Clients may access, collect, retain, analyze, use and distribute Personal Information of various kinds as it relates to their business or requirements by using our products or services. Some of these activities are performed through websites and various software products. Our products and services interface with the Clients’ products and manage information may be logged unto our Sites in accordance with their functional characteristics.
If Personal Information is transmitted, used or collected by DataPassports for the benefit of a Client, it is the Client’s responsibility to ensure that any activity related to such Personal Information is done in complete conformity with all applicable legislation. DataPassports’ role is limited to “process the Personal Information” through its products and systems in accordance with the consent provided by the Users in order to effect the objectives of the products and attain the goals of the Client.
If we are entrusted with Personal Information obtained by a Client, we will retain it in accordance with each Client’s instructions and guidelines or, failing specific instructions, according to normal industry practices.
Protecting Personal Information
Whether DataPassports collects, manages or uses Personal Information or if DataPassports is entrusted with Personal Information obtained by a Client, DataPassports will protect such Personal Information as follows:
- All information transiting on our platforms or systems will be passwords protected.
- Only the Clients have access to the Personal Information by using a password.
- External consultants and agencies with access to Personal Information must provide us with appropriate privacy assurances.
Managing Personal Information
Do You Have a Question?
Contact DataPassports at firstname.lastname@example.org
This policy is made under the Personal Information Protection and Electronic Documents Act (PIPEDA) and other relevant legislation such as the General Data Protection Regulation (GDPR). It is a complex statute and provides some additional exceptions to the privacy principles that are too detailed to set out here.