Investigations into businesses
The Office of the Privacy Commissioner of Canada (OPC) conducts independent and impartial investigations into the personal information handling practices of businesses subject to the Personal Information Protection and Electronic Documents Act (PIPEDA).
The OPC publishes a selection of case summaries and findings from its investigations to provide concrete examples of how PIPEDA applies to the day-to-day management of personal information by businesses.
For each case, the Office indicates the outcome using a set of defined terms for findings and dispositions.
For more information about the complaint and investigation process, read How the OPC Enforces PIPEDA.
Note: Complainants are not named in the summaries or reports. The organizations are not identified unless the Privacy Commissioner of Canada has deemed it to be in the public interest to do so.
Disclaimer: Typographical errors have been corrected from the original version of the report of findings. They are indicated in [brackets].
Connected toy manufacturer improves safeguards to adequately protect children’s information
PIPEDA Report of Findings: Connected toy manufacturer improves safeguards to adequately protect children’s information
Telecommunications company agrees to stop conducting credit checks for marketing purposes
PIPEDA Report of Findings: Telecommunications company agrees to stop conducting credit checks for marketing purposes
Consent provided extends to third-party doctor hired to evaluate accident insurance claim
PIPEDA Case Summary: Consent provided extends to third-party doctor hired to evaluate accident insurance claim
Organization’s technical glitch results in the disclosure of a client’s personal information to another client
Early resolved case summary #2016-02: Organization’s technical glitch results in the disclosure of a client’s personal information to another client
Financial institution discloses individual’s sensitive health information to credit reporting agency
PIPEDA Report of Findings: Financial institution discloses individual’s sensitive health information to credit reporting agency
Insurance company collected and used credit score for inappropriate purpose during auto insurance claims assessment process
PIPEDA Report of Findings: Insurance company collected and used credit score for inappropriate purpose during auto insurance claims assessment process
Privacy obligations under PIPEDA apply to financial technology sector
Early resolved case summary #2017-01: Privacy obligations under PIPEDA apply to financial technology sector
Drug activity history in property reports deemed not publicly available
PIPEDA Report of Findings: Drug activity history in property reports deemed not publicly available
Canadian adware developer Wajam Internet Technologies Inc. breaches multiple provisions of PIPEDA
PIPEDA Report of Findings: Canadian adware developer Wajam Internet Technologies Inc. breaches multiple provisions of PIPEDA
Customer gets signed up for retailer credit card without his consent
PIPEDA Case Summary: Customer gets signed up for retailer credit card without his consent
Showing items 41 through 50 of 647.
Report a problem or mistake on this page
- Date modified: