Overview

A privacy breach occurs whenever there is unauthorized access to or collection, use, disclosure or disposal of personal information. Such activity is unauthorized if it occurs in contravention of the Freedom of Information and Protection of Privacy Act (FOIPOP). A Privacy Breach follows the NS Privacy Commissions Privacy Breach Protocol. For further information on the Privacy Breach Protocol, see Ian Murray (President’s Office) or Lisa Speigel (Technology Services).  

Documentation

There are two documents associated with article.

1. Privacy Breach Toolkit provides the steps and the information associated with a breach from a mitigation and a risk assessment.

2. Privacy Breach Report allows the individual/department track the details required when a breach occurs. 

Further Reading

Summary of Authorities under Freedom of Information and Personal Information International Disclosure Protection Acts. An overview of the pertinent Privacy legislation by which Acadia must abide: Freedom of Information and Protection of Privacy (FOIPOP) and Personal Information and International Disclosure (PIIDPA) Acts.

Information privacy and security at Acadia.  A website dedicated to resources for information security and privacy at Acadia. 

Information Privacy and Data Security Policy. Acadia University policy associated with the collection, use and protection of personal information.  

Technology Acquisition and Use Standard. Standard applied to the acquisition of technology applications and software. 

Information Security Classification. Acadia University Information Security Classifications help members of the university to identify, understand, manage, and use university data appropriately.